Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Security-Basics
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

RE: Bank Exploit

from [Murda Mcloud] Network Security [Permanent Link]
Subject: RE: Bank Exploit
Date: Thu, 26 Jul 2007 14:29:11 +1000 
I don't know whether banks would be better or worse than Cisco but when
Michael Lynn tried to do something similar last year he found it very hard
http://www.schneier.com/blog/archives/2005/07/cisco_harasses.html

I'd be very wary about trying to get the banks to ask your 'friend' to
consult. Frank Abegnale had to serve time before doing that kind of thing!
Uhh, so did Mitnick, actually. 

'Inadvertently' does not sound like a legal term that stands up in court....

-----Original Message-----
From: listbounce@securityfocus.com [mailto:listbounce@securityfocus.com] On
Behalf Of securityz@delahunty.com
Sent: Wednesday, July 25, 2007 11:34 PM
To: security-basics@securityfocus.com
Subject: Bank Exploit

Friend of mine (not me, really) is working with a client of his who claims
to have inadvertently discovered a few web exploits of several financial
institutions.  Does anyone have any insights as to how this guy could bring
these to the attention of the organizations involved without being seen as a
hacker?  His minimal goal is to help the institutions, optimally he would
like to consult to help them rectify the issues.


thx

Steve
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  GB firewall - SNMP, brahsha
Next by Date:  Re: Bank Exploit, Yves Bourdic
Previous by Thread:  Re: Bank Exploit, Jason Thompson
Next by Thread:  Re: Bank Exploit, Adam Pal
Indexes:  [Date] [Thread] [Top] [All Lists]