Anybody who sets up a server that ONLY needs state side access or access in a certain area and they do not deny/allow only the ranges should be fired. Then the argument of what if they go on vacation overseas, the chances of this occurring are about 1 in 1,000,000 and it is just stupid.
All of the uneducated people who allow these ports open to overseas IP ranges known for hacking/spam and why would anyone with common-sense need to allow access to their server for someone in China/Russia/Europe?
People don't care about security in the workplace or for that matter home. It is about pointing on crap, and getting spyware then blaming system admins. The problem is they are not engineered on the frontend to be secure.
I block the entire eastern world, in fact the only access to data I allow is controlled and blocked from the Internet period. Then it is locked down server level, with .htaccess, tcpwrappers, iptables, and so on.
I find it amazing that they are surprised this this happening, they have no idea other than making it easy for the end user and allowing it to be hacked on by criminals on the Internet.
Plus, all of the foolish people who post all of their PRIVATE thoughts, Picutures and daily tasks on the public internet. It is just stupid, and using all of these search engines with these spyware features and not knowing where the data is flowing.....
Lastly, Windows has helped contribute to this disaster, security in Windows is terrible at best and constant worms like Conficker spreading at 10,000,000+ and still ongoig...
The Internet is a cesspool of criminals now, and it has features are functional but admins who set up servers with NO security skills or even caring is to blame.
With all of the scammers/hackers/spammers I cannot understand why people try to say it is wrong to block IP ranges, why in the world would ANYONE in China need to access a site in the United States in which it has NO benefit for them???
It goes back to the same fools who act like it is a crime to block out these people, they offer nothing but trash from there to your server. I do not let them get there I have devices in place to block them, even they hack a box to try to hack my servers I have mechanisms in place. Lastly, the Internet is a criminals paradise with no laws in other countries and they continue to exploit spam/hack everyday because people will NOT block the ranges.
If they want to send an email from overseas then they can send me an IP address other than that it will never be allowed.
The Al Gores of the Internet have allowed it to degrade into a SEWER of trash.
”
The New York Fox News video report above by John Seutzman describes a well coordinated attack on 130 automatic teller machines (ATM’s) in 49 cities worldwide within 30 mins, which jeopardized sensitive information and netted over $9 million.
Shortly after midnight Eastern Time on November 8 2008, the FBI believes that dozens of people used hacked RBS WorldPay payroll cards (which are similar to debit cards) in a coordinated attack on ATM machines around the world.
Steve Lazarus of the Atlanta FBI said the withdrawals were carried out by a collaborating group of so-called “cashers,” who used fabricated cards to pull money out of previously compromised accounts. RBS said that the thieves might also have successfully accessed the US Social Security numbers of 1.1 million customers.
The FBI’s Lazarus: “This was a well-coordinated attack by some pretty computer and network savvy people, even at the lowest levels of cashers taking cloned cards to ATMs.”
The criminals centrally hacked fake payroll deposits to repeatedly inflate the amount of available cash on each card, money that was then drained at ATMs over and over again.
Google Latitude
Google launched their new location-tracking service Latitude this week. Using the GPS hardware found in smart phones (such as Google Android phones, BlackBerry and Windows Mobile handsets) to identify your geological position on a map and share it with people you have control over defining. Along with existing services such as brightkite and Yahoo’s fire eagle these geo locator services have some utility.
Yahoo proposes you use fireeagle to ‘have fun on the web”
* Show your location on your blog
* Share it with your friends
* Discover cool stuff around you
You can ‘choose what you share’
* You control your data
* You choose who to share with
* You choose how much to share
What happens if suddenly you can’t choose how much you’re sharing though, because it got hacked?
Technology enthusiasts always see innovation and openness as a force for good, but the dark side is that there is a large international army of coordinated criminals constantly seeking to exploit weaknesses and opportunities with new technologies.
In the physical world we learn to be wary of our surroundings - we haven’t learnt yet to be guarded with how to share gps position location, or how easily it can be compromised on a mass scale, because it is so new.
Law enforcement in many countries use existing gps technology in cell phones to track individuals without their knowledge and can use some phones as bugging devices even if they are turned off.
Unfortunately anything the authorities can do criminals can as well in many cases. The well coordinated collaboration between the various ATM attack army members gives pause for thought about how easy it is to mobilize a techno team of crooks.
The thought of one using your hacked geo location information isn’t a pleasant one.
