Tillbaka till svenska Fidonet
English   Information   Debug  
ENET.SYSOP   33903
ENET.TALKS   0/32
ENGLISH_TUTOR   0/2000
EVOLUTION   0/1335
FDECHO   0/217
FDN_ANNOUNCE   0/7068
FIDONEWS   24126
FIDONEWS_OLD1   0/49742
FIDONEWS_OLD2   0/35949
FIDONEWS_OLD3   0/30874
FIDONEWS_OLD4   0/37224
FIDO_SYSOP   12852
FIDO_UTIL   0/180
FILEFIND   0/209
FILEGATE   0/212
FILM   0/18
FNEWS_PUBLISH   4408
FN_SYSOP   41678
FN_SYSOP_OLD1   71952
FTP_FIDO   0/2
FTSC_PUBLIC   0/13599
FUNNY   0/4886
GENEALOGY.EUR   0/71
GET_INFO   105
GOLDED   0/408
HAM   0/16070
HOLYSMOKE   0/6791
HOT_SITES   0/1
HTMLEDIT   0/71
HUB203   466
HUB_100   264
HUB_400   39
HUMOR   0/29
IC   0/2851
INTERNET   0/424
INTERUSER   0/3
IP_CONNECT   719
JAMNNTPD   0/233
JAMTLAND   0/47
KATTY_KORNER   0/41
LAN   0/16
LINUX-USER   0/19
LINUXHELP   0/1155
LINUX   0/22092
LINUX_BBS   0/957
mail   18.68
mail_fore_ok   249
MENSA   0/341
MODERATOR   0/102
MONTE   0/992
MOSCOW_OKLAHOMA   0/1245
MUFFIN   0/783
MUSIC   0/321
N203_STAT   926
N203_SYSCHAT   313
NET203   321
NET204   69
NET_DEV   0/10
NORD.ADMIN   0/101
NORD.CHAT   0/2572
NORD.FIDONET   189
NORD.HARDWARE   0/28
NORD.KULTUR   0/114
NORD.PROG   0/32
NORD.SOFTWARE   0/88
NORD.TEKNIK   0/58
NORD   0/453
OCCULT_CHAT   0/93
OS2BBS   0/787
OS2DOSBBS   0/580
OS2HW   0/42
OS2INET   0/37
OS2LAN   0/134
OS2PROG   0/36
OS2REXX   0/113
OS2USER-L   207
OS2   0/4786
OSDEBATE   0/18996
PASCAL   0/490
PERL   0/457
PHP   0/45
POINTS   0/405
POLITICS   0/29554
POL_INC   0/14731
PSION   103
R20_ADMIN   1121
R20_AMATORRADIO   0/2
R20_BEST_OF_FIDONET   13
R20_CHAT   0/893
R20_DEPP   0/3
R20_DEV   399
R20_ECHO2   1379
R20_ECHOPRES   0/35
R20_ESTAT   0/719
R20_FIDONETPROG...
...RAM.MYPOINT
  0/2
R20_FIDONETPROGRAM   0/22
R20_FIDONET   0/248
R20_FILEFIND   0/24
R20_FILEFOUND   0/22
R20_HIFI   0/3
R20_INFO2   3219
R20_INTERNET   0/12940
R20_INTRESSE   0/60
R20_INTR_KOM   0/99
R20_KANDIDAT.CHAT   42
R20_KANDIDAT   28
R20_KOM_DEV   112
R20_KONTROLL   0/13271
R20_KORSET   0/18
R20_LOKALTRAFIK   0/24
R20_MODERATOR   0/1852
R20_NC   76
R20_NET200   245
R20_NETWORK.OTH...
...ERNETS
  0/13
R20_OPERATIVSYS...
...TEM.LINUX
  0/44
R20_PROGRAMVAROR   0/1
R20_REC2NEC   534
R20_SFOSM   0/340
R20_SF   0/108
R20_SPRAK.ENGLISH   0/1
R20_SQUISH   107
R20_TEST   2
R20_WORST_OF_FIDONET   12
RAR   0/9
RA_MULTI   106
RA_UTIL   0/162
REGCON.EUR   0/2056
REGCON   0/13
SCIENCE   0/1206
SF   0/239
SHAREWARE_SUPPORT   0/5146
SHAREWRE   0/14
SIMPSONS   0/169
STATS_OLD1   0/2539.065
STATS_OLD2   0/2530
STATS_OLD3   0/2395.095
STATS_OLD4   0/1692.25
SURVIVOR   0/495
SYSOPS_CORNER   0/3
SYSOP   0/84
TAGLINES   0/112
TEAMOS2   0/4530
TECH   0/2617
TEST.444   0/105
TRAPDOOR   0/19
TREK   0/755
TUB   0/290
UFO   0/40
UNIX   0/1316
USA_EURLINK   0/102
USR_MODEMS   0/1
VATICAN   0/2740
VIETNAM_VETS   0/14
VIRUS   0/378
VIRUS_INFO   0/201
VISUAL_BASIC   0/473
WHITEHOUSE   0/5187
WIN2000   0/101
WIN32   0/30
WIN95   0/4288
WIN95_OLD1   0/70272
WINDOWS   0/1517
WWB_SYSOP   0/419
WWB_TECH   0/810
ZCC-PUBLIC   0/1
ZEC   4

 
4DOS   0/134
ABORTION   0/7
ALASKA_CHAT   0/506
ALLFIX_FILE   0/1313
ALLFIX_FILE_OLD1   0/7997
ALT_DOS   0/152
AMATEUR_RADIO   0/1039
AMIGASALE   0/14
AMIGA   0/331
AMIGA_INT   0/1
AMIGA_PROG   0/20
AMIGA_SYSOP   0/26
ANIME   0/15
ARGUS   0/924
ASCII_ART   0/340
ASIAN_LINK   0/651
ASTRONOMY   0/417
AUDIO   0/92
AUTOMOBILE_RACING   0/105
BABYLON5   0/17862
BAG   135
BATPOWER   0/361
BBBS.ENGLISH   0/382
BBSLAW   0/109
BBS_ADS   0/5290
BBS_INTERNET   0/507
BIBLE   0/3563
BINKD   0/1119
BINKLEY   0/215
BLUEWAVE   0/2173
CABLE_MODEMS   0/25
CBM   0/46
CDRECORD   0/66
CDROM   0/20
CLASSIC_COMPUTER   0/378
COMICS   0/15
CONSPRCY   0/899
COOKING   32913
COOKING_OLD1   0/24719
COOKING_OLD2   0/40862
COOKING_OLD3   0/37489
COOKING_OLD4   0/35496
COOKING_OLD5   9370
C_ECHO   0/189
C_PLUSPLUS   0/31
DIRTY_DOZEN   0/201
DOORGAMES   0/2057
DOS_INTERNET   0/196
duplikat   6002
ECHOLIST   0/18295
EC_SUPPORT   0/318
ELECTRONICS   0/359
ELEKTRONIK.GER   1534
ENET.LINGUISTIC   0/13
ENET.POLITICS   0/4
ENET.SOFT   0/11701
Möte FIDONEWS_OLD4, 37224 texter
 lista första sista föregående nästa
Text 29880, 125 rader
Skriven 2015-12-28 20:23:02 av mark lewis (1:3634/12.73)
  Kommentar till text 29871 av David Drummond (3:640/305)
Ärende: Rules of Echomail
=========================
29 Dec 15 09:04, you wrote to me:

 ml>> 1. the card is read.
 ml>> 2. the transaction is authorized.
 ml>> 3. the money transferred from your account into the retailer's
 ml>> account.

 ml>> 4. at this point, if the retailer is hacked or not ligitimate, the
 ml>> money may be moved to other accounts which may be accessed via ATM...
 ml>> likely it will be shuffled between several accounts before being
 ml>> harvested...

 DD> Your proposition bares the same veracity as the idea of routed
 DD> echomail. We do not live in your your little hypothetical world of
 DD> proof of concept attacks.

whatever... when you get taken like this, i'm just going to sit back and laugh
my ass off... no finger pointing or "i told you so"... just a huge long belly
laugh...

 DD>>>>> Have you seen these USB connections?

 ml>>>> yes...

 DD>>> You are unique in the world.

 ml>> no i'm not... they are easily seen in pictures as well as in the
 ml>> rooms where the equipment is housed... i've seen both while following
 ml>> up on research...

 DD> Must use different terminals in your area to what they do here.

terminals? they're regular computers! they used to run OS/2 but these days they
run winwhatever...

here's a few articles of interest...

http://krebsonsecurity.com/2015/01/thieves-jackpot-atms-with-black-box-attack/

http://www.theregister.co.uk/2015/01/07/atm_jackpotted_with_samsung_s4/

http://www.wired.com/2013/12/whos-robbing-atms-usb-stick/

http://securityaffairs.co/wordpress/23421/cyber-crime/rob-atms-couple-sms-messages.html


http://www.tomsguide.com/us/atm-hack-cardless,news-19701.html

http://www.wired.com/2014/11/nashville/

https://nakedsecurity.sophos.com/2014/06/11/14-year-olds-find-manual-online-hack-an-atm-during-their-school-lunch-hour/




 DD>>>>> As yet there is no reported evidence of this happening, in this
 DD>>>>> country at least.

 ml>>>> you depend on the news for too much... everyone already knows that
 ml>>>> the news is jaded one way or the other and only report maybe half
 ml>>>> of what they are aware of...

 DD>>> If it is happening, someone is aware of it.

 ml>> yup, at least the crooks... others may not even be aware of it yet...

 DD> Not the banks, nor the pepole losing the money from their accounts?

apparently not... according to you, they'd be crowing from the rooftops...

 ml>> that's like the thing that was done many years back where someone
 ml>> would get some sort of small cheap item sent to them and their CC
 ml>> charged up to $20 for it... rarely did anyone ever bother to dispute
 ml>> it because the charge amount was so small...

 DD> I suspect if someone made multiple $100.00 hits on my account I would
 DD> notice. YMMV

there's that reading comprehension problem again... where did i say $100 in the
above paragraph?

 DD>>>>> BTW - My role at work doesn't involve financial transactions, just
 DD>>>>> personal data.

 ml>>>> i said security... it doesn't matter if it is financial or personal
 ml>>>> or corporate data... isn't that data on those RFID card personal
 ml>>>> data?

 DD>>> I am of the opinion it is just a few numbers. Nothing about me
 DD>>> personally at all.

 ml>> it isn't about you at all... it is all about getting $$$ from you and
 ml>> moving on fast enough that they aren't caught...

 DD> Or noticed?

by the time you notice, they're already long gone...

 ml>>>> are you sure that your network is not being used to shuttle stolen
 ml>>>> data out onto the internet highway on to its next destination?

 DD>>> That network has no direct contact with the outside world.

 DD>>> All data must go through authenticating proxies.

 ml>> they're no trouble to tunnel data out of with the necessary
 ml>> credentials... many networks have found that out the hard way... once
 ml>> authenticated, traffic is allowed to flow... one can easily encrypt a
 ml>> VPN through an https tunnel and there goes your safeguards...

 DD> I "might" be able - our users are not. This is NOT a public network.

never put anything past your users... they are smarter than you think ;)

)\/(ark

"So let me ask you a question about this brave new world of yours. When you've
killed all the bad guys, and when it's all perfect, and just and fair, and when
you have finally got it exactly the way you want it, what are you going to do
with the people like you? The trouble makers. How are you going to protect your
glorious revolution from the next one?" - The twelfth Doctor

... Didn't I meet you in some other hallucination??
---
 * Origin:  (1:3634/12.73)