Revellian

Thoughts and Fiction of Bobby Revell

Posts Tagged Internet Security

Firefox Privacy Protection

Jul 8

Posted by Bobby Revell in firefox, hacking

One of the best things about the Firefox browser is the vast array of cool extensions available. Before we even begin, make sure you’re not using a Microsoft IE browser, it’s slow and filled with security holes. If you keep with the news, you’re probably aware of the Google-Viacom situation brewing. It concerns your privacy – check out Dan’s article Viacom Wants to Know What You’ve Been Watching to get updated.

Maybe you’re watching strange videos like, “Indonesian Cucumber Sex Secrets,” or “How To Steal Someone’s Identity the Easy Way,” and don’t want anyone to know…LOL. Generally speaking, if you’re logged into your Google account, everything you surf is logged and written to hard disk – permanently – where it can be studied, dissected and reanalyzed. Your entire on line life forms your secret profile. Imagine that everywhere you drove, everything you bought, everyone you talked to and so forth was recorded via outer space satellite and studied by governmental computer algorithms (they’re probably already doing that already). Well, that’s what Google and other search engines are doing. I personally don’t want Google or anyone knowing everything I do on line. It’s not so much having privacy because you’re a weirdo freak, it’s because you’re normal and Google wants to know your every move.

Here are a few Firefox extensions that can help protect your privacy:

Read the rest of this entry »

Tags: , , , ,

20 Comments

Identity Theft: Corruption is Everywhere

May 8

Posted by Bobby Revell in hacking

In part one (social engineering), I discussed a few ways your private information can be stolen, leading to full blown identity theft. Though I discussed popular methods, they are not the number one way to have your identification information ripped off. Criminals that want this information, don’t want to spend agonizing hours, ending up with crumbs – they want fully detailed lists, comprised of thousands of identities.

The places where are highly personal information exist are staggering. Your fingerprints, bank information, family history, drivers license number, social security number and endless other data are stored on hard drives all over the world. Any person with access, from store clerks to computer technicians can easily steal or copy anything they want.

When you hand your credit card to a waiter in a restaurant and they walk away for 5 minutes, they could easily swipe your card in a pocket sized magnetic strip copier, and have all your information. The fact is, there are so many people with access to this information, but nobody pays attention to them.

One of the most lucrative illegal businesses is selling black market copies of DVD movies. Any fourteen year old kid with clandestine Blu-Ray decryption software (which you can get for free) can start a highly profitable business right out of their cars – simply by getting a job at a DVD rental store. This allows them to attain a massive inventory, the cornerstone of any successful business. Sure, the job pays $6.00/hour, but the extra $1000.00/week selling illegal DVD’s makes that job one to keep for many young people.

A Frightening Example

A few days ago, 96 students from a San Diego State fraternity were arrested for running a highly organized, illegal drug ring – selling to anyone on campus with money. One of the students was only a month away from graduating with a masters degree in homeland security. One was a criminal justice major; another is suspected of having ties to the Mexican mafia. This is only one campus. Think about all the people who got away with similar crimes and actually do have jobs in the CIA, FBI or homeland security. It is frightening to contemplate, but happens every day.

Corrupted Law Enforcement

People believe that highly classified computer systems are secure, and surely your information is safe with them…right? Think again Sherlock. Most, if not all of the FBI’s mainframe has already been copied and sold thousands of times. You could probably buy a copy of it yourself, if you knew where to look. For crying out loud, an IRS employee could leave work everyday with hard drive back ups to sell on the black market. Some experts believe that that homeland security’s entire system was copied and replaced with an exact replica of itself. Sounds impossible? Read Joanna Rutkowska’s article Introducing Blue Pill – a fascinating post. It is possible to steal information through hacking, but the old fashioned method of just taking it is even more effective. The Hell’s Angels motorcycle gang has judges, politicians, FBI agents and many others infiltrated into the system, just to show a common example.

And then you have corrupted law enforcement, the king of all illegal information. The great thing is, when they get your information, they get everything. Sometimes they even have your DNA profile and a fresh copy of your fingerprints. This information is sold every second of every day on the black market. We live in a new world, where criminal elements – completely above the law – run and control everything you see. If you don’t believe it, you are living under a rock.

Fingerprints

The days of fingerprints being a reliable resource for identifying criminals is becoming an outdated joke. It is extremely easy to copy a person’s fingerprints. It is even possible to produce a pair of gloves with fingerprints embedded in them. Want to be someone else? Just put on a pair of special gloves. A criminal can now become anyone they want and leave someone else’s fingerprints all over the crime scene. To see just how easy it is, check out How To Fake Fingerprints. This is a basic method, but very effective. Imagine if someone made thousands of copies of anyone’s prints and sold them to criminals all over the world. It is happening as we speak.

The Art of Intrusion

I mentioned Kevin Mitnick’s book, The Art of Deception in part one of this two part series. The Art of Intrusion, his second book, takes a different approach. This offers actual case studies of unbelievable crimes committed by hackers – breaking them down into detail. Written like a crime thriller, it offers much insight into how actual hacks were achieved. You can download the free e-book version in PDF format from The Art of Intrusion.pdf. In today’s world of information super thieves, everyone of us needs to be educated in these important matters. If you are reading this article, then you need to read this book. Chances are, you probably work with information thieves, or have them in your family. They are everywhere. Like I said before, the best way to protect yourself, is by understanding how they do it. Take a stand and get informed.

Check out part 1: Identity Theft: Social Engineering

Tags: , , , ,

33 Comments

Identity Theft: Social Engineering

May 7

Posted by Bobby Revell in hacking

How easy is it to steal someone’s identity? How exactly do the thieves get your private information? It’s much different than most people believe. One of the biggest problems is that law enforcement is doing literally nothing to contain this worldwide problem. The answer is not in governmental Internet control, regardless of what they think.

I know many bloggers and site owners who are afraid to use their real names and pictures on the Internet, fearful their information may help out the criminals. I totally disagree with that. If you wish to protect your anonymity, do it for other reasons, not because you’re afraid of being violated. To understand how they steal your information, we must understand the criminal mindset.

LAN networks and phishing

Signing in to your e-mail account or buying something on line with a credit card is actually an unlikely place for crooks to get your information, unless it’s on a LAN network. If you use cable Internet or broadband, make sure you use a router. I personally wouldn’t plug an Ethernet cable into my computer without a router for protection. Never send private information over a LAN (local area network). For those of you who don’t understand, it’s a public network access point, like a coffee shop, hotel, college campus or at work. Never buy something on line while connected through a LAN. Your information can be stolen by any hacker using an easy to use Linux program like an Ettercap filter or many others. Using this method, the hacker’s digital footprints are virtually impossible to trace and you will never know who stole your information. Any non-technical person can learn how to steal information on a LAN in around thirty minutes – yes, it’s that easy.

Never sign into any financial account from an e-mail

If Pay Pal, or the IRS sends you an e-mail, DO NOT sign in using that link! It’s known a phishing – you may have heard of it (it’s shocking how many people don’t know really understand this). Neither one of these ever send those types of e-mails. If you get an email from pay pal saying you need to update your account information, do not answer it. If you’re concerned, Just go to Pay Pal directly and sign in. The most likely way for the criminals to get you on line is through a phishing attack.

Social Engineering

The methods listed above are not the most effective way for criminals to steal your information. The real way is through social engineering. For people like me and others interested in hacking, this is completely redundant information; however, I realize most of you have probably never even heard of it.

What exactly is social engineering? a collection of techniques used to manipulate people into performing actions or divulging confidential information. While similar to a confidence trick or simple fraud, the term typically applies to trickery for information gathering or computer system access and in most cases the attacker never comes face-to-face with the victim.

Examples of Social Engineering:

  • If you have a private, unlisted phone number, it is child’s play to get it. I could call the electricity company where you pay your bill, for example, and tell them I’m doing a reference check for homeland security. I would say, “Thank you for your help. The current phone number for Mr. Doe is 555-7125-5479, is that correct?”
    They answer, “No, the correct number is…”
    Boom…I have your private, unlisted number. This is a simplified method, but you get the idea.
  • Kevin Rose, co-founder of DIGG, had a fantastic example of social engineering on his web based video show “The Broken” about how to get free pizza for life. He walked into a pizza delivery behind a customer and stood in line so he could overhear their order. After getting their name and what they ordered, he walked out. Thirty minutes later, he called the pizza place, told them he had come in earlier and received a bad pizza but couldn’t eat it. He talked to the manager, got a free pizza comp and reordered. He went down and picked up his free pizza. He chose a place that did mostly deliveries, but used the identity of a walk in customer – very smart indeed. Just don’t be dumb enough to actually try it, you may go to jail.

The Art of Deception

Hacking is not a bad thing and hackers are not bad people. There are hackers and there are crackers (script kiddies, punks or chumps), it is the crackers who do evil things. A hacker builds things and makes them better, a cracker breaks and steals things. Hackers built the Internet, so they are beneficial people. My favorite hacker of all time is Kevin Mitnick. I highly recommend reading his book, The Art of Deception, the bible of social engineering.

I read this book a few years ago and just reread it again. The best way to protect yourself is to understand how your information is actually stolen. This book is of monumental importance – a must read for everyone. You do not even have to use the Internet to have your information stolen. This book shows you in a series of real world examples, how information thieves operate. This book will open your eyes to the true reality of how it’s done. I have the utmost respect for Kevin Mitnick for turning his life around and doing something great for society.

Check out part 2: Identity Theft: Corruption is Everywhere

Tags: , , , , ,

13 Comments

Protect Your Blog NOW!!!

Dec 24

Posted by Bobby Revell in blogging tips

With Santa’s Community Blog getting hacked and many folks from MyBlogLog experiencing some weird problems, the concern of Internet security is now in the spotlight. Before you run to delete your MyBlogLog account…just remember that there is no such thing as perfect Internet security!

Our good friend Polliwog had some problems too and has decided to create a fresh blog from scratch…GO PAULA!!!! Her new blog is Six 4 Paula! How exciting…let’s support Paula and Santa!!! Paula says she’ll be posting pretty soon :smile:

MyBlogLog has been a fantastic source of traffic for me and probably most of you. If you think that Yahoo isn’t concerned about security, you are wrong. All big sites are big targets of hackers…that’s just how it is and it will always be that way. We don’t know what is really going on or who is to blame.

Read the rest of this entry »

Tags:

28 Comments

Ethical Theories of Social Networking

Oct 12

Posted by Bobby Revell in blogging tips, social networking

Cater to your community

I have my own ethical theories of social networking based on friendship and smart linking techniques. Learn and apply them on your blog now. Don’t put it off!

There are many ways to get ideas for posts. One really good idea is to find a post that is interesting to you and write a related one of your own. I’ve told you all that it’s better to link to someone’s post rather than their home page.

Why? Because it is your content that counts, not your site’s home page!

Read the rest of this entry »

Tags: , , , ,

61 Comments