lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [day] [month] [year] [list]
Message-ID: <EA7C77F97CC73F4AAC856A4595DF34E205C47499@swilnts801.wil.fusa.com>
From: Glenn_Everhart at bankone.com (Glenn_Everhart@...kone.com)
Subject: Major hack attack on the U.S. Senate

So the computer got set up with apparently access permissions set
for new accounts to let everyone access new accounts' files?
And it was set up under Leahy's control? I wonder if any of the
Democrats had operatives who might have noticed this also and been
looking the other way. 

It certainly is going to be less clear to a jury than a burglary would
have been if the stuff was, as reported, left wide open to anyone on
the machine. 

I wonder how long it will take some of the folks in Congress to figure out
that PGP or Gnupg are their friends? The story sounds like something out
of the 1970s.



-----Original Message-----
From: Matt Burnett [mailto:marukka@....com]
Sent: Thursday, January 22, 2004 1:23 PM
To: Richard M. Smith; full-disclosure@...ts.netsys.com
Subject: Re: [Full-Disclosure] Major hack attack on the U.S. Senate


Could this be the start of Water Gate 2?

On 1/22/04 11:24 AM, "Richard M. Smith" <rms@...puterbytesman.com> wrote:

> http://www.boston.com/news/nation/articles/2004/01/22/infiltration_of_files_
> seen_as_extensive?mode=PF
> 
> Infiltration of files seen as extensive
> Senate panel's GOP staff pried on Democrats
> By Charlie Savage, Globe Staff, 1/22/2004
> 
> WASHINGTON -- Republican staff members of the US Senate Judiciary Commitee
> infiltrated opposition computer files for a year, monitoring secret strategy
> memos and periodically passing on copies to the media, Senate officials told
> The Globe.
> 
> From the spring of 2002 until at least April 2003, members of the GOP
> committee staff exploited a computer glitch that allowed them to access
> restricted Democratic communications without a password. Trolling through
> hundreds of memos, they were able to read talking points and accounts of
> private meetings discussing which judicial nominees Democrats would fight --
> and with what tactics.
> 
> The office of Senate Sergeant-at-Arms William Pickle has already launched an
> investigation into how excerpts from 15 Democratic memos showed up in the
> pages of the conservative-leaning newspapers and were posted to a website
> last November.
> 
> With the help of forensic computer experts from General Dynamics and the US
> Secret Service, his office has interviewed about 120 people to date and
> seized more than half a dozen computers -- including four Judiciary servers,
> one server from the office of Senate majority leader Bill Frist of
> Tennessee, and several desktop hard drives.
> 
> ...
> 
> 
> 
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.netsys.com/full-disclosure-charter.html

"The ACLU (American Civil Liberties Union) is the most dangerous
organization in the world."
Bill O'Reilly on Fox News during the "No Spin Zone" on January 10th 2004

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html


**********************************************************************
This transmission may contain information that is privileged, confidential and/or exempt from disclosure under applicable law. If you are not the intended recipient, you are hereby notified that any disclosure, copying, distribution, or use of the information contained herein (including any reliance thereon) is STRICTLY PROHIBITED. If you received this transmission in error, please immediately contact the sender and destroy the material in its entirety, whether in electronic or hard copy format. Thank you
**********************************************************************


Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ