 QumahlinNever Enough TimePremium,MVM
join:2001-10-05
united state | Hacking? Is it really considered hacking if someone gave them an employee account?
also Lowe's obviously used Wi-fi as a way to avoid wiring the registers...now a smart company would of only been allowing the registers MAC's onto the network and since registers aren't changed very often i'm sure it would be that much of a hassle to upkeep and would easily thwart off wardrivers
--
Forum Posts:3504 |
|
|
|
GLX
join:2000-01-18
San Francisco, CA | They generally use the WiFi stuff for inventory control (ie, handheld scanners and such), not registers. Just an FYI. |
|
 72276539Premium
join:2001-01-19
Atlanta, GA | reply to Qumahlin
said by Qumahlin:
Is it really considered hacking if someone gave them an employee account?
Of course not, this is perfectly legal and every should be allowed to do it. Since supposedly someone GAVE them the employee account(which the article does not mention anyone GIVING them an employee account by the way) what they did was just like doing any other business. |
|
 HallPremium,MVM
join:2000-04-28
Dayton, OH
kudos:1 | reply to Qumahlin
said by Qumahlin:
Is it really considered hacking if someone gave them an employee account?
Just because someone may have given it to them doesn't mean they have the right to use it... And do you think someone "gave" it to them or they gained it some other way ??
--
-= Mindspring MaxDSL via Covad 1536/384 TeleSurfer Pro =- |
|
 DaSneaky1Done wall to block them allPremium,MVM
join:2001-03-29
The Lou
 ·Charter
| reply to Qumahlin
Lowes actually have all of their registers connected to Ethernet networks. The registers are running Cat5 to right under the counters, then converted into fiber from there till it gets to the switch closet. Then it goes back to Cat5.
Know what your talking about before you jump to conclusions.
--
If first you don't succeed, try sucking another seed! |
|
| Duhh.
These guys are dumb.
First of all the 5-0 would grind the employee to give up the info on whom he gave his employee account # to? |
|
| reply to Qumahlin
So it's ok for me to throw rocks at your windows because you are obviously not smart enough to install bullet proof glass? This kind of logic can be applied to just about anything. Of corse when it's about hackers and viruses it's always blame the MS or blame stupid WiFi or whatever else comes to mind. |
|
QumahlinNever Enough TimePremium,MVM
join:2001-10-05
united state
| reply to Qumahlin
No, I was just saying..I don't really count this as "hacking" As for my comment about how they should of secured their network..it was just that...a comment. Did I once say what they did was ok? Did I say it was their fault? No, I merely commented on the title. and commented on the store being idiots for not following simple security recommendations when running a wi-fi network
As for the "jumping to conclusions" Well I know for a fact the lowes near me has no cat 5 running to the registers and the wifi cards are visibly attached. So obviously not all lowe's registers use ethernet. I made the natural assumption that this lowe's was doing the same thing..if they aren't and have wifi for some other reason they still didn't follow basic security for a wifi network, especially one that has access to credit processing
--
Forum Posts:3504 |
|
| reply to 72276539
Let us not forget "social engineering" which is itself
a form of hacking. The difference is that you are
hacking people instead of computers.
It is very common for hackers to call in and pretend
to be someone else or play mind games in order to attempt
to trick someone such as an employee of a company into
revealing their login or password.
That login is later used to enter the system and do whatever
it is you wish to do with the information.
The same technique has recently been used with both Paypal
and eBay customers recently where hackers send out letters
pretending to be from those companies and requesting that
the customers "verify their login information". Actually
the message is from hackers trying to get the customers
to disclose their login information. |
|
 AthlGrondPremium,MVM
join:2002-04-25
Aurora, CO
·Comcast
| reply to Qumahlin
said by Qumahlin:
now a smart company would of only been allowing the registers MAC's onto the network and since registers aren't changed very often i'm sure it would be that much of a hassle to upkeep and would easily thwart off wardrivers
MAC's can be easily cloned. |
|
| reply to grindkore
If I forget to lock my door, or I do not lock it properly, anyone has the right to go in my house and take my things? I dont' think so. Just because the door isn't secured, doesn't mean you can come in without a proper invitation. |
|
 zoom3148SupermanPremium
join:2001-04-30
Yermo, CA | reply to GLX
said by GLX:
They generally use the WiFi stuff for inventory control (ie, handheld scanners and such), not registers. Just an FYI.
Yeah I think You are right, I just noticed what looks like 2 or 3 wireless access points (routers?) up on the ceiling of My local Stater Brothers Supermarket (2-Short Black Antennas on each router), They also installed 2 Cameras and 2-19" TV's facing towards the Doors for security too(Physical, Not electronic).
--
Charter Pipeline rules in Hesperia, CA, Verizon (ex-GTE) sucks..... |
|
KearnstdElf WizardPremium
join:2002-01-22
Mullica Hill, NJ | reply to Qumahlin
these people should know that jacking into another person's wireless is for use of their T-carrier for fast downloads. not stealing CC#s.
--
[65 Arcanist]Filan(High Elf) Zone: Broadband Reports |
|
 tower29Premium
join:2002-02-12
Loveland, CO | reply to Cybertoad
I received four of those e-mails from Ebay and I laughed all the way to the delete button. Anyone that ignorant to fill the form they sent me I feel very sorry for. "mothers maiden name" is a bell ringer to have your credit screwed for life. I had my credit card number stolen last year and it sucks. www.cashmove.com was the company that it was used on totaling 300 bucks.....tower |
|
KearnstdElf WizardPremium
join:2002-01-22
Mullica Hill, NJ | reply to Qumahlin
unless im doing business with a company they dont get my CC#(Ie ordering from Newegg.com or my EQ acct subscription).
--
[65 Arcanist]Filan(High Elf) Zone: Broadband Reports |
|
| reply to Qumahlin
FYI - you can clone mac address. like serial numbers that can be generated and brute forced onto a network.
not to mention all security software has flaws. Buffer under run execution? |
|
| reply to Cybertoad
no you are not a hacker if given the info or if you social engineering someone... A hacker is some one who will take something apart and see how it works. looks at its + and -. understands why it works that way, and applies what he learned to creating a better thing or what ever it may be. the person who did this using social engineering or not is a everyday 2bit criminal and anyone could of done that if they have the criminal mentality. my mother is not a hacker and she can get information from people that are internal information only. and some people can give that type of information unknowingly to someone. I have heard many times people at stores giving out sensitive information to other co-workers. but the difference between what my mother and i do with that information and what they did with that information makes them a criminal it does not make my mother a hacker or me a criminal. plane and simple... before you start throwing around the word hacker to every criminal first know what a hacker is and does. |
|
QumahlinNever Enough TimePremium,MVM
join:2001-10-05
united state | reply to QuickHax
Yes, you can clone mac addresses, but to clone you first must be able to obtain a mac address that is allowed on the network
--
Forum Posts:3504 |
|
AthlGrondPremium,MVM
join:2002-04-25
Aurora, CO Reviews:
·Comcast
| said by Qumahlin:
Yes, you can clone mac addresses, but to clone you first must be able to obtain a mac address that is allowed on the network
Which is what packet sniffing is for. |
|
HallPremium,MVM
join:2000-04-28
Dayton, OH
kudos:1 | reply to stomas3
said by stomas3:
no you are not a hacker if given the info or if you social engineering someone... A hacker is some one who will take something apart and see how it works. ... before you start throwing around the word hacker to every criminal first know what a hacker is and does.
You're fighting a losing battle (hacker vs cracker). The term "hacker" has been re-defined, at least for the general public, and we can't change it back.  I do know the difference that you're alluding to though. Yes, in geek-speek, these guys are crackers, not hackers.
--
-= Mindspring MaxDSL via Covad 1536/384 TeleSurfer Pro =- |
|
