★阿修羅♪  Ψ空耳の丘Ψ16
 ★阿修羅♪
Ψ空耳の丘Ψ16検索 AND OR
 

FBIが糞ポンコツ(Badtrans)ウイルスを使って「テロリスト」探し

投稿者 佐藤雅彦 日時 2001 年 12 月 18 日 19:05:08:

  ――あのインターネットウイルス騒動は、
    アメリカ“帝国”が仕掛けた電脳ウイルス戦争
     だった可能性が出てきた――

●Badtransウイルス――邦訳すれば「糞ポンコツ」ウイルス――の
 最大の特徴は、感染した“宿主”コンピュータのキー操作を盗み
 みて、それを“チクる”というスパイ能力が備わっていたことでした。

●このウイルスが世界的な“感染爆発”を起こす数日前には、FBI
 が「肉食獣」(Carnivore)電子メール傍受システムの一部として、
 これと同じ スパイ機能を持った「魔法の提灯」というウイルスを
 開発していたことが発覚していました。

●さて、「糞ポンコツ」ウイルスの感染爆発が世界を一巡した今、
 FBIはこのウイルスが“チクった”キー操作情報を回収して
 無数のコンピュータ利用者の使用状況を盗み見し、そこから
 「テロリスト」を見つけだそうと動いているそうです。

●こりゃいよいよ、オーウェルの『1984』を地でいく展開になって
 きましたな。しかもオーウェルの小説の場合は、監視カメラ付き
 テレビや盗聴器を避ければ監視の目をかいくぐることができる
 “救い”が残されていたけれど、パソコン文章がキー操作の段階
 で盗み見されるとなれば、心の中までは覗かれないとしても、
 プライベートな文書や通信は筒抜けということになる。(通信は
 エシェロンや肉食獣システムですでに筒抜けなのだろうが……。)

■■■■@■■■.■■■■■■■■■■■■■■■■■■■
http://www.dailyrotten.com/articles/archive/189387.html

The FBI is asking for access to a massive database
that contains the private communications and passwords
of the victims of the Badtrans Internet worm. Badtrans
spreads through security flaws in Microsoft mail
software and transmits everything the victim types.
Since November 24, Badtrans has violated the privacy
of millions of Internet users, and now the FBI wants
to take part in the spying.

December 17, 2001
FBI wants access to worm's pilfered data

A ROTTEN.COM EXCLUSIVE
The FBI is asking for access to a massive database
that contains the private communications and passwords
of the victims of the Badtrans Internet worm. Badtrans
spreads through security flaws in Microsoft mail
software and transmits everything the victim types.
Since November 24, Badtrans has violated the privacy
of millions of Internet users, and now the FBI wants
to take part in the spying.

Victims of Badtrans are infected when they receive an
email containing the worm in an attachment and either
run the program by clicking on it, or use an email
reader like Microsoft Outlook which may automatically
run it without user intervention. Once executed, the
worm replicates by sending copies of itself to all
other email addresses found on the host's machine, and
installs a keystroke-logger capable of stealing
passwords including those used for telnet, email, ftp,
and the web. Also captured is anything else the user
may be typing, including personal documents or private
emails.

Coincidentally, just four days before the breakout of
Badtrans it was revealed that the FBI was developing
their own keystroke-logging virus, called Magic
Lantern. Made to complement the Carnivore spy system,
Magic Lantern would allow them to obtain target's
passwords as they type them. This is a significant
improvement over Carnivore, which can only see data
after it has been transmitted over the Internet, at
which point the passwords may have been encrypted.

After Badtrans pilfers keystrokes the data is sent
back to one of twenty-two email addresses (this is
according to the FBI-- leading anti-virus vendors have
only reported seventeen email addresses). Among these
are free email addresses at Excite, Yahoo, and
IJustGotFired.com. IJustGotFired is a free service of
MonkeyBrains, a San Francisco based independent
Internet Service Provider.

In particular, suck_my_prick@ijustgotfired.com began
receiving emails at 3:23 PM on November 24. Triggering
software automatically disabled the account after it
exceeded quotas, and began saving messages as they
arrived. The following day, MonkeyBrains' mail server
was sluggish. Upon examination of the mail server's
logs, it quickly became apparent that 100 emails per
minute to the "suck_my_prick" alias were the source of
the problem. The mails delivered the logged keystrokes
from over 100,000 compromised computers in the first
day alone.

Last week the FBI contacted the owner of MonkeyBrains,
Rudy Rucker, Jr., and requested a cloned copy of the
password database and keylogged data. The database
includes only information stolen from the victims of
the virus, not information about the perpetrator. The
FBI wants indiscriminant access to the illegally
extracted passwords and keystrokes of over two million
people without so much as a warrant. Even with a
warrant they would have to specify exactly what
information they are after, on whom, and what they
expect to find. Instead, they want it all and for no
justifiable reason.

One of the most basic tenets of an authoritarian state
is one that claims rights for itself that it denies
its citizens. Surveillance is perhaps one of the most
glaring examples of this in our society. Accordingly,
rather than hand over the entire database to the FBI,
MonkeyBrains has decided to open the database to the
public. Now everyone (including the FBI) will be able
query which accounts have been compromised and search
for their hostnames. Password and keylogged data will
not be made available, for obvious legal reasons.

The implications of complying with the FBI's request,
absent any legal authority, are staggering. This is
information that no one, not even the FBI, could
legally gather themselves. The fact that they seek to
take advantage of this worm and benefit from its
illicit spoils, demonstrates the FBI's complete and
utter contempt for constitutionally mandated due
process and protection from unreasonable search and
seizure. It defies reason that the FBI expects the
American people to trust them to only look at certain
permissible nuggets of data and ignore the rest of
what they collect. One need only imagine what J. Edgar
Hoover would do with today's expansive surveillance
system, coupled with the new powers granted by the
Patriot Act, to appreciate the Orwellian nightmare
that the United States is becoming. The last thing the
FBI should have is a spying Internet worm, and it
looks like they've found one. Welcome to the Magic
Lantern.


-------------------------------------------------------

The database is available at
http://badtrans.monkeybrains.net

[Editor's note: Rudy Rucker, Jr. contributed to this
story, he was also visited by the Secret Service last
summer regarding his fan site of President Bush's
daughters at TheFirstTwins.com.]

■■■■@■■■.■■■■■■■■■■■■■■■■■■■




フォローアップ:

全★阿修羅♪=

 

 

 

 

  拍手はせず、拍手一覧を見る


★登録無しでコメント可能。今すぐ反映 通常 |動画・ツイッター等 |htmltag可(熟練者向)
タグCheck |タグに'だけを使っている場合のcheck |checkしない)(各説明

←ペンネーム新規登録ならチェック)
↓ペンネーム(2023/11/26から必須)

↓パスワード(ペンネームに必須)

(ペンネームとパスワードは初回使用で記録、次回以降にチェック。パスワードはメモすべし。)
↓画像認証
( 上画像文字を入力)
ルール確認&失敗対策
画像の URL (任意):
投稿コメント全ログ  コメント即時配信  スレ建て依頼  削除コメント確認方法
★阿修羅♪ http://www.asyura2.com/  since 1995
 題名には必ず「阿修羅さんへ」と記述してください。
掲示板,MLを含むこのサイトすべての
一切の引用、転載、リンクを許可いたします。確認メールは不要です。
引用元リンクを表示してください。