Warning: Constant ABSPATH already defined in /customers/0/c/e/ogenstad.net/httpd.www/wp-config.php on line 24 Warning: Cannot modify header information - headers already sent by (output started at /customers/0/c/e/ogenstad.net/httpd.www/wp-config.php:24) in /customers/0/c/e/ogenstad.net/httpd.www/wp-includes/rest-api/class-wp-rest-server.php on line 1673 Warning: Cannot modify header information - headers already sent by (output started at /customers/0/c/e/ogenstad.net/httpd.www/wp-config.php:24) in /customers/0/c/e/ogenstad.net/httpd.www/wp-includes/rest-api/class-wp-rest-server.php on line 1673 Warning: Cannot modify header information - headers already sent by (output started at /customers/0/c/e/ogenstad.net/httpd.www/wp-config.php:24) in /customers/0/c/e/ogenstad.net/httpd.www/wp-includes/rest-api/class-wp-rest-server.php on line 1673 Warning: Cannot modify header information - headers already sent by (output started at /customers/0/c/e/ogenstad.net/httpd.www/wp-config.php:24) in /customers/0/c/e/ogenstad.net/httpd.www/wp-includes/rest-api/class-wp-rest-server.php on line 1673 Warning: Cannot modify header information - headers already sent by (output started at /customers/0/c/e/ogenstad.net/httpd.www/wp-config.php:24) in /customers/0/c/e/ogenstad.net/httpd.www/wp-includes/rest-api/class-wp-rest-server.php on line 1673 Warning: Cannot modify header information - headers already sent by (output started at /customers/0/c/e/ogenstad.net/httpd.www/wp-config.php:24) in /customers/0/c/e/ogenstad.net/httpd.www/wp-includes/rest-api/class-wp-rest-server.php on line 1673 Warning: Cannot modify header information - headers already sent by (output started at /customers/0/c/e/ogenstad.net/httpd.www/wp-config.php:24) in /customers/0/c/e/ogenstad.net/httpd.www/wp-includes/rest-api/class-wp-rest-server.php on line 1673 Warning: Cannot modify header information - headers already sent by (output started at /customers/0/c/e/ogenstad.net/httpd.www/wp-config.php:24) in /customers/0/c/e/ogenstad.net/httpd.www/wp-includes/rest-api/class-wp-rest-server.php on line 1673 {"id":10,"date":"2006-03-28T12:12:16","date_gmt":"2006-03-28T11:12:16","guid":{"rendered":"http:\/\/ogenstad.net\/2006\/03\/28\/taking-the-long-way-home-part-3\/"},"modified":"2006-03-28T12:12:16","modified_gmt":"2006-03-28T11:12:16","slug":"taking-the-long-way-home-part-3","status":"publish","type":"post","link":"https:\/\/ogenstad.net\/2006\/03\/28\/taking-the-long-way-home-part-3\/","title":{"rendered":"Taking the Long Way home – Part 3 – Conclusion"},"content":{"rendered":"

Read Part 2<\/a><\/p>\n

A smile spread across midfr0st\u00e2\u20ac\u2122s face, things were starting to look better. midfr0st had a server he hacked awhile back, he could probably have told Donald to forward the mail there now. However he had to make sure the server was still his to control and then configure it to store the gantern.com emails as well as forward them to mail.gantern.com. The people at Gantern would spot this if they checked their log files, but most people don\u00c2\u00b4t do that regularly and when they do it would be too late. After verifying and configuring the server midfr0st wrote an email.<\/p>\n

To: Dae
\nSubject: Progress<\/p>\n

Things are looking bright, I should have a package for you tomorrow. The mail flow will be going to the company instead of from it. Hopefully this will be enough.<\/p>\n

midfr0st<\/p>\n

For the first time midfr0st started to consider the money he got from Dae as his own. He was probably going to buy an Origami \/ UMPC but that would only eat a small slice of the $24.000. Feeling content with his work and not being able to sleep, midfr0st considered doing something about the dust puppies, though only briefly. Instead he went out for a pack of smokes and a meal. He had stopped thinking in terms of breakfast, lunch and dinner. For normal people it would be around lunch time. But why call it lunch if you haven\u00e2\u20ac\u2122t eaten breakfast or dinner the day before? A coffee is just a coffee regardless of when you drink it.<\/em><\/p>\n

Tuesday 11:43<\/p>\n

Tech support: “Hello this is Brenda how may I help you?”
\nmidfr0st: “Hi, do you have Donald there?”
\nTech support: “He is busy on another line, do you mind holding?”
\nmidfr0st: “No, I\u00e2\u20ac\u2122ll wait”<\/p>\n

After a few minutes Donald came to the phone.<\/p>\n

Donald: “Hello Donald here, how may I be of service?”
\nmidfr0st: “Hi Donald this is Dick, we spoke yesterday.”
\nDonald: “Was it for gantern.com?”
\nmidfr0st: “That\u00e2\u20ac\u2122s the one, we have everything ready on our side here and would like to go forward with the move.”
\nDonald: “Sure, which ip do you want to use?”
\nmidfr0st: “Wait a sec and let me find it. Oh, by the way I\u00e2\u20ac\u2122m trying to keep our network documentation up to date. Do you have our contract number there?”
\nDonald: “Sure do, it\u00e2\u20ac\u2122s IBL047-65BT”<\/p>\n

midfr0st gave Donald the IP address and thanked him for all the help. Shortly there after mail going to gantern.com was routed through a server under midfr0st\u00e2\u20ac\u2122s control.<\/p>\n

To: midfr0st
\nSubject: Re: Progress<\/p>\n

The information looks promising, I will keep you posted.<\/p>\n

Dae<\/p>\n

Three weeks later there was another email.<\/p>\n

To: midfr0st
\nSubject: All done<\/p>\n

We have everything we need. Pleasure doing business with you.<\/p>\n

Dae<\/p>\n

midfr0st called the Anti Spam provider again and told them to point the email flow to gantern.com back to mail.gantern.com. He made sure he didn\u00e2\u20ac\u2122t talk to Donald, and when asked for the contract number he provided the one Donald gave him.<\/p>\n

Two months later midfr0st came across an article stating that Wiamra Group had won a bid for a building contract worth $88 million. Thinking of his paycheck of $24.000 midfr0st felt he\u00e2\u20ac\u2122d been had.<\/p>\n

Aftermath:<\/strong>
\nDae\u00e2\u20ac\u2122s people at Wiamra Group were able to gather enough details from the replying emails Gantern Construction had sent to the Buyer.<\/p>\n

The people at Gantern never figured out what happened. After seeing that the Wiamra bid almost mimicked their own they started an internal investigation. They fired a newly hired assistant in the Sales department but never got close to finding out what had really happened..<\/p>\n

Please note this is a purely fictional story any name found here are made up. I\u00e2\u20ac\u2122ve written this because I like writing, if someone reads it and enjoys it great. If they get more conscious about security, that\u00e2\u20ac\u2122s a bonus too.<\/em><\/p>\n

Related Links:<\/strong><\/p>\n

The SANS Security Policy Project
\n– http:\/\/www.sans.org\/resources\/policies\/<\/a><\/p>\n

[tags]security, stories, social engineering[\/tags]<\/p>\n","protected":false},"excerpt":{"rendered":"

Read Part 2 A smile spread across midfr0st\u00e2\u20ac\u2122s face, things were starting to look better. midfr0st had a server he hacked awhile back, he could probably have told Donald to forward the mail there now. However he had to make sure the server was still his to control and then configure it to store the […]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_genesis_hide_title":false,"_genesis_hide_breadcrumbs":false,"_genesis_hide_singular_image":false,"_genesis_hide_footer_widgets":false,"_genesis_custom_body_class":"","_genesis_custom_post_class":"","_genesis_layout":""},"categories":[2],"tags":[],"_links":{"self":[{"href":"https:\/\/ogenstad.net\/wp-json\/wp\/v2\/posts\/10"}],"collection":[{"href":"https:\/\/ogenstad.net\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/ogenstad.net\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/ogenstad.net\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/ogenstad.net\/wp-json\/wp\/v2\/comments?post=10"}],"version-history":[{"count":0,"href":"https:\/\/ogenstad.net\/wp-json\/wp\/v2\/posts\/10\/revisions"}],"wp:attachment":[{"href":"https:\/\/ogenstad.net\/wp-json\/wp\/v2\/media?parent=10"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/ogenstad.net\/wp-json\/wp\/v2\/categories?post=10"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/ogenstad.net\/wp-json\/wp\/v2\/tags?post=10"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}