7/31/2008

DNS attack writer a victim of his own creation

Filed under: — Aviran Mordo

HD Moore has been owned. That’s hacker talk, meaning that Moore, the creator of the popular Metasploit hacking toolkit, has become the victim of a computer attack.

It happened on Tuesday morning, when Moore’s company, BreakingPoint, had some of its Internet traffic redirected to a fake Google page that was being run by a scammer. According to Moore, the hacker was able to do this by launching what’s known as a cache poisoning attack on a DNS server on AT&T’s network that was serving the Austin, Texas, area. One of BreakingPoint’s servers was forwarding DNS traffic to the AT&T server, so when it was compromised, so was HD Moore’s company. (Listen to a podcast about a recent DNS attack.)

When Moore tried to visit Google.com, he was actually redirected to a fake page that served up a Google page in one HTML frame along with three other pages designed to automatically click on advertisements.

No BreakingPoint computer was actually compromised by the incident, but it was still pretty annoying.

Amazon payment systems take on PayPal

Filed under: — Aviran Mordo

Amazon has introduced two new payment systems for merchants and consumers which brings it into a market dominated by PayPal.

Checkout is aimed at online merchants who want a pre-packaged payment system, including tools for managing delivery charges, VAT, promotions and special offers. It features Amazon’s One-click option for rapid payment.

Simple Pay is aimed at consumers who want to use their Amazon account to make purchases on other retailers’ websites.

British NASA hacker to face U.S. trial

Filed under: — Aviran Mordo

A British computer expert lost his appeal on Wednesday against extradition to the United States where he is accused of “the biggest military hack of all time” and could face up to 70 years in prison.

Gary McKinnon was arrested in 2002 after U.S. prosecutors charged him with illegally accessing computers, including the Pentagon, U.S. army, navy and NASA systems, and causing $700,000 worth of damage.

McKinnon told Reuters in 2006 he was just a computer nerd who wanted to find out whether aliens really existed and became obsessed with trawling large military networks for proof.

However, Britain’s highest court, the House of Lords, ruled the gravity of the charges should not be understated and they would carry a maximum life sentence under English law. It turned down his appeal against extradition.

Powered by WordPress