|
|
| Author |
Message |
| lllN30lll |
This post is not being displayed .
|
lllN30lll
World Chat Champion
Joined: 12 Jun 2005
Karma :  
|
 Posted: 21:12 - 03 May 2007  Post subject: Advice from an Ethical hacker regarding your passwords |
 |
|
thought i'd help a few of you lot out and explain how an Ethical hacker works.
this bit of text is taken from a member of another biker forum, after his Paypal account was hijacked, as well as his email adressI posted this little titbit to show him how it was probably done.
he said:-
| Quote: |
I havnt used it since the 6th of December so ive just logged into it to find that im
-£498.30 in the red and that it says although we have sent numerous communications to you, we have not received reimbursement for this negative balance. If you do not add funds immediately, we may turn your account over to a collection agency or to our attorneys to recover the money owed.
I have not recived any notification at my email address in which I registered for this account that any of this was going on so I guess the cunt has been intercepting my Paypal emails.
all my passwords are the same for my Paypal, bank account, forums e.t.c (so I dont forget them) and if you assign the letters to the numbers they are in the alphabet (e.g......A=1 B=2 e.t.c)it gives you my PIN numbers for my credit cards, bank cards e.t.c |
I replied with:-
they way I hack Paypals/cc details is to exploit a forum, download the database, load the pass hash's into a Bruteforcer, leave it a few days, then check all the passwords it's found against their email adress's.
%80 of the time people use the same password for everything. so serves you right IMO
look i'll show you.
first I load a forum Database which contains the hash/salt, username, email adress etc.
then i'll try a huge dictionary attack which will guess a shitload or random words. that'll prob crack a few hundred.
i'll then try bruteforce using the numbers from 1 - 10, let that crack a few hundred.
then if i'm greedy i'll let it run through a-z trying every single word oppurtunity.
best thing for you all to do to try to stop us (hackers) is to use a password containing UPPERCASE, lowercase, and numbers suck as Fi3s10Cl
https://img.photobucket.com/albums/v707/lllN30lll/untitled-4.jpg
PLEASE PLEASE stop using the same password for everything, ESPECIALLY eBay, online banking, Paypal, E-Gold, eBuyer accounts etc.
so.... off you go
____________________
Turbo R1
CRF450R |
|
| Back to top |
  |
You must be logged in to rate posts |
|
 |
| colin1 |
This post is not being displayed .
|
colin1
Captain Safety
Joined: 17 Feb 2005
Karma : 
|
|
| Back to top |
| |
You must be logged in to rate posts |
|
|
| lllN30lll |
This post is not being displayed .
|
lllN30lll
World Chat Champion
Joined: 12 Jun 2005
Karma :
|
|
| Back to top |
| |
You must be logged in to rate posts |
|
|
| Suzuki |
This post is not being displayed .
|
Suzuki
Roger
Joined: 03 May 2005
Karma : 
|
Posted: 22:53 - 03 May 2007  Post subject: |
|
|
I don't think your idea of 'Ethical Hacking' and my idea of ethical hacking really line up.
First you say it's 'advice from an ethical hacker'
then you say "the way I hack Paypals/cc ..."
Ethical hackers don't hack paypal accounts and credit cards.
If you're hacking paypal accounts I wouldn't call you an ethical hacker, i'd call you a cunt. If you really are doing that then you deserve to be fucking castrated.
Twat.
____________________
<Simple> no I'm shaven Jon 
<Simple> it is a big enough hole.. I'll leave it now
Ride: 1999 Suzuki GSXR600 (yellow/black) IRC: Stats - Relationship Map |
|
| Back to top |
  |
You must be logged in to rate posts |
|
|
| veeeffarr |
This post is not being displayed .
|
veeeffarr
Super Spammer
Joined: 22 Jul 2004
Karma :  
|
| Posted: 22:55 - 03 May 2007 Post subject: |
|
|
I agree,
You're not an ethical hacker, you're just a mong script kiddie with a neat little GUI program to do it all for you.
T |
|
| Back to top |
| |
You must be logged in to rate posts |
|
|
| lllN30lll |
This post is not being displayed .
|
lllN30lll
World Chat Champion
Joined: 12 Jun 2005
Karma :
|
|
| Back to top |
| |
You must be logged in to rate posts |
|
|
| Suzuki |
This post is not being displayed .
|
Suzuki
Roger
Joined: 03 May 2005
Karma :
|
|
| Back to top |
| |
You must be logged in to rate posts |
|
|
| strag |
This post is not being displayed .
|
strag
World Chat Champion
Joined: 08 Oct 2004
Karma : 
|
|
| Back to top |
| |
You must be logged in to rate posts |
|
|
| veeeffarr |
This post is not being displayed .
|
veeeffarr
Super Spammer
Joined: 22 Jul 2004
Karma :
|
|
| Back to top |
| |
You must be logged in to rate posts |
|
|
| stinkwheel |
This post is not being displayed .
|
stinkwheel
Bovine Proctologist
Joined: 12 Jul 2004
Karma : 
|
| Posted: 00:52 - 04 May 2007 Post subject: |
|
|
Or use a fucking long word that doesn't appear in the dictionary?
I'm a big fan of 15+ letter passwords.
No good hacking my paypal because I don't use paypal for that exact reason. No good hacking my BB passwords because they are pathetically simple and if posting messages under my name gives you a hardon, spank away. You can't replicate my style of writing so it would quickly become obvious that it wasn't me.
____________________
“Rule one: Always stick around for one more drink. That's when things happen. That's when you find out everything you want to know.”
I did the 2010 Round Britain Rally on my 350 Bullet. 89 landmarks, 3 months, 9,500 miles. |
|
| Back to top |
| |
You must be logged in to rate posts |
|
|
| m99dws |
This post is not being displayed .
|
m99dws
World Chat Champion
Joined: 09 Jun 2004
Karma :
|
|
| Back to top |
| |
You must be logged in to rate posts |
|
|
| Itchy |
This post is not being displayed .
|
Itchy
Super Spammer
Joined: 07 Apr 2005
Karma : 
|
|
| Back to top |
| |
You must be logged in to rate posts |
|
|
| techierob |
This post is not being displayed .
|
techierob
Traffic Copper
Joined: 05 Oct 2006
Karma :
|
|
| Back to top |
| |
You must be logged in to rate posts |
|
|
| Metal_Mickey |
This post is not being displayed .
|
Metal_Mickey
Nitrous Nuisance
Joined: 29 Apr 2005
Karma : 
|
|
| Back to top |
| |
You must be logged in to rate posts |
|
|
| Dom |
This post is not being displayed .
|
Dom
World Chat Champion
Joined: 06 Sep 2004
Karma :
|
| Posted: 08:56 - 04 May 2007 Post subject: |
|
|
As techierob says that reads so much like 'Look at all the clever stuff I can do!' when in truth there's not a thing there that couldn't be achieved by a trained chimp.
Copying and pasting exploits into software that the web host hasn't got around to updating cannot even come close to being ethical. Ethical would be going round and emailing everyone running out of date software to let them know the risk it poses, and given you're getting as far as running databases through some password guessing app you're clearly not doing that.
I'm just pleased to see that 99% of the emails on that list of yours look like automated registrations by spammers so they'll be useless whether the program guesses their passwords or not.
____________________
Photos and that |
|
| Back to top |
| |
You must be logged in to rate posts |
|
|
| m99dws |
This post is not being displayed .
|
m99dws
World Chat Champion
Joined: 09 Jun 2004
Karma :
|
| Posted: 09:17 - 04 May 2007 Post subject: Re: Advice from an Ethical hacker regarding your passwords |
|
|
Everyone knows l33t h4x0rz use Linux, not Windows XP  |
|
| Back to top |
| |
You must be logged in to rate posts |
|
|
| veeeffarr |
This post is not being displayed .
|
veeeffarr
Super Spammer
Joined: 22 Jul 2004
Karma :
|
|
| Back to top |
| |
You must be logged in to rate posts |
|
|
| GodzGift |
This post is not being displayed .
|
GodzGift
World Chat Champion
Joined: 12 May 2006
Karma :
|
| Posted: 10:38 - 04 May 2007 Post subject: |
|
|
Ok I’m not going to jump on the bandwagon here though i do admit the replies are coming from people who are both correct and they feel strongly towards being hacked like most people would. What needs to be established is, if a topic was created with the following message
| Code: | "Hi all,
Remember not to have all your passwords the Same in different sites, i.e. hotmail, pay pal, forum, etc, as you are venerable to be being seriously hacked in all these places at once etc" |
Would this have had the same impact? Or will be taken more seriously by giving a simple demo with a few screen shots and implementation process. What needs to be understood is the topic is created in order to highlight some of these issues to the people who may not be very technically inclined as us.
Lets not forget, most of the people who have replied to the topic KNOW they’re stuff well, what about the people who have not replied but have read the post, then gone and changed there passwords or even taken the advice on board to not put themselves in a similar situation.
260+ views in the topic I’m sure it’s done some good in highlighting the warning. Catch 22, the advice has been overruled by the cracking process which people don’t agree with. |
|
| Back to top |
| |
You must be logged in to rate posts |
|
|
| Dom |
This post is not being displayed .
|
Dom
World Chat Champion
Joined: 06 Sep 2004
Karma :
|
| Posted: 10:46 - 04 May 2007 Post subject: |
|
|
I think the phrase 'Ethical hacker' is what has people's backs up. It's not ethical to offer advice on passwords to a one small forum and then to go ahead and punish the remaining 99.99999999% of net users who have not been warned and are largely unaware.
____________________
Photos and that |
|
| Back to top |
| |
You must be logged in to rate posts |
|
|
| MarJay |
This post is not being displayed .
|
MarJay
But it's British!
Joined: 15 Sep 2003
Karma : 
|
| Posted: 11:14 - 04 May 2007 Post subject: |
|
|
Script Kiddie would have been a more accurate term!
____________________
British beauty: Triumph Street Triple R; Loony stroker: KR1S; Track fun: GSXR750 L1; Commuter Missile: GSX-S1000F; Cheap project: CBR900RR FireBlade
Remember kids, bikes aren't like lego. You can't easily take a part from one bike and then fit it to another. |
|
| Back to top |
| |
You must be logged in to rate posts |
|
|
| veeeffarr |
This post is not being displayed .
|
veeeffarr
Super Spammer
Joined: 22 Jul 2004
Karma :
|
| Posted: 11:15 - 04 May 2007 Post subject: |
|
|
I agree, it's the 'bigging up of oneself' that I disagree with, but lets not forget that the topic brings up a very important issue and probably is in fact quite helpful.
Another top tip is to keep all of your passwords in a safe place written down a on a piece of paper, hackers can't read paper in a drawer
This also means you can be more random with your passwords and gives you no excuse to have to use the same password for everything |
|
| Back to top |
| |
You must be logged in to rate posts |
|
|
| Dom_ |
This post is not being displayed .
|
Dom_
Points Mean Prizes
Joined: 02 Aug 2004
Karma : 
|
| Posted: 11:22 - 04 May 2007 Post subject: |
|
|
 How is he punishing them?
Yeah, i also think he's a cunt cock twat. |
|
| Back to top |
| |
You must be logged in to rate posts |
|
|
| Dom |
This post is not being displayed .
|
Dom
World Chat Champion
Joined: 06 Sep 2004
Karma :
|
|
| Back to top |
| |
You must be logged in to rate posts |
|
|
| Dom_ |
This post is not being displayed .
|
Dom_
Points Mean Prizes
Joined: 02 Aug 2004
Karma :
|
| Posted: 11:29 - 04 May 2007 Post subject: |
|
|
I see your point, but i still don't think he's punishing them.  |
|
| Back to top |
| |
You must be logged in to rate posts |
|
|
| Dom |
This post is not being displayed .
|
Dom
World Chat Champion
Joined: 06 Sep 2004
Karma :
|
|
| Back to top |
| |
You must be logged in to rate posts |
|
 |
Old Thread Alert!
The last post was made 18 years, 306 days ago. Instead of replying here, would creating a new thread be more useful? |
 |
|
|
Help & FAQs
Search BCF
Members
Groups
Events Calendar
rating
rating