It was only a matter of time before something like this would appear
-
Step Right Up, Get Your Exploits Right Here[^] "The reaction among security experts is more along the lines of 'Are you kidding me?!!!'" :~ Unfortunately, this is not a joke! X|
Simply Elegant Designs JimmyRopes Designs
Think inside the box! ProActive Secure Systems
I'm on-line therefore I am. JimmyRopesThat's absurd. I foresee that the biggies will start suing them. If "underground" crackers already sell and buy this kind of information, in this case there is a company that can be sued without problems. Then it just becomes a matter of money. Who will win? :-D
If you truly believe you need to pick a mobile phone that "says something" about your personality, don't bother. You don't have a personality. A mental illness, maybe - but not a personality. - Charlie Brooker My Blog - My Photos - ScrewTurn Wiki
-
That's absurd. I foresee that the biggies will start suing them. If "underground" crackers already sell and buy this kind of information, in this case there is a company that can be sued without problems. Then it just becomes a matter of money. Who will win? :-D
If you truly believe you need to pick a mobile phone that "says something" about your personality, don't bother. You don't have a personality. A mental illness, maybe - but not a personality. - Charlie Brooker My Blog - My Photos - ScrewTurn Wiki
Domain registration below . :~ It is supposedly a Swiss company. :confused: Need I say more? :rolleyes: ====================================================================== Registrant: Domains by Proxy, Inc. DomainsByProxy.com 15111 N. Hayden Rd., Ste 160, PMB 353 Scottsdale, Arizona 85260 United States Administrative Contact: Private, Registration WSLABI.COM@domainsbyproxy.com Domains by Proxy, Inc. DomainsByProxy.com 15111 N. Hayden Rd., Ste 160, PMB 353 Scottsdale, Arizona 85260 United States (480) 624-2599 Fax -- (480) 624-2599 Technical Contact: Private, Registration WSLABI.COM@domainsbyproxy.com Domains by Proxy, Inc. DomainsByProxy.com 15111 N. Hayden Rd., Ste 160, PMB 353 Scottsdale, Arizona 85260 United States (480) 624-2599 Fax -- (480) 624-2599
Simply Elegant Designs JimmyRopes Designs
Think inside the box! ProActive Secure Systems
I'm on-line therefore I am. JimmyRopes -
Step Right Up, Get Your Exploits Right Here[^] "The reaction among security experts is more along the lines of 'Are you kidding me?!!!'" :~ Unfortunately, this is not a joke! X|
Simply Elegant Designs JimmyRopes Designs
Think inside the box! ProActive Secure Systems
I'm on-line therefore I am. JimmyRopes:laugh: Well that will defeat responcable disclosure... but a good way to make a few $ if the company doesnt fix it in time... i dont see this site lasting long, when a expoit is release by a researcher its often after the bug has been fixed (which has the problem when people dont update) or if the company trys to sue the researcher or just blanks the problem (often times calling it a feature or some such). but i could be wrong, will be interesting to see how long they keep the US domain or how long it takes them to get high-jacked.
-
Step Right Up, Get Your Exploits Right Here[^] "The reaction among security experts is more along the lines of 'Are you kidding me?!!!'" :~ Unfortunately, this is not a joke! X|
Simply Elegant Designs JimmyRopes Designs
Think inside the box! ProActive Secure Systems
I'm on-line therefore I am. JimmyRopesIt's an idea fraught with unintended consequences. I'd like to see a site with no money involved that anyone can post a security vulnerability to (that must be verified first). The manufacturer of the software is given notice two weeks before it appears in the public area of the site. The security "reasearcher" who discovers it gets full credit for finding it. This way we could see real stats on vulnerabilities, the people who find them might get a good job somewhere if they aren't already employed and the companies in question would put a higher priority on rapid response just like the small companies already do.
"I don't want more choice. I just want better things!" - Edina Monsoon
-
It's an idea fraught with unintended consequences. I'd like to see a site with no money involved that anyone can post a security vulnerability to (that must be verified first). The manufacturer of the software is given notice two weeks before it appears in the public area of the site. The security "reasearcher" who discovers it gets full credit for finding it. This way we could see real stats on vulnerabilities, the people who find them might get a good job somewhere if they aren't already employed and the companies in question would put a higher priority on rapid response just like the small companies already do.
"I don't want more choice. I just want better things!" - Edina Monsoon
I thought something like this already existed?
¡El diablo está en mis pantalones! ¡Mire, mire! Real Mentats use only 100% pure, unfooled around with Sapho Juice(tm)! SELECT * FROM User WHERE Clue > 0 0 rows returned Save an Orange - Use the VCF! VCF Blog
-
It's an idea fraught with unintended consequences. I'd like to see a site with no money involved that anyone can post a security vulnerability to (that must be verified first). The manufacturer of the software is given notice two weeks before it appears in the public area of the site. The security "reasearcher" who discovers it gets full credit for finding it. This way we could see real stats on vulnerabilities, the people who find them might get a good job somewhere if they aren't already employed and the companies in question would put a higher priority on rapid response just like the small companies already do.
"I don't want more choice. I just want better things!" - Edina Monsoon
-
:laugh: Well that will defeat responcable disclosure... but a good way to make a few $ if the company doesnt fix it in time... i dont see this site lasting long, when a expoit is release by a researcher its often after the bug has been fixed (which has the problem when people dont update) or if the company trys to sue the researcher or just blanks the problem (often times calling it a feature or some such). but i could be wrong, will be interesting to see how long they keep the US domain or how long it takes them to get high-jacked.
sonsam wrote:
Well that will defeat responcable disclosure... but a good way to make a few $ if the company doesnt fix it in time...
These type of sites appear and disappear all the time. I am currently doing research for a book -- a fictional account of the underworld in Asia -- and meet these type of people in the course of research all the time. They change corporate identities like I change socks! Just go to any big port and look at the flags the ships fly. That is a good indicator of where to register a corporation in a "business friendly" place that doesn't have a lot of corporate oversight. I was actually told that by a research subject! I was surprised to see that the domain name was registered in the US, even at a place like Proxy Registrar, Inc. Usually these places are registered in some tropical island nation mail drop and the telephones are manned in some Asian city by expats who sound authentic because they are originally from the country they supposedly are working in. There are thousands of these dubious corporations and they are constantly morphing so that they stay one step away from the legal system. Money laundering is another aspect of the trade which you will have to read my book to learn about. My editor tells me that my "nom de plume" is a good one but I can't tell you who I am publishing as because my life would be in jeopardy if the folks I am writing about ever found out who I really am. Suffice it to say that these people are not above appearing to be legitimate and they know how to collect money without it being traced to them. It is a regular cottage industry that involves the police and high ranking government officials.
Simply Elegant Designs JimmyRopes Designs
Think inside the box! ProActive Secure Systems
I'm on-line therefore I am. JimmyRopes -
sonsam wrote:
Well that will defeat responcable disclosure... but a good way to make a few $ if the company doesnt fix it in time...
These type of sites appear and disappear all the time. I am currently doing research for a book -- a fictional account of the underworld in Asia -- and meet these type of people in the course of research all the time. They change corporate identities like I change socks! Just go to any big port and look at the flags the ships fly. That is a good indicator of where to register a corporation in a "business friendly" place that doesn't have a lot of corporate oversight. I was actually told that by a research subject! I was surprised to see that the domain name was registered in the US, even at a place like Proxy Registrar, Inc. Usually these places are registered in some tropical island nation mail drop and the telephones are manned in some Asian city by expats who sound authentic because they are originally from the country they supposedly are working in. There are thousands of these dubious corporations and they are constantly morphing so that they stay one step away from the legal system. Money laundering is another aspect of the trade which you will have to read my book to learn about. My editor tells me that my "nom de plume" is a good one but I can't tell you who I am publishing as because my life would be in jeopardy if the folks I am writing about ever found out who I really am. Suffice it to say that these people are not above appearing to be legitimate and they know how to collect money without it being traced to them. It is a regular cottage industry that involves the police and high ranking government officials.
Simply Elegant Designs JimmyRopes Designs
Think inside the box! ProActive Secure Systems
I'm on-line therefore I am. JimmyRopesnice.. you will have to let us know when you get the book published. interesting about the domain register location. i guess the only defence for companys is that the researchers, who find the most exploits (those that become known), are smart enough not to trust sites like these :rolleyes: as most researchers dont want to make a profit on an exploit as that is seen as not responcable. more gray hat than white hat. i look forward to seeing your book :) p.s expoit finding is something i stay away from as i dont really want to get sued or sent to prison for breaking all those laws protecting bad codeing.
-
sonsam wrote:
Well that will defeat responcable disclosure... but a good way to make a few $ if the company doesnt fix it in time...
These type of sites appear and disappear all the time. I am currently doing research for a book -- a fictional account of the underworld in Asia -- and meet these type of people in the course of research all the time. They change corporate identities like I change socks! Just go to any big port and look at the flags the ships fly. That is a good indicator of where to register a corporation in a "business friendly" place that doesn't have a lot of corporate oversight. I was actually told that by a research subject! I was surprised to see that the domain name was registered in the US, even at a place like Proxy Registrar, Inc. Usually these places are registered in some tropical island nation mail drop and the telephones are manned in some Asian city by expats who sound authentic because they are originally from the country they supposedly are working in. There are thousands of these dubious corporations and they are constantly morphing so that they stay one step away from the legal system. Money laundering is another aspect of the trade which you will have to read my book to learn about. My editor tells me that my "nom de plume" is a good one but I can't tell you who I am publishing as because my life would be in jeopardy if the folks I am writing about ever found out who I really am. Suffice it to say that these people are not above appearing to be legitimate and they know how to collect money without it being traced to them. It is a regular cottage industry that involves the police and high ranking government officials.
Simply Elegant Designs JimmyRopes Designs
Think inside the box! ProActive Secure Systems
I'm on-line therefore I am. JimmyRopes"My editor tells me that my "nom de plume" is a good one but I can't tell you who I am publishing as because my life would be in jeopardy if the folks I am writing about ever found out who I really am." But now, due to your anonymity, you will be the target for every expose of bad guys that gets written by anyone! Good luck, Rich
-
Domain registration below . :~ It is supposedly a Swiss company. :confused: Need I say more? :rolleyes: ====================================================================== Registrant: Domains by Proxy, Inc. DomainsByProxy.com 15111 N. Hayden Rd., Ste 160, PMB 353 Scottsdale, Arizona 85260 United States Administrative Contact: Private, Registration WSLABI.COM@domainsbyproxy.com Domains by Proxy, Inc. DomainsByProxy.com 15111 N. Hayden Rd., Ste 160, PMB 353 Scottsdale, Arizona 85260 United States (480) 624-2599 Fax -- (480) 624-2599 Technical Contact: Private, Registration WSLABI.COM@domainsbyproxy.com Domains by Proxy, Inc. DomainsByProxy.com 15111 N. Hayden Rd., Ste 160, PMB 353 Scottsdale, Arizona 85260 United States (480) 624-2599 Fax -- (480) 624-2599
Simply Elegant Designs JimmyRopes Designs
Think inside the box! ProActive Secure Systems
I'm on-line therefore I am. JimmyRopesYes, when it comes to boiler-room operations, Scottsdale seems to be the new Tampa these days.
-
"My editor tells me that my "nom de plume" is a good one but I can't tell you who I am publishing as because my life would be in jeopardy if the folks I am writing about ever found out who I really am." But now, due to your anonymity, you will be the target for every expose of bad guys that gets written by anyone! Good luck, Rich
Rich Leyshon wrote:
But now, due to your anonymity, you will be the target for every expose of bad guys that gets written by anyone!
Hopefully they will become discouraged after following the links through Tajikistan or was he (my altered identity) last sighted in Uzbekistan? :confused: It would very much depend on who was supplying your information. :~
Simply Elegant Designs JimmyRopes Designs
Think inside the box! ProActive Secure Systems
I'm on-line therefore I am. JimmyRopes -
nice.. you will have to let us know when you get the book published. interesting about the domain register location. i guess the only defence for companys is that the researchers, who find the most exploits (those that become known), are smart enough not to trust sites like these :rolleyes: as most researchers dont want to make a profit on an exploit as that is seen as not responcable. more gray hat than white hat. i look forward to seeing your book :) p.s expoit finding is something i stay away from as i dont really want to get sued or sent to prison for breaking all those laws protecting bad codeing.
sonsam wrote:
nice.. you will have to let us know when you get the book published.
It will undoubtedly be quite some time as I have 2 business ventures, a non-profit venture and another book, "The Spirits of Thailand", in the queue also. I am collecting data and discussing plot with a friend who is going to edit the manuscript but "The Spirits of Thailand" will probably come before it. In Spirits I am gathering photos and essays about the spiritual world that remain a part of Asian culture even as the culture embraces the 21st century. Spirit houses (called Katoom Ta by my family in BanLaBerg [a Khmer village in Issan] - roughly translated as Grandfather's Hut) are ubiquitous. We have 2 in our front yard. One for our ancestor's spirits to live in and the other for any spirits who don't have any other place to stay or are traveling and need lodging along their way. We also have a third we set up in an auspicious place along the road going to the village before we had any land of our own to give thanks for our good fortunes. Our Katoom Ta was the second and there are now 4 in this spirit village on the roadway. These kind of places spring up all throughout the countryside. These range from grand palace miniatures in Bangkok to dilapidated make shift arrangements in rice fields. The spirits are everywhere! One night I returned home with my wife from having dinner with some friends to an orange sky. The annual burning of the fields were in progress and as I watched the flames dance in the distance in a field across the road from my house I became aware of the connection that these folks have with their ancestors. This was a scene that was thousands of years old and still a part of contemporary existence in the tribal areas. I also felt the urgency to record as much of the traditional way of life because it was changing so rapidly. There is only one of my neighbors that still plows with buffalo down from everyone when I first visited SE Asia some 40 years ago. Ditto bicycles being replaced by motorcycles. As soon as I get a little seed money I intend to send out some history interns from a Thai university to gather an oral history (the elder people weren't formally educated) about the spirit tradition in the tribal areas of Thailand. I would like to include this folklore along with photos to try to record this before it slips into oblivion as more modern farming, and other trappings of modern society (cell phones, TV, refriger
-
Yes, when it comes to boiler-room operations, Scottsdale seems to be the new Tampa these days.
Erik Midtskogen wrote:
when it comes to boiler-room operations, Scottsdale seems to be the new Tampa these days.
I wasn't aware of BR operations in the US. I knew of some in Spain but had not heard of any in the US. In Asia they are everywhere because if they get busted a few well placed bribes get the people deported instead of sent to jail. Then they are employed in an affiliate operation in another country.
Simply Elegant Designs JimmyRopes Designs
Think inside the box! ProActive Secure Systems
I'm on-line therefore I am. JimmyRopes -
Erik Midtskogen wrote:
when it comes to boiler-room operations, Scottsdale seems to be the new Tampa these days.
I wasn't aware of BR operations in the US. I knew of some in Spain but had not heard of any in the US. In Asia they are everywhere because if they get busted a few well placed bribes get the people deported instead of sent to jail. Then they are employed in an affiliate operation in another country.
Simply Elegant Designs JimmyRopes Designs
Think inside the box! ProActive Secure Systems
I'm on-line therefore I am. JimmyRopesHmmm...so I take it you've never had a U.S. postal address or telephone then. It's nowhere near as bad today as it used to be, but fifteen years ago my mailbox would fill up every day with today's equivalent of spam, complete with the customary poor spelling, grammar, and diction. I'd also get phone calls from people with "unbelievable" offers that I alone among millions had somehow been chosen to receive. It was all the usual lineup of bogus weight-loss programs, get-rich-quick scams, and penile enhancement products--always "for a limited time only"--invariably sent and phoned in from the boiler rooms down in various warm, sunny locations where a larger than usual percentage of the population seems to be severely allergic to doing any actual work for a living. So if these operators have moved out of the U.S., I suppose it's because they found that there was a better free ride to be had a little further south.