I’m one of those people who always used to complain about the “hacker” computer interfaces presented in most movies. People breaking into computer systems in minutes with pretty graphics and pictures zooming by. I find them an assault on my throwback days of wanna-be hacking and phreaking, and war dialing modems. What can I say, I was young and bored and hungry for an understanding of the technical knowledge I had turned myself onto…

Despite this fact, I’m also a sucker for those futuristic computer interfaces presented in movies like Minority Report, and the new 007 movie.

Imagine my shock when I ran across this video today showcasing that a group named Oblong Industries has recreated the Minority Report interface for real!

As detailed in the postings, the Palin hack didn’t require any real skill. Instead, the hacker simply reset Palin’s password using her birthdate, ZIP code and information about where she met her spouse — the security question on her Yahoo account, which was answered (Wasilla High) by a simple Google search.

The simplicity of the attack, of course, makes it no less illegal.
Heres how the email was simply exploited.

I wonder if she was truly that naieve, (fucking dissappointing)

I wonder if she was truly using these accounts to avoid the Alaskan Information Freedom Act of her goverment account(s).

I wonder if she HAD them hacked to release that she was hiding nothing like disinformation… 

I wonder …

Todd Davis, the stupid CEO of Lifelock (his social security #457-55-5462). Todd Davis has promoted his company by advertising his social security number on the web, radio, tv and billboard signs. His EGO like with other wanna be business owners I have experienced GET in the WAY of doing the right thing for the customer got H@CK3TD!

“we guarantee our service up to $1 million dollars.”
whatever ! you cant even protect yourself !

Life lock service doesn’t protect you 100% from identity theft. Some guy in West Texas took Todd’s personal information and used it for a pay day load (there is not system to actively keep track of the Payday loan market). So the guy was able to get $500. When it was time to pay back the Payday loan (+1million% interest or whatever it is) the Payday store called the REAL Todd Davis (social security #457-55-5462). I think its unfortunate because it seems like a pretty good service. They are one of the few organizations in the U.S. actually trying to help people take on what is now and epidemic with now grassroots effort to slowdown ID theft and financial fraud.

Although Todd Davis was hacked, I believe their product will still be an effective way to be proactive method of protecting yourself from ID theft & financial fraud. But you should definitely take extra steps to safe guard your personal information. Don’t advertise your social security, your physical address, phone number, birthday or critical information.

XSS is a wide-open field that is constantly surprising the
world with new and unique methods of exploitation and injection.

heres an interesting [read]

and here are some Atom scripts 

When I need to pay for something I use disposable credit cards, and the same via PayPal. I also have a few other PayPal accounts scattered around which I run unverified, then dump when PayPal start asking questions.

Heres how to create hidden windows text files…
go into a cmd prompt.

YOU CAN NEST a hidden text file into a public text file easily !!!!
I am using this to store passwords for accounts listed publicly in the file.

here’s how to ::.
cd to where you wanna be to write the public offering…

cd Desktop
cd Testing
notepad realtextfile.txt
type in the nonhidden text file ad SAVE then exit

next in the cmd prompt thats still open…

echo [this is hidden text here] file >
yourFileName.txt:hidden.txt

and to append to the log file ::.

echo [this is hidden text here] file > >
yourFileName.txt:hidden.txt

simple Injection Stynography with Notepad.exe

start run
(run a DOS shell/console)

cd
(change to the directory you wanna work at)

notepad
(runs notepad)

echo ****whatever you wish to store**** >
(this will write your contents in the public file and store it)

notepad

(this will open the public file)

echo ****whatever you wish to store**** >
(this will write your contents in the secret file and store it)

notepad

(this will open the secret file) now you can type all you want and close it and save it out…
noone will ever know it’s there…

Some people use this technique to get music and so forth without downloading the file thus advoiding the RIAA.

Heres how to RIP audio from your computer…

simply download the FREE MP3MyMP3 ware…

to record any audio at all going through your sound card this technique is simply recording what is played on your card.

This is an awesome Batman ToolBelt Toy …
Buy a USB and perform anonymous surfing
on a hidden encrypted volume… on a disposable drive…
THIS IS WHY HACKING FROM THE INSIDE IS JUST AS MORE DANGEROUS AND EASIER TO DO THAN FROM OUTSIDE…
:: How To setup Anonymous Browsing ::
Setup TrueCrypt (which is AWESOME)
create a TrueCrypt volume with a hidden volume within
I like AES encryption and normal algorithm(z)

assign public pw and secret pw(z) for files and volumes

:: Next How TorPark ::
TorPark
extract torpark in the mounted hidden volume
next launch a tor circuit to anonymously surf
verify by a proxy test you are anonymous or spoofed

all from your hidden virtual USB terminal …

so I begin at dnsstuff.com
(which I love and have used for years now)
use the MX record lookup

then telnet to the ip result returned port :25

then type helo
the box will respond

mail from: whateverhandle@targetdomain.com

it will confirm and respond OK

rcpt to: whateverhandle@targetdomain.com

it will confirm and respond OK
and then:.
data

Subject: Your Subject goes here (duh)

and then write whatever here then
[ENTER]
.
[ENTER]

and then there you have it !

EmailSpammer Program here we come !

The best way to design security is to thuroughly understand craking

man Cain & Abel is an awesome (and scary) powerful packet driver
you can find it on OXID.IT
- select your ethernet adapter
- target MAC addresses
- setup/start the sniffer
- APR warscan to hijack all packet sets
- begin poison routing packets
- then watch and wait for traffic on live systems!
- be patient … patient and then
viola !
- check the HTTP Sniffer and theres the typed in un/pws !

- Amen…

the password pooling features are damn crazy !
you can project a false/positive cert and pose as the secure login !
it can even crack encrypted SSL logins !

and then there is ethereal too — shhh too much said lol

I have now fallen in love exclusively using Deluge & Toorgle

http://torrentfreak.com/ is the bomb !

Toorgle.com has gotten bad

http://www.zoozle.org Im looking into more and more

for students starting new semesters needing books
http://forum.textbooktorrents.com/
h33t.com is slick

Demonoid busted by the CRIA
Torrentportal.com only good/safe in canada
Torrentmatrix.com
Torrentspy.com
Isohunt.com
Torrentscan.com
Snarf It!
Scrapetorrent.com
Torrentreactor.to
BTjunkie
TorrentTyphoon.com this has wen downhill eeeek
The Pirate Bay suspected members of the CCC
Thinktorrent.com
BitLord has been recommended to me to check out and try too…

denis.stalker.h3q.com & http://erdgeist.org/arts/software/opentracker/
sumotracker.org
torrentbox.com

this photo shows why you want to pursue only popular downloads…

Look how the 99seeders gave me over 1MB Download…

GnomeBaker K3B burnaware
dvd43.com
or how bout using the command line cdrecord -v -eject speed =4 dev=/dev/hdc *.iso