Scott Granneman, 2004-01-21
Colapse all |
Post comment
A Visit from the FBI
2004-01-22
Lee (7 replies)
Lee (7 replies)
A Visit from the FBI
2004-01-25
Anonymous (2 replies)
Anonymous (2 replies)
You said "Every technique you posted about is exact carbon copy, tool for tool, and scenario for scenario from the introduction course of the SANS hacking project." Are you implying the FBI would stoop so low as to steal techniques from abroad? You sound like a terrorist, perhaps al Qaeda? Perceptio...
[ more ] [ reply ]
[ more ] [ reply ]
A Visit from the FBI
2004-02-01
Anonymous
Anonymous
I agree, about al queda, everyone seems to be giving these punk asses a bunch of credit for being hacker ex tro di n air. The fact of the matter is, they are going to move from airplanes to Ryder trucks, ala mckvey. In the future, I see an IDS tech looking at logs as a Ryder Truck pulls up to his ...
[ more ] [ reply ]
[ more ] [ reply ]
A Visit from the FBI
2004-01-26
Dan
Dan
SANS teaches people how to in class. If he taught something that looked like SANS courseware, it's probably made the lecture circuit by way of HOPE or one of the countless other hacker conventions years before it was ever mentioned at SANS. SANS is Infosec for middle management.
...
[ more ] [ reply ]
...
[ more ] [ reply ]
A Visit from the FBI
2004-01-30
Anonymous
Every technique and idea taught by SANS is lifted from somewhere else. Watermarks in your slides prove it.
What is your point? This GS or SES level guy doesn't have time to play with powerpoint. He understands the material and chooses to augment his speech with a few canned demos.
Big whoop....
[ more ] [ reply ]
Anonymous
Every technique and idea taught by SANS is lifted from somewhere else. Watermarks in your slides prove it.
What is your point? This GS or SES level guy doesn't have time to play with powerpoint. He understands the material and chooses to augment his speech with a few canned demos.
Big whoop....
[ more ] [ reply ]
A Visit from the FBI, blah, blah, blah
2004-01-22
Anonymous (5 replies)
Anonymous (5 replies)
Your story made me feel all warm and cozy. I'm proud that the FBI has such skilled and accomplished agents that they can "playback" a scripted show about computer seekurity. I lost all respect for the guy when he wouldn't hook his laptop up the Internet because it was too dangerous and/or against ...
[ more ] [ reply ]
[ more ] [ reply ]
A Visit from the FBI, blah, blah, blah
2004-01-27
Eta(s)
Eta(s)
I guess you completely missed the point: He is a good teacher and a mentor, as abiding regulations is not being "sissy" about being predated, it's really childish to think that.
If you're a computer security expert, you know well enough that you protect against the CHANCE of getting attacked, jus...
[ more ] [ reply ]
If you're a computer security expert, you know well enough that you protect against the CHANCE of getting attacked, jus...
[ more ] [ reply ]
A Visit from the FBI, blah, blah, blah
2004-01-28
Anonymous (1 replies)
Anonymous (1 replies)
Unplugging the network cable is the ultimate in security. ;)
I would certainly hope that the FBI is telling its agents not to connect their laptops to the Internet except when it's strictly necessary. *Especially* if they're running Windows. Too many 0-day exploits.
...
[ more ] [ reply ]
I would certainly hope that the FBI is telling its agents not to connect their laptops to the Internet except when it's strictly necessary. *Especially* if they're running Windows. Too many 0-day exploits.
...
[ more ] [ reply ]
A Visit from the FBI, blah, blah, blah
2004-01-30
Anonymous (1 replies)
Anonymous (1 replies)
it was probably a wireless enabled system connected to some kids at the neighboring starbucks :-)...
[ more ] [ reply ]
[ more ] [ reply ]
A Visit from the FBI, blah, blah, blah
2004-01-29
Matt
Matt
I would suspect that the regulation is not taht connecting to the internet is forbidden or even discouraged - but rather something more along the lines of when visiting a facility with an in house network do not connect to their network unless you can first verify what type of security from virus an...
[ more ] [ reply ]
[ more ] [ reply ]
A Visit from the FBI, blah, blah, blah
2004-01-29
Anonymous (2 replies)
Anonymous (2 replies)
Are you stupid? Most government comps with sensitive info are banned from hooking up to the net...for obvious reasosn. ...
[ more ] [ reply ]
[ more ] [ reply ]
A Visit from the FBI, blah, blah, blah
2004-01-30
Anonymous
Anonymous
If it has sensitive info it shouldn't be on a college campus, it should be in a locked room. The reg is probably that you don't hook up a computer to the net unless you need to. Agent Dave didn't need to hook it up, so he didn't.
But why are the FBIs using Windows when they could run Linux on t...
[ more ] [ reply ]
But why are the FBIs using Windows when they could run Linux on t...
[ more ] [ reply ]
A Visit from the FBI
2004-01-23
nevada smith (1 replies)
nevada smith (1 replies)
yes i heard one of these guys speak at uva.
pretty standard stuff. all pretty common knowledge to computer geeks. It would be good if some of this were to reach the average joe though. 60 miniutes or 48hrs would be a good choice.
These fbi guys toot thier own horn quite a bit though, the ego comes...
[ more ] [ reply ]
pretty standard stuff. all pretty common knowledge to computer geeks. It would be good if some of this were to reach the average joe though. 60 miniutes or 48hrs would be a good choice.
These fbi guys toot thier own horn quite a bit though, the ego comes...
[ more ] [ reply ]
A Visit from the FBI
2004-01-26
Anonymous (1 replies)
Anonymous (1 replies)
You did verify that Dave's credentials were real, right?
Also, there is SO much more to cover (from employee background checks, to suspicious network activity, to recommending home users buy and install routers with firewall protection...).
You know what I recommend? A Parent-Teacher-FBI Weeke...
[ more ] [ reply ]
Also, there is SO much more to cover (from employee background checks, to suspicious network activity, to recommending home users buy and install routers with firewall protection...).
You know what I recommend? A Parent-Teacher-FBI Weeke...
[ more ] [ reply ]
A Visit from the FBI
2004-01-29
Anonymous
Anonymous
> You know what I recommend? A Parent-Teacher-FBI Weekend...
What I would recommend: A Parent-Teacher-FBI/CIA weekend with smart and honest person. Hard to find this one.
BTW, better run background check on your financial advisor. You'll be amazed... Forget about that sysadmin - he's too busy ...
[ more ] [ reply ]
What I would recommend: A Parent-Teacher-FBI/CIA weekend with smart and honest person. Hard to find this one.
BTW, better run background check on your financial advisor. You'll be amazed... Forget about that sysadmin - he's too busy ...
[ more ] [ reply ]
A Visit from the FBI
2004-01-26
Anonymous (1 replies)
Anonymous (1 replies)
Cybercrime is not "a grotesque parody of capitalist supply and demand;" there's no parody about it. This is free market capitalism at its purest -- i.e. unhampered by "regulation" that capitalists always complain puts a damper on business....
[ more ] [ reply ]
[ more ] [ reply ]
A Visit from the FBI
2004-01-26
sol289 (2 replies)
sol289 (2 replies)
"russian mafia"... ho-ho-ho... very funny, but it's old story already. does anyone still believing in "evil russian haxors"?
and yes, minsk is not in russia... that FBI guy (is he exist? or you have nothing to write about?) is surely not an FBI. i think that FBI folks knows geography. ...
[ more ] [ reply ]
and yes, minsk is not in russia... that FBI guy (is he exist? or you have nothing to write about?) is surely not an FBI. i think that FBI folks knows geography. ...
[ more ] [ reply ]
Wonder how clever the KGB is
2004-01-27
Anonymous (1 replies)
Anonymous (1 replies)
Wonder how clever the KGB is, they are!!!
2004-01-28
Anonymous (1 replies)
Anonymous (1 replies)
Eastern European crooks are clever, you know why, many of them are former engineers and military workers who lost their jobs during the fall of communism. Now they are looking to exploit and find new ways of making money....
[ more ] [ reply ]
[ more ] [ reply ]
A Visit from the FBI
2004-01-27
rawlogic (1 replies)
rawlogic (1 replies)
A Visit from the FBI
2004-01-27
Anonymous (2 replies)
Anonymous (2 replies)
The only thing I want to ask about is. Why can't they extract Mac data? Especially on OS X, since it is a *nix based OS!...
[ more ] [ reply ]
[ more ] [ reply ]
Macs
2004-01-28
Anonymous (4 replies)
Anonymous (4 replies)
My guess is they just haven't put money into the tools and training for it, since Macintosh is such a minority architecture in the U.S. The article mentioned that they get the RCMP to do Mac forensics for them. If only, say, 5% of your cases involve a Macintosh, it probably makes sense to outsourc...
[ more ] [ reply ]
[ more ] [ reply ]
why they can't extract form a mac
2004-01-29
Anonymous (6 replies)
Anonymous (6 replies)
well..for one thing macs don't keep a backup of every e-mail you've ever recieved in the registry.
macs are actually secure...so they have to get through passwords and permissions.
third..with the latest revision of OS X you can encrypt your entire home directory with 128 bit encryption. this ...
[ more ] [ reply ]
macs are actually secure...so they have to get through passwords and permissions.
third..with the latest revision of OS X you can encrypt your entire home directory with 128 bit encryption. this ...
[ more ] [ reply ]
why they can't extract form a mac
2004-01-30
Anonymous (1 replies)
Anonymous (1 replies)
only plug a firewire cable to another mac and you'll see your target powerbook......
[ more ] [ reply ]
[ more ] [ reply ]
Right-Mouse-Click
2004-01-30
Anonymous (2 replies)
Anonymous (2 replies)
Hey, this machine doesn't right-mouse-click! How do I get to the "Properties" window? Oh, well... send it to the Mounties....
[ more ] [ reply ]
[ more ] [ reply ]
Right-Mouse-Click
2004-01-30
MACLVR (1 replies)
MACLVR (1 replies)
Hold down CNTRL and click the mouse button. That is the same as a right mouse click. You can also buy a two button mouse. They have Mac-compatible two-button mice....
[ more ] [ reply ]
[ more ] [ reply ]
Right-Mouse-Click
2004-01-31
Anonymous
Anonymous
My Macs have 2-button scroll wheel mice, even trackballs. You don;t need the properties windows anyway to get at the files. The use of Outlook combined with open ports and scripting is an awful combination. The Mac is more secure for a variety of reasons, but the most basic reasons could be duplicat...
[ more ] [ reply ]
[ more ] [ reply ]
why they can't extract form a mac
2004-01-31
Anonymous
Anonymous
>all..for one thing macs don't keep a backup of every e-mail you've ever recieved in the registry.
And don't forget to wear your aluminium hats so that Microsoft can't spy on your thoughts.
>macs are actually secure...so they have to get through passwords and permissions.
Windows NT/2000/...
[ more ] [ reply ]
And don't forget to wear your aluminium hats so that Microsoft can't spy on your thoughts.
>macs are actually secure...so they have to get through passwords and permissions.
Windows NT/2000/...
[ more ] [ reply ]
why they can't extract form a mac
2004-02-02
Anonymous
Anonymous
>well..for one thing macs don't keep a backup of every e-mail you've ever recieved in the registry.
Neither does Windoze
>macs are actually secure...so they have to get through passwords and permissions.
So is XP, if you know what you're doing.
>third..with the latest revision of OS ...
[ more ] [ reply ]
Neither does Windoze
>macs are actually secure...so they have to get through passwords and permissions.
So is XP, if you know what you're doing.
>third..with the latest revision of OS ...
[ more ] [ reply ]
Access the FBI through InfraGard
2004-01-27
Jeff
Jeff
Probably the best way to connect with the FBI on these issues is through the InfraGard organization (http://www.infragard.net):
"InfraGard is a Partnership between Private Industry and the U.S. government (represented by the FBI). The InfraGard initiative was developed to encourage the exchange o...
[ more ] [ reply ]
"InfraGard is a Partnership between Private Industry and the U.S. government (represented by the FBI). The InfraGard initiative was developed to encourage the exchange o...
[ more ] [ reply ]
A Visit from the FBI
2004-01-27
Anonymous (1 replies)
Anonymous (1 replies)
Truth or Fiction? The hackers do exist and so does the FBI. People are stupid and don't usually care about computer security. It is just something that is 'suposed' to happen by 'magic.' Knowledge is power, but true knowledge also includes wisdom. The real trouble is simply this - most folks ar...
[ more ] [ reply ]
[ more ] [ reply ]
no way
2004-01-27
Anonymous
Anonymous
"One way to trace just how bad the situation has gotten: track the price for a million credit card numbers. Just a few years ago, Dave saw prices of $100 or more for a million stolen credit card numbers. Now? Pennies. "
So it turns out you can get a million credit card numbers for less than you c...
[ more ] [ reply ]
So it turns out you can get a million credit card numbers for less than you c...
[ more ] [ reply ]
A Visit from the FBI
2004-01-28
Ms Mo (4 replies)
Ms Mo (4 replies)
Ok, I am sure I will just be asking for trouble by asking for comments and or help from here...
Please tell me where I can find reliable information on how to protect my system. I am a home user, Real Estate agent and full time law student. I was recently "hacked" into and it was a night mare. I ...
[ more ] [ reply ]
Please tell me where I can find reliable information on how to protect my system. I am a home user, Real Estate agent and full time law student. I was recently "hacked" into and it was a night mare. I ...
[ more ] [ reply ]
A Visit from the FBI - personal protection
2004-01-28
Jim Lang
Jim Lang
Assuming you won't stay off the internet completely:
Simply, I recommend the following:
* Norton Internet Security (You're on the right track). Set it to "paranoid", and block outside traffic. Blockups, too.
* Mozilla - get rid of Internet Explorer. While it may or may not be "better", it...
[ more ] [ reply ]
Simply, I recommend the following:
* Norton Internet Security (You're on the right track). Set it to "paranoid", and block outside traffic. Blockups, too.
* Mozilla - get rid of Internet Explorer. While it may or may not be "better", it...
[ more ] [ reply ]
A Visit from the FBI
2004-01-29
Zozzlhandler (1 replies)
Zozzlhandler (1 replies)
You should use a hardware gateway product with
stateful packet inspection (firewall) capabilities. These are available for under $100, and protect you much better than software firewalls. Brand names that come to mind are Linksys, Dlink, and Netgear, but there are others. A software firewall that r...
[ more ] [ reply ]
stateful packet inspection (firewall) capabilities. These are available for under $100, and protect you much better than software firewalls. Brand names that come to mind are Linksys, Dlink, and Netgear, but there are others. A software firewall that r...
[ more ] [ reply ]
A Visit from the FBI
2004-01-31
Nick
Nick
Here's a helpful site on the net, that is dedicated to security.
http://grc.com/
If you are willing to spend some time reading on this site, there's a lot to learn. One of the useful services on their site is a page where you can test your firewall. You find it here: https://grc.com/x/ne.dll?bh0bk...
[ more ] [ reply ]
http://grc.com/
If you are willing to spend some time reading on this site, there's a lot to learn. One of the useful services on their site is a page where you can test your firewall. You find it here: https://grc.com/x/ne.dll?bh0bk...
[ more ] [ reply ]
security steps for your home PC
2004-02-01
www.i-t-w.com
www.i-t-w.com
Look for a local computer users group at www.apcug.com. There are often pros who participate in these groups (I'm secretary of mine) who would be happy to point you in the right direction. That said: Windows update (auto update helps), Firewall (Norton 2004 is fine), Antivirus software (again, you ...
[ more ] [ reply ]
[ more ] [ reply ]
A Visit from the FBI
2004-01-28
Jay Edgar Hoover (1 replies)
Jay Edgar Hoover (1 replies)
This paragraph scared the hell out of me...
[...]
many of the computer security folks back at FBI HQ use Macs running OS X, since those machines can do just about anything: run software for Mac, Unix, or Windows, using either a GUI or the command line. And they're secure out of the box.
[....
[ more ] [ reply ]
[...]
many of the computer security folks back at FBI HQ use Macs running OS X, since those machines can do just about anything: run software for Mac, Unix, or Windows, using either a GUI or the command line. And they're secure out of the box.
[....
[ more ] [ reply ]
A Visit from the FBI
2004-01-28
Scotty
Scotty
The real issue for me, is that "average joe" isn't going to get access to this article unless it's reprinted in the non-tech press.
Even associates of mine in the police forces have no mechanism to distribute useful and insightful articles such as this to their users.
As a sysadmin, I know exact...
[ more ] [ reply ]
Even associates of mine in the police forces have no mechanism to distribute useful and insightful articles such as this to their users.
As a sysadmin, I know exact...
[ more ] [ reply ]
A Visit from the FBI
2004-01-28
Hans Gruber
Hans Gruber
All I can say is this (taken from the movie 'Die Hard')...
indiv-1: Sir, I........
indiv-2: Yea
indiv-1: Sir. The FBI is here.
indiv-2: The FBI is here? NOW???!!!???
indiv-1: Yes sir, right over there.
indiv-2: Here. Hold this.
indiv-1: Want a breath mint?
Sorry -- all too funny. To whi...
[ more ] [ reply ]
indiv-1: Sir, I........
indiv-2: Yea
indiv-1: Sir. The FBI is here.
indiv-2: The FBI is here? NOW???!!!???
indiv-1: Yes sir, right over there.
indiv-2: Here. Hold this.
indiv-1: Want a breath mint?
Sorry -- all too funny. To whi...
[ more ] [ reply ]
Firewire Target mode
2004-01-30
Anonymous (1 replies)
Anonymous (1 replies)
A firewire cable will get you access to everything except FileVault-encrypted home directories, where all the good stuff is kept. Then you're out of luck....
[ more ] [ reply ]
[ more ] [ reply ]
Firewire Target mode
2004-01-30
Anonymous
Anonymous
But, as always, if you have physical access to the machine you've pretty much won the game.
Besides. Ever hear of "rubber hose cryptography"? The technique consists of "Tell us the passphrase or something bad will happen to you."
128-bit encryption keeps out the thief, the common hacker, the c...
[ more ] [ reply ]
Besides. Ever hear of "rubber hose cryptography"? The technique consists of "Tell us the passphrase or something bad will happen to you."
128-bit encryption keeps out the thief, the common hacker, the c...
[ more ] [ reply ]
A Visit from the FBI
2004-01-30
Mr. Glass
Mr. Glass
That article made me start thinking: if scripts are all over the net, why only east-europeans use them? I would spect blaming on iraquies, or north-koreans, the enemies of the month. Or is it just my twisted mind ho suspects on each statement about only a segment of our big planet is bad, like 'only...
[ more ] [ reply ]
[ more ] [ reply ]
Mac are ok, but...
2004-01-31
Blackdog (1 replies)
Blackdog (1 replies)
I recently tackled a mac/windows integration project. It is very optimistic to think that Mac's are "secure right out of the box". After installation, you need to download security updates for a long list of vulnerabilities.
Want root on Jaguar? all you need is an install CD and physical access....
[ more ] [ reply ]
Want root on Jaguar? all you need is an install CD and physical access....
[ more ] [ reply ]
Mac are ok, but...
2004-02-03
Anonymous
Anonymous
"Want root on Jaguar? all you need is an install CD and physical access."
Don't be stupid. All you need is physical access. CMD-S during boot gets you into single-user mode with root privileges.
MacOS X is far from the only UNIX to provide an easy-to-enter single user mode. This because the...
[ more ] [ reply ]
Don't be stupid. All you need is physical access. CMD-S during boot gets you into single-user mode with root privileges.
MacOS X is far from the only UNIX to provide an easy-to-enter single user mode. This because the...
[ more ] [ reply ]
A Visit from the FBI
2004-01-31
fireweasel
fireweasel
Read most of the replies-some funny and some truly arrogant. Cut the agent some slack- he was dealing with computer illiterates,generally, and that represents the vast majority of users in U.S. I see the same problem with drivers jabbering on their phones while driving--they deny the laws of physics...
[ more ] [ reply ]
[ more ] [ reply ]
"Danger Will Robinson! Danger!"
2004-02-02
Anonymous
Anonymous
FBI speaker sounds like a the robot from lost in space. Only differance is the robot was smarter. If he was a real security expert he would connect to the internet because he would have made sure his system was locked down for most attacks. There was really no usefull info that has not been passed...
[ more ] [ reply ]
[ more ] [ reply ]
A Visit from the Federal Bureau of Insecurity
2004-02-03
Krag
Krag
ANYONE using a PC today has to have all kinds of anti-virus, anti-spyware, anti-adware, utilities running to prevent their machine being taken over.. and still it may happen... don't ever put your SSN or credit card info on your PC...
A new ThinkPad and PowerBook are comparably priced.
* Windo...
[ more ] [ reply ]
A new ThinkPad and PowerBook are comparably priced.
* Windo...
[ more ] [ reply ]
I know as I taught this course to people yesterday. Are the FBI using SANS material?
Regards...
[ more ] [ reply ]