7/25/03
The above is a very cool meme.. I like it even better than battle monkeys or battle imps.
Ah, a lovely morning and afternoon, culminated by a super-scaldy shower o' doom after my stretching workout.
I was up and about at about 10:30 (fell asleep at about 6:30... already heard from the brother (he seems to be doing well) and from a contractor for workman's comp... giving me guff about traveling again. I've sent an email off to my HR person, and hope that she can straighten out Liberty, before I'm obliged to trot out the attorney. I've got no problem blasting the insurance if I'm in the right and they don't want to do their job properly. I'm one step from getting tough. (HR/WC was the only crappy part of my day)
Ideally, I'll be going to see a movie with the brother or Danny tomorrow (maybe both? they don't mix really)... we were thinking maybe sinbad or T3, depending on the mood. I'd like to catch whale rider if the time is right. It’ll be a brief excursion, just a movie and maybe a nibble. Speaking of nibbles, groceries came today, and the "lite key lime pie" yogurt is *REALLY GOOD*. yum.
I just heard about the guy who setup key-stroke capture software in multiple Kinko’s stores in New York City.
Don't let it happen to you.
NEW YORK - For more than a year, unbeknownst to people who used Internet terminals at Kinko's stores in New York, Juju Jiang was recording what they typed, paying particular attention to their passwords.
Jiang had secretly installed, in at least 14 Kinko's stores, software that logs individual keystrokes. He captured more than 450 passwords and user names, using them to access and even open bank accounts online.
The case, which led to a guilty plea earlier this month after Jiang was caught, highlights the dangers of using public Internet terminals at cybercafes, libraries, airports and other establishments.
"Use common sense when using any public terminal,'' said Neel Mehta, research engineer at Internet Security Systems Inc. "For most day-to- day stuff like surfing the Web, you're probably all right, but for anything sensitive you should think twice.''
Jiang was caught when, according to court records, he used one of the stolen passwords to access a computer with GoToMyPC software, which lets individuals remotely access their own computers from elsewhere.
The GoToMyPC subscriber was home at the time and suddenly saw the cursor on his computer move around the screen and files open as if by themselves. He then saw an account being opened in his name at an online payment transfer service.
Jiang, who is awaiting sentencing, admitted installing Invisible KeyLogger Stealth software at Kinko's as early as Feb. 14, 2001.
Mehta said that although millions of individuals use public terminals without trouble, they should be cautious.
"When you sit down at an Internet cafe, ask the owner or operator about the security measures in place,'' he said. "If they don't know or don't have anything in place, you could consider going somewhere else.''
Encrypting e-mail and Web sessions does nothing to combat keystroke loggers, which capture data before the scrambling occurs.
Data cookies also contribute to the risk of identity theft. Cookies are files that help Web sites remember who you are so you won't have to keep logging on to a site. But unless you remember to log out, these files could let the next person using the public terminal to surf the Web as you.
Furthermore, browsers typically record recent Web sites visited so users won't have to retype addresses. But such addresses often have user names and other sensitive information embedded.
Secure public terminals should by default have provisions for automatically flushing cookies and Web addresses when a customer leaves, Internet security experts say.
Kinko spokeswoman Maggie Thill said the company has "succeeded in making a similar attack extremely difficult in the future.'' She would not provide details, saying that to do so could make systems less secure.
Nonetheless, Thill said customers have a responsibility to "protect their information as they would a credit card slip.'' She said the company is trying to educate them through signs and other warnings.
The above is a very cool meme.. I like it even better than battle monkeys or battle imps.
Ah, a lovely morning and afternoon, culminated by a super-scaldy shower o' doom after my stretching workout.
I was up and about at about 10:30 (fell asleep at about 6:30... already heard from the brother (he seems to be doing well) and from a contractor for workman's comp... giving me guff about traveling again. I've sent an email off to my HR person, and hope that she can straighten out Liberty, before I'm obliged to trot out the attorney. I've got no problem blasting the insurance if I'm in the right and they don't want to do their job properly. I'm one step from getting tough. (HR/WC was the only crappy part of my day)
Ideally, I'll be going to see a movie with the brother or Danny tomorrow (maybe both? they don't mix really)... we were thinking maybe sinbad or T3, depending on the mood. I'd like to catch whale rider if the time is right. It’ll be a brief excursion, just a movie and maybe a nibble. Speaking of nibbles, groceries came today, and the "lite key lime pie" yogurt is *REALLY GOOD*. yum.
I just heard about the guy who setup key-stroke capture software in multiple Kinko’s stores in New York City.
Don't let it happen to you.
NEW YORK - For more than a year, unbeknownst to people who used Internet terminals at Kinko's stores in New York, Juju Jiang was recording what they typed, paying particular attention to their passwords.
Jiang had secretly installed, in at least 14 Kinko's stores, software that logs individual keystrokes. He captured more than 450 passwords and user names, using them to access and even open bank accounts online.
The case, which led to a guilty plea earlier this month after Jiang was caught, highlights the dangers of using public Internet terminals at cybercafes, libraries, airports and other establishments.
"Use common sense when using any public terminal,'' said Neel Mehta, research engineer at Internet Security Systems Inc. "For most day-to- day stuff like surfing the Web, you're probably all right, but for anything sensitive you should think twice.''
Jiang was caught when, according to court records, he used one of the stolen passwords to access a computer with GoToMyPC software, which lets individuals remotely access their own computers from elsewhere.
The GoToMyPC subscriber was home at the time and suddenly saw the cursor on his computer move around the screen and files open as if by themselves. He then saw an account being opened in his name at an online payment transfer service.
Jiang, who is awaiting sentencing, admitted installing Invisible KeyLogger Stealth software at Kinko's as early as Feb. 14, 2001.
Mehta said that although millions of individuals use public terminals without trouble, they should be cautious.
"When you sit down at an Internet cafe, ask the owner or operator about the security measures in place,'' he said. "If they don't know or don't have anything in place, you could consider going somewhere else.''
Encrypting e-mail and Web sessions does nothing to combat keystroke loggers, which capture data before the scrambling occurs.
Data cookies also contribute to the risk of identity theft. Cookies are files that help Web sites remember who you are so you won't have to keep logging on to a site. But unless you remember to log out, these files could let the next person using the public terminal to surf the Web as you.
Furthermore, browsers typically record recent Web sites visited so users won't have to retype addresses. But such addresses often have user names and other sensitive information embedded.
Secure public terminals should by default have provisions for automatically flushing cookies and Web addresses when a customer leaves, Internet security experts say.
Kinko spokeswoman Maggie Thill said the company has "succeeded in making a similar attack extremely difficult in the future.'' She would not provide details, saying that to do so could make systems less secure.
Nonetheless, Thill said customers have a responsibility to "protect their information as they would a credit card slip.'' She said the company is trying to educate them through signs and other warnings.
0 Comments:
Post a Comment
Subscribe to Post Comments [Atom]
<< Home