Man In The Maze

by Rich Luhr, Editor of Airstream Life magazine

  • About
  • Follow
    • Twitter
  • My books
    • Exploring National Parks
    • Newbies Guide To Airstreaming
    • Airstream trailer maintenance guide
  • “How To Airstream” blog
  • Store
  • Back to Airstream Life
You are here: Home / 2009 / Archives for February 2009

Archives for February 2009

Feb 04 2009

Oh, merry hackers!

Most hackers are stupid.   (I’ll probably be hacked for writing that.)   They like to demonstrate how clever they are by stealing passwords from the gullible, breaking websites with out-of-date software, and putting up truly idiotic messages on the web.   This is like proving your cleverness by grabbing the purses of little old ladies, stealing 1973 Volkswagens, and spray-painting your name on people’s houses.   Stupid.

And like a mindless virus, they are persistent.   Whenever one matures enough to realize that messing up websites isn’t really a meaningful way to spend one’s life, another crop of teenage boys figure out how to visit hacker discussion groups, and the process continues.

Even though it’s not my job, I often find myself helping out folks who have been hacked and are trying to pick up the pieces.   Today’s minor episode started with an email I received:

Dear Customer,

This is a notice that an invoice has been generated on 02/03/2009.

Your payment method is: 2CheckOut

Invoice #763
Amount Due: $19.94 USD
Due Date: 01/15/2009

Invoice Items

Personal – appact11.com (02/02/2009 – 02/14/2009) $4.99 USD
Domain Registration – appact11.com – 1 Year/s $14.95 USD
——————————————————
Sub Total: $19.94 USD
Credit: $0.00 USD
Total: $19.94 USD
——————————————————

You can login to your client area to view and pay the invoice at http://www.webhosting.com/billing/viewinvoice.php?id=763

Hosting Team

This is a “phishing” attempt.   The email is bogus, invented simply to get people to click on the link and then enter their login information.   I knew it was bogus by several indications:

  1. I never registered any such website (“appact11.com”).   The hackers know I know this, but they hope that I will click on the link anyway to “clear up the misunderstanding.”
  2. The email didn’t come from any company that I recognize, and is deliberately vague (“Hosting Team,” “Dear Customer”).
  3. Despite how it appears, the link for the invoice actually went to an entirely different website.   I could tell this without clicking on the link simply by pointing my mouse at it but not clicking.

The link was actually to a website of an innocent fellow in Canada who does weddings, but the hackers obscured that by creating a secret web address on his site which looked like a standard login page.   If you fell for this one, you’d probably enter your web host login and you’d get an error message that said you did it wrong.   Since this is a fake, no combination of username/password would ever work.   Eventually you might get tired of it, or realize your mistake, but by then it would be too late.   The hackers would take the usernames and passwords you so generously entered and use them to hack your website, too.

The first guy who thought up this approach was clever, but the millions of followers who are doing it today are just copycats. It takes no special skills.

Being a good netizen, I wrote to the legitimate owner of the website and told him:

Sorry to be the bearer of bad news, but it appears that your website at www.namewithheld.com has been hacked.   I received this email today (along with thousands of other people probably):     …

… and then explained to him what “phishing” was, and told him what to do:

You need to have this cleaned off your site, then change all passwords related to your site.   If you don’t know how, you should get someone experienced to help you.

I was a little trepidatious about reaching out in this way.   A lot of people would assume I was the hacker.   Others might respond with requests that I fix the problem, thinking that I was a higher level of good Samaritan than I am. I could get an angry email, or get sucked into a long series of explanatory emails.   I wanted to help, but I didn’t have tons of time to spend on this.

Fortunately, this contact worked out well.   Within a couple of hours, he wrote back:

I have contacted my web host and indeed my site was hacked.   They have removed the contaminated files.   I have reported the matter to Toronto Police Services and have also contacted the Ontario   Provincial Police.

They informed that this type of activity is very common.   As it originates off shore there is little they can do about it.   I am personally quite upset and feel somewhat victimized.   I am very embarrassed that my site and reputation have been brought into disfavour.   I am not sure what else I can do or say.

Thank you for being so watchful.   I do appreciate it.

Why am I writing about this?   Because hacks happen.   Phishing attempts succeed.   I hate to see it happen to innocent people and friends of mine.   Anyone who uses the Internet needs to be at least a little educated about the hazards of it.   A little mis-step in cyberspace can translate to an empty bank account in the real world.   Take care, folks. It’s happening every hour of every day.

Written by RichLuhr · Categorized: Current Events

  • « Previous Page
  • 1
  • 2

Recent Posts

  • Upgrading: Bike rack
  • Upgrading: Bathroom vent
  • “How’s that Ranger tow?”
  • Time to roam differently
  • Say this over my grave

Archives

  • September 2021
  • August 2021
  • July 2021
  • November 2020
  • October 2020
  • May 2020
  • November 2019
  • September 2019
  • July 2019
  • June 2019
  • May 2019
  • October 2018
  • August 2018
  • October 2017
  • September 2017
  • August 2017
  • June 2017
  • May 2017
  • April 2017
  • March 2017
  • February 2017
  • January 2017
  • December 2016
  • September 2016
  • August 2016
  • July 2016
  • June 2016
  • May 2016
  • April 2016
  • March 2016
  • February 2016
  • January 2016
  • November 2015
  • October 2015
  • September 2015
  • August 2015
  • July 2015
  • June 2015
  • May 2015
  • April 2015
  • March 2015
  • February 2015
  • December 2014
  • November 2014
  • October 2014
  • September 2014
  • August 2014
  • July 2014
  • June 2014
  • May 2014
  • March 2014
  • February 2014
  • January 2014
  • December 2013
  • November 2013
  • October 2013
  • September 2013
  • August 2013
  • July 2013
  • June 2013
  • May 2013
  • April 2013
  • March 2013
  • February 2013
  • January 2013
  • December 2012
  • November 2012
  • October 2012
  • September 2012
  • August 2012
  • July 2012
  • June 2012
  • May 2012
  • April 2012
  • March 2012
  • February 2012
  • January 2012
  • December 2011
  • November 2011
  • October 2011
  • September 2011
  • August 2011
  • July 2011
  • June 2011
  • May 2011
  • April 2011
  • March 2011
  • February 2011
  • January 2011
  • December 2010
  • November 2010
  • October 2010
  • September 2010
  • August 2010
  • July 2010
  • June 2010
  • May 2010
  • April 2010
  • March 2010
  • February 2010
  • January 2010
  • December 2009
  • November 2009
  • October 2009
  • September 2009
  • August 2009
  • July 2009
  • June 2009
  • May 2009
  • April 2009
  • March 2009
  • February 2009
  • January 2009
  • December 2008
  • November 2008
  • October 2008

Categories

  • Airstream
  • Airstream Life magazine
  • Alumafandango
  • Alumafiesta
  • Alumaflamingo
  • Alumapalooza
  • Asia
  • Bicycling
  • Books
  • Caravel
  • Current Events
  • Electrical
  • EUC
  • Europe
  • FAQs
  • Ford Ranger
  • Ford Ranger
  • Globetrotter 23FB
  • Home life
  • Interstate motorhome
  • Maintenance
  • Mercedes
  • Mercedes 300D
  • Mercedes GL320
  • Modernism Week
  • Motorcycling
  • Musings
  • National Parks
  • Photos
  • PTX
  • Recipes
  • Renovation
  • Roadtrips
  • Temporary Bachelor Man
  • Tesla
  • Tucson places
  • Uncategorized
  • Upgrades
  • Vehicles

©2004–2015 Church Street Publishing, Inc. “Airstream” used with permission · Site design by Jennifer Mead Creative