what's wrong with this picture

[Randy <randallm () fidmail com>]

the part of being a "texan" is funny:

--Man Draws 18-Month Sentence for Infecting NASA Employee's Computer
(May 1, 2008)
A Nigerian man has received an 18-month prison sentence for tricking a
NASA employee into installing spyware on her computer.  Posing as a man
from Texas, Akeem Adejumo met the woman on an online dating site. He
sent a phony photograph to the woman at her work email address; when she
opened it, her computer was infected with spyware.  While it did not
spread to other NASA computers, it did capture her email, passwords,
Social Security number (SSN) and other sensitive information, including
25,000 screen shots.  Some NASA information was taken as well, but the
woman did not have access to sensitive data. NASA IT security team
sensors detected the screenshots being sent from the network and began
an investigation.  Through analysis of traffic logs, and email account
information obtained through warrants and subpoenas, investigators
determined the attacker's IP address and contacted law enforcement
officials in Nigeria.
http://www.computerworld.com/action/article.do?command=viewArticleBasic&articleId=9081838&source=rss_topic17
[Editor's Note (Northcutt): A key point is that he did the online dating
scam from Nigeria pretending to be in Texas and tried this on several
hundred women with more than a few successes. According to the DOJ press
release NASA Office of Inspector General worked pretty hard on this one.
But the big key is that NASA detected the information being sent out. A
lot of organizations that blindly trust in their IPS would not detect
the bad event:
http://www.usdoj.gov/usao/dc/Press_Releases/2008%20Archives/April/08-099.html]



-- 
RandallMan
----------
It's been a wild ride for sure and it ain't over.

_______________________________________________
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.