lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [day] [month] [year] [list]
Message-ID: <829b2de40703241620g3c68bb62j976e0ae05cb70b58@mail.gmail.com>
Date: Sat, 24 Mar 2007 18:20:18 -0500
From: "Jason Miller" <jammer128@...il.com>
To: full-disclosure@...ts.grok.org.uk
Subject: Re: XBOX ID's being Jacked

i didn't say "your son got pwnd, kevin" and yeah they both prob pissed
each other off. go figure.

On 3/24/07, Kevin Finisterre (lists) <kf_lists@...italmunition.com> wrote:
> Its not my son... and as far as getting cocky, its a 2 way street for
> sure in this situation.
>
> -KF
> On Mar 24, 2007, at 11:47 AM, Jason Miller wrote:
>
> > microsoft is its own weakness, all in all your son got pwnd. tell him
> > not to get cocky and try to e-rage people on live anymore and it wont
> > happen, kbye.
> >
> > On 3/23/07, Kevin Finisterre (lists) <kf_lists@...italmunition.com>
> > wrote:
> >>
> >>
> >> There are lots of folks that mention obtaining the IP in order to
> >> hack your
> >> account. They usually say they have done this with Cain and Able
> >> or Commview
> >> or any other sniffer out there. You IP can be easily obtained by
> >> the usual
> >> standby groups or bridgers....  The only reason they want your IP
> >> is because
> >> that can buy them ONE piece of information. In some cases if you
> >> have paid
> >> for the proper program you can get an address and GPS coordinates
> >> for an IP.
> >> In most cases the address will be that of your neighborhood router or
> >> something like that.
> >>
> >> I just wanted to clear this up as there appears to be some
> >> confusion over
> >> what the IP address has to do with prextexing Microsoft XBL
> >> employees.
> >>
> >> You can try something like this...
> >>
> >> http://www.melissadata.com/lookups/iplocation.asp?
> >> ipaddress=209.11.233.26
> >>
> >> and get something back like this
> >>
> >> IP Address 209.11.233.26
> >>
> >> City FINDLAY
> >>
> >> State or Region OHIO
> >>
> >> Country UNITED STATES
> >>
> >> ISP CENTRACOMM COMMUNICATIONS.
> >>
> >> This may be JUST enough info to trick a dumb employee
> >>
> >>
> >>
> >>
> >> -KF
> >>
> >> On Mar 22, 2007, at 7:21 PM, richfa1@....com wrote:
> >>
> >>
> >> Kevin,
> >>
> >> My son's Xbox Live ID was jacked by "Brad" of the o Infamous o
> >> Clan. It
> >> happened in such a short amount of time that I don't feel that it
> >> was a case
> >> of Social Engineering. I did some research and came up with a way
> >> to do it
> >> using your Xbox, with Action Replay and a memory card, and the DVD
> >> of the
> >> game Splinter Cell, your PC Kernal IP Logger and an FTP program.
> >> It seems
> >> that the DVD has a copy of Linux on it that you use to help get
> >> the person's
> >> gamertag by using that person's IP address.
> >>
> >> I found the steps to do it on a message board. However, by the
> >> time I got to
> >> it, the message board admin had edited it and then also closed the
> >> thread. I
> >> think that the social engingineering angle is only a small
> >> percentage of the
> >> ID thefts. I have a feeling that the technical way is more likely
> >> how the
> >> majority of IDs are stolen.
> >>
> >> Rich
> >>  ________________________________
> >>  AOL now offers free email to everyone. Find out more about what's
> >> free from
> >> AOL at AOL.com.
> >>
> >> _______________________________________________
> >> Full-Disclosure - We believe in it.
> >> Charter:
> >> http://lists.grok.org.uk/full-disclosure-charter.html
> >> Hosted and sponsored by Secunia - http://secunia.com/
> >>
> >> _______________________________________________
> >> Full-Disclosure - We believe in it.
> >> Charter:
> >> http://lists.grok.org.uk/full-disclosure-charter.html
> >> Hosted and sponsored by Secunia - http://secunia.com/
> >>
>
>

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ