[SATLUG] OT Watch out for breakins
doug at clickdoug.com
Fri Aug 9 13:11:03 CDT 2002
Paypal should have in the account the bank routing and account number the
money was transferred to.
This is something that should be reported to both the FBI and the Secret
Service (has jurisdiction over bank wire transfers.)
Best practices call for anyone who maintains a PayPal account to never leave
more than $5.00 in the account.
Allowing PayPal to electronically transfer money FROM your bank account is
not really cool.
For hosting solutions http://www.clickdoug.com
ISP rated: http://www.forta.com/cf/isp/isp.cfm?isp_id=772
See the 4thof July page!
My Idea of an agreeable person is a person who agrees with me!
The USA, One Nation under GOD! May she ever be!
----- Original Message -----
From: "Larry Blodgett" <blodgett at telocity.com>
To: <satlug at satlug.org>
Sent: Friday, August 09, 2002 09:50 AM
Subject: [SATLUG] OT Watch out for breakins
> Here is a message I received on another list. I thought this might
> be of interest to the security minded members of this list.
> As many of you may already know, Low End Mac's PayPal account was
> hijacked over the weekend. Someone using the email address
> "libb at spils.com" managed to hack my password, add his/her address to the
> account, remove my access to the account, and break the bank.
> Before we even knew what had happened, the bank had electronically
> cleared $1,444 to PayPal -- another $1,844.70 bounced due to insufficient
> funds. I have no idea how much more they may have cleared out of my
> PayPal account, but the last time I looked we had less than $100 there.
> I reported this to PayPal as soon as I learned of the hijacking on
> Tuesday morning. They have put a hold on my account while they straighten
> this out. My bank is also being very helpful, and we've filed the
> paperwork to reverse the $1,444 already sent to PayPal, but that may take
> a while.
> I'm asking for help from anyone out there who may have the skills to help
> track this person down. spils.com is a free email site, so I don't expect
> they'll be able to help very much. Google has only turned up two
> candidates, neither of who may be the party in question.
> If any of you run websites that have logs that track user IDs and IPs,
> please take a few minutes to search them for any email address with
> "lilbb" -- I suspect that may be the one piece of information crucial to
> tracking down this criminal.
> If you have any other ideas, please email me at my listmom at lowendmac.com
> Larry Blodgett
> Email: larryb at glorypath.com
> Email: lblodgett at mac.com
> Email: blodgett at telocity.com
> Email: larryb at dektos.com
> (trying to limit myself to these 4)
> ----/ / _
> ---/ / (_)__ __ ____ __
> --/ /__/ / _ \/ // /\ \/ /
> -/____/_/_//_/\_,_/ /_/\_\
> In theory, practice and theory are the same,
> but in practice they are different.
> Remember: it's a "Microsoft virus", not an "email virus",
> it's a "Microsoft worm", not a "computer worm".
> --- Computers save time like kudzu prevents soil erosion. ---Everybody
> Satlug mailing list
> Satlug at satlug.org
More information about the Satlug