MetaChat REGISTER   ||   LOGIN   ||   IMAGES ARE OFF   ||   RECENT COMMENTS




artphoto by splunge
artphoto by TheophileEscargot
artphoto by Kronos_to_Earth
artphoto by ethylene

Home

About

Search

Archives

Mecha Wiki

Metachat Eye

Emcee

IRC Channels

IRC FAQ


 RSS


Comment Feed:

RSS

MetaChat is an informal place for MeFites to touch base and post, discuss and chatter about topics that may not belong on MetaFilter. Questions? Check the FAQ. Please note: This is important.

01 May 2006

Script kiddies keep getting dumber. I got a phishing email looking to have me update my credit info with Ebay.[More:]I did a trace route to see where it was coming from so I could report it to the network provider. It was coming from Comcast in CO. When taking a look at the "Ebay site" I found an Ubuntu Linux install with a LAMP stack and a bunch of php scripts to steal your credit card info.

But, it was all still setup with the default logins and passwords! So I SSH'd in and deleted everything on the drive. Moron. Oh and I still forwarded the email to Comcast.
post by: arse_hat at: 14:45 | 7 comments
rofl. golden.
posted by weretable and the undead chairs 01 May | 14:48
You're the bomb.
posted by ThePinkSuperhero 01 May | 14:49
awesome.
posted by gaspode 01 May | 14:57
A lot of these machines are actually hit remotely with rootkits - you're deleting the contents of someone's hard drive, who may in fact really not be the responsible party for the phishing email, despite it coming from his or her machine.

While I agree with the sentiment, I would be very, very careful about attacking someone's machine since you're basically leaving a huge "paper trail", if Comcast/FBI/legitimate owner wants to follow up on the matter. At the very least, contacting ISPs about what you've done and then bragging about it on a public site is not smart. Just sayin'
posted by AlexReynolds 01 May | 15:02
Alex if it was remotely hit it was dead already and I doubt someone smart enough to know how to hijack a box would leave all the defaults on the machine and send emails with full traceable headers. So fuck em.

Also of note. Someone has been brute force password hacking one of my FTP servers today and he is coming from a Chinese government office. How cool is that?
posted by arse_hat 01 May | 15:10
fuckin commies man.
posted by puke & cry 01 May | 15:46
*chalks up one for the good guys*

But, yeah, you should be careful.
posted by dg 01 May | 17:31
Baader-Meinhof || NYC MeChas.

HOME  ||   REGISTER  ||   LOGIN
All posts and comments © their authors