arrHitInfo=new Array("“drive,45,1","“initial,24,1","“medium”,45,1","“patches”,45,1","“tab”,45,1","“to,72,1","“x”,45,1","Ł100,88,1","©1995,66,1,112,1,116,1","©2005,87,1","©2005thewashington,114,1","©copyright,90,1","00,1,1,40,1,51,7,56,1,66,1,72,2,99,1,112,2,115,2,116,2","000,1,5,2,5,3,2,15,5,6,1,12,2,30,2,39,7,27,3,36,2,46,4,57,1,58,1,68,1,71,1,73,1,78,1,81,13,82,1,83,3,90,4,88,1,89,1,91,1,92,2,103,3,104,2,105,10,107,1,106,1,111,6,112,2,113,15,114,1,115,5,116,2,121,1,122,4,123,2,125,1,126,1,130,1,133,1,135,1,134,4,136,3","000air,114,1","000infected,15,1","000node,15,1","000people,57,1","0015et,77,1","00am,85,1","01,39,1,28,1","02,5,1,39,1,51,1,115,1","02451,81,1","03,1,1,39,8,129,1","04,1,1,39,1,52,4,110,1,111,1,112,1,116,1,136,1","048,3,1","05,2,1,51,3,77,1,136,1","06,66,1,92,2,116,1","07,2,1,3,1,17,1,31,1,117,1,134,1","08,51,1,92,2,115,1","0816,106,1","09,51,1,68,1","095,136,1","10,2,2,15,1,10,5,12,1,39,7,43,2,29,1,37,2,51,1,56,1,58,1,68,1,79,1,81,6,85,1,90,3,103,3,120,1,111,3,112,2,115,1,116,1,118,1,119,1,121,1,125,1,133,2,135,1,134,2,136,2","10,3,1","100,3,1,15,11,10,2,12,1,39,1,26,1,29,1,37,1,46,1,90,1,88,1,89,1,103,1,104,1,105,1,111,1,112,2,113,1,116,1,128,1","1000,71,1","1009,65,1,73,1,98,1,104,1,108,1,124,1,125,1,127,1,128,1","10284366,79,1","103,136,2","1034,112,1","1035,74,1","104,31,1","105,80,1,129,1","105281,70,1","108,81,1,111,1","109,10,1","11,2,7,17,1,30,1,39,2,24,1,26,1,40,1,57,3,72,1,77,1,86,1,92,1,99,1,102,1,106,1,111,1,113,1,119,1,123,1,125,1,131,1","110,81,1,136,1","117,132,1","119,10,1","12,2,3,39,1,36,2,46,1,51,1,77,1,78,1,79,1,81,1,85,1,109,1,111,2,113,1,126,1,129,1,133,1,134,1","120,101,1,115,1,136,2","122,3,1","125,10,1,37,1,81,1,111,1","127,90,1","1282,1,1","12th,39,2","13,2,2,39,2,29,1,37,1,56,1,91,2,92,1,102,4,130,1","130,81,1,129,1","133,94,1,123,1","135,110,1,126,1","14,3,2,39,4,68,1,72,2,81,1,116,1,118,1,124,1","140,3,1,10,1,39,1,125,1","142,10,1","144,81,2","145,105,1,135,1","1450,81,1","146,47,1,89,1","15,39,4,51,1,66,1,68,1,77,1,78,1,79,1,85,1,90,2,95,1,102,1,104,1,115,1,117,1,121,1","150,81,1,90,1,108,1,132,1","151,58,2,69,2,83,2,84,4,92,2,95,1,126,2,132,2,137,2","16,2,1,3,2,39,2,57,1,66,1,81,1,91,1,102,1,107,1,106,1,115,1,129,1,133,1,136,1","160,36,1,81,1,111,1","161,82,1","17,1,1,3,1,5,1,12,1,39,5,29,1,73,1,91,1,102,7,116,1,133,1","170,122,1","171100040,56,1","18,3,3,12,2,39,3,29,1,37,1,78,1,81,3,85,1,91,1,102,1,115,1,116,1,118,1,128,1,130,2,134,4","180solutions,1,6","1848,115,1","19,5,1,27,1,37,1,46,2,68,1,81,2,84,1,90,1,104,1,130,1,135,1","198,3,1","1984,106,1","199,102,1","1990s,5,1,81,1","1995,15,1,27,1","1996,81,2,90,1,93,1","1998,3,1,39,1,86,1,92,1","1999,81,1","1january,31,1","20,2,2,10,1,12,1,17,1,39,5,24,1,27,2,46,1,51,1,56,1,65,1,67,1,69,4,77,3,81,1,82,1,90,1,103,1,105,2,107,1,120,3,111,1,113,3,115,1,127,13,128,2,134,2","200,2,1,39,2,36,1,66,1,79,1,81,2,90,1,102,1,103,1,136,1","2000,3,1,30,1,39,11,27,3,71,1,81,4,82,1,85,1,123,1,128,1","2001,3,2,12,1,39,7,65,1,66,2,74,1,73,1,81,2,84,1","20011211a,39,1","2002,2,1,3,3,39,10,26,1,81,4,82,1,89,1,135,1","2003,2,3,3,4,6,1,39,8,86,1,81,6,89,2,95,1,102,1,109,1,106,1,111,2,115,2,116,3,125,1,127,1,130,1,134,2","2004,1,2,2,2,3,6,13,2,6,1,10,3,12,1,39,2,43,1,24,1,26,1,28,1,37,1,45,2,52,1,56,1,68,1,70,1,73,1,77,1,78,2,79,1,80,1,81,10,90,2,89,1,102,2,107,1,109,3,120,1,111,4,112,1,113,2,125,1,126,1,129,1,130,1,132,9,135,1,136,2","2005,1,3,2,13,3,2,15,2,13,1,5,2,6,1,10,7,12,4,17,2,39,14,43,2,47,1,94,2,31,2,24,1,26,2,27,3,29,2,36,2,37,3,40,2,45,1,46,2,51,6,56,1,57,3,66,2,67,2,58,2,69,2,71,1,72,2,77,5,78,2,79,4,80,1,86,2,81,10,82,2,83,2,84,2,85,2,88,1,89,1,91,1,92,4,93,2,95,2,99,2,100,2,101,2,102,2,103,2,105,4,107,1,109,2,106,4,120,1,110,1,111,1,112,1,113,1,114,1,115,2,116,2,117,1,118,2,119,2,122,2,123,2,125,1,126,2,129,13,130,4,131,1,132,3,133,1,135,2,134,3,136,8,137,2","2006,2,1,29,1,82,3,130,1,131,1","2007,81,1","2009,39,1","200per,103,1","201,77,1","2010,112,1","202,81,1","204,39,1","20580,24,1","207,6,1","20days,91,1","20th,85,1","21,3,2,10,1,39,2,36,1,58,1,103,1,108,1,128,1","2100,65,1,66,1,74,1,73,1,98,1,102,1,104,1,108,1,116,1,121,1,124,1,125,1,127,1,128,1","2141968,31,1","21stcentury,85,1","22,3,1,15,1,39,1,36,3,37,1,65,2,69,1,74,2,73,2,77,2,81,1,98,1,102,1,104,2,108,1,118,1,121,1,124,1,125,1,127,1,128,1,135,1","225,12,1","23,3,1,39,5,36,1,46,1,56,1,111,1,114,1,133,1","237,106,1","24,39,1,92,2,93,1,95,1,105,1,106,1,112,1,113,1","246,82,1","248,74,1","24pm,92,1","25,1,1,2,1,3,1,12,1,17,1,39,5,27,1,37,1,95,1,108,1,120,1,112,3,126,1,134,1","250,74,1,81,1,122,1","251,81,1","252,3,1","25because,112,1","25m,81,1","26,1,1,39,3,81,1,118,1,130,1","260,39,2","27,15,1,73,1,81,1,89,1,104,1,111,1,119,1","275,66,1","28,2,2,3,1,27,1,80,1,81,1,82,1,83,1,90,1,91,2,109,1,111,1,118,1,136,1","286,39,1","28individuals,103,1","29,39,4,36,1,37,1,86,1,84,1,129,6,134,1","290,136,1","292,45,1","2932,136,1","2965,136,1","2million,57,1","2nd,87,1","30,3,1,10,1,39,1,51,1,81,2,88,1,101,1,103,1,104,1,105,1,107,1,131,1,134,1","300,1,1,26,1,46,1,81,3,90,1,105,4,106,1","303,136,1","30348,70,1","3060,45,1","30m,81,1","31,2,1,6,1,39,2,36,1,93,1,115,1","310,105,1","312,81,1","32,39,1,81,1","320,81,2","322,70,1","322247,40,1,99,1","329,120,1","33,39,2,36,1,113,1,114,1,118,1","331,81,1","34,132,1,136,2","3472,81,1","348,2,2,10,1","35,3,1,102,1","350,30,1,116,1,118,1,123,1","352,10,1","3566901,86,1","3568726,122,1","357,1,1","36,26,1,81,1,113,1,116,1,136,1","360,36,1","3657170,68,1","37,3,1,12,1,39,1,27,1,37,1,90,1","3742,24,1","377,3,1","38,3,1,80,1,109,1,115,1,136,1","380,92,1","382,47,1,24,1,45,1","38pm,92,1","39,3,1,39,1,51,2,81,1","392,3,1","397,24,1","3d,116,1","3rd,87,1","40,10,1,39,1,73,1,81,2,82,2,103,1,105,1,120,1,111,2,127,2,131,1,134,2","400,81,2","4043,133,1","408,136,2","41,2,2,68,1","417,57,1","42,2,1,12,1,39,1,51,1,73,1,136,2","420,83,1,84,10","4261,47,1,24,2,45,1","42m,81,1","43,2,1,52,2,121,1,135,1","4338,24,1","4357,47,1,24,1,45,1","438,24,1","44,37,1,102,1,112,1,118,1","45,12,1,39,1,26,1,134,1","459,132,1","46,39,1,131,1","4621,40,1,99,1","47,118,1","48,2,1,3,1,10,2,39,1,94,1,24,1,80,1,89,1,103,1,105,2,117,1,125,1,134,1,136,1","49,51,1","499,102,1","4b,81,1","50,2,3,10,1,39,2,26,1,27,1,37,2,84,1,90,1,103,4,106,2,111,1,122,1,125,1,135,2","500,27,1,68,1,74,1,81,1,92,1,105,1,111,1,116,1,122,1,132,1,134,1","50m,81,1","51,10,1,12,1,39,1,73,1,136,1","518,111,1","52,3,1,51,1,81,1","5218178,112,1","522,3,1","525,24,1","5281,70,1","53,2,1,27,1,90,1,102,1","5313402,127,1","532,125,1","54,3,1,10,2,39,1,37,1,111,2,116,1,125,1,136,2","5455225,108,1","55,39,1,51,1,129,1","55m,129,1","56,31,1,118,1,121,1","567,89,1","5670,77,1","568,136,1","57,39,2","570,82,1","5759890,121,1","5772238,116,1","58,1,1,120,1,112,1,118,1","5844672,128,1","587,95,1,112,1","5872501,125,1","5876664,124,1","5889229,98,1","5897839,102,1","59,13,2,10,2,39,1,36,1,105,1,133,1","5906896,104,1","593,3,1","5934194,74,1","5946634,73,1","5954242,66,1","5967532,65,1","5classics,103,1","5million,91,1","60,1,2,2,2,37,1,46,1,81,1,90,1,136,3","600,12,1,24,1,71,1,133,1","61,3,1,10,1,37,1,136,1","614,81,1","623,81,1","6285,24,1","63,2,1,27,1,120,2,134,1","630,113,1","639,2,1","64,3,1,81,1,121,1,136,2","640,57,1","645,135,1","6462,81,1","65,2,2,39,2,66,1","653,47,1,24,2,45,1","658,72,2","66,6,1,39,1","67,39,1,120,2","68,3,1,6,1","680,10,1,24,1","687,121,1","68800,115,1","69,51,2,56,1,118,1","69480,1,1","70,2,1,10,1,39,4,67,1,81,1,90,1,89,1,120,1,111,1,113,1,115,1,118,2","700,2,1,29,1,86,1,81,2,109,1,112,1","7004,89,1","706,39,1","71,39,2","710,29,1","72,39,1","7289,24,1","73,2,1,73,1","7349,66,1,116,1","74,10,1,39,2,37,1","744,1,1","75,3,2,81,1","750,115,1","76,39,1,135,1","760,133,1","764,136,1","776,29,1","778,81,2","78,3,1,135,1","781,81,2","7th,39,2,88,1","80,2,1,39,1,94,1,46,1,108,1,120,2,118,1","800,24,2,72,2,90,1,106,1,112,2","802,57,3","81,39,1,29,1","810,81,1","8140,81,1","817,45,1","8212,43,4,29,5","8217,40,4,91,1","8220,91,1","8221,91,1","8228,70,1","83,118,1,124,1","84,17,1","847,136,1","85,77,1,103,1,108,1,120,1","850,27,1","86,1,1,136,2","861,81,1","862,10,1,37,1","864,3,1","866,10,1,47,1,24,2,45,1","8688,89,1","877,47,2,24,3,45,2,70,1","8788,72,2","87months,115,1","880,81,1","8800,81,1","888,24,1,89,2","89,39,1","891,81,1","895,135,1","896,82,1","90,2,1,39,1,94,1,24,1,29,1,74,1,81,1,82,1,105,1,108,1,120,1,131,1,134,1","900,114,1","901,133,1","908,3,1","91,123,1,126,1,137,1","92,113,1","927,10,1","93,123,1,126,1,137,1","938,77,1","94,111,1","941,136,2","95,39,1,28,1,51,2,135,1","95630,10,1","9584,102,1","9588,121,1","96,39,2,68,1","974,111,1","975,1,1","98,30,1,39,1,123,1,131,1","99,10,1,105,1,106,1,125,1","â ,118,7","â â about,118,1","â©,31,1,36,2,118,1","âµ,117,1","”,136,2","–,136,1","—,118,4","“although,136,1","“compared,136,1","“however,136,1","“this,136,1","a20,1,1","aarp,135,2","abandage,31,1","abandoned,79,6","abba,51,1","abc,72,4,128,1","abcoffice,72,2","abetting,81,2","abilene,45,1","abilities,85,1","ability,43,1,57,1,58,1,80,1,81,2,89,2,93,1,100,2,103,1,105,1,106,2,115,1,126,1,127,1,130,2,137,1","abishek,126,1","able,2,1,30,1,94,1,81,4,85,2,89,1,93,1,100,1,101,1,106,1,109,1,123,1,126,2","ableto,85,1","abnormal,90,1","abotnet,1,1","about1,114,1","abra,45,1","abroad,47,1,24,1,45,1,79,1","absence,100,1","absolute,108,1","absolutely,70,1,89,2,115,1","absorb,134,1","abundant,52,1","abuse,3,2,39,2,52,1,98,1,112,1,135,1,134,2","abused,4,1,39,1","abusiness,17,1","abusing,12,1,65,1","abusive,43,1,115,1","academic,114,1","academy,51,1","accelerate,2,1,81,1","accept,24,1,81,1,107,1","acceptance,1,1","accepted,81,2,107,1","acceptextra,29,1","accepting,118,1","access,2,1,12,1,39,3,47,1,31,1,24,1,28,2,37,1,40,1,45,1,51,1,57,3,69,2,74,3,79,1,86,1,81,11,82,1,84,1,85,2,89,4,99,1,100,2,103,1,105,11,106,1,109,1,111,2,114,3,116,2,127,1,134,2,136,11","accessby,29,1","accessed,3,4,39,1,40,1,81,5,99,1","accesses,81,1,130,1","accessibility,4,1,81,1","accessible,4,1,30,1,69,1,86,1,81,1,90,1,123,1","accessing,4,1,47,1,40,1,45,1,57,5,74,1,89,2,99,1,121,1,136,1","accident,106,1","accidentally,39,2,109,1","accompanied,116,1","accomplice,104,1","accomplices,91,1","accomplished,89,1","according,1,2,3,1,2,1,5,2,6,1,10,1,39,7,43,2,47,1,94,1,31,1,28,3,29,1,37,3,40,1,45,1,51,1,57,1,65,1,66,1,68,2,69,3,71,1,74,2,77,2,78,2,79,1,86,1,81,34,82,1,83,5,84,1,85,6,90,2,89,3,91,1,92,1,95,1,99,1,101,1,102,8,103,3,105,2,107,4,108,1,106,2,120,1,109,1,111,2,115,2,116,3,118,1,121,1,122,2,124,1,125,1,126,3,127,1,128,3,129,6,130,5,133,1,134,2,136,1","accordingly,105,1","account,2,12,13,1,17,5,30,3,94,3,24,4,27,2,28,7,70,1,72,2,79,2,81,8,84,2,85,3,90,3,89,7,92,1,100,1,102,1,103,15,105,2,108,1,109,1,111,6,115,1,116,2,121,1,123,3,132,1,134,4","accountability,27,1,58,1,105,1,106,1","accountable,46,1","accounted,108,3,122,1","accountnumbers,103,1","accounts,2,19,17,14,30,1,24,5,26,6,29,2,52,1,70,6,73,2,81,4,85,2,90,1,88,1,89,12,92,3,103,3,104,1,105,3,111,3,123,1,130,2,135,1,134,4","accuracy,72,1","accurate,70,1,72,1,126,1","accurint,105,5","accused,15,1,81,9","ace,81,1,130,1","acer,102,2","aces,81,1,130,1","acknowledge,2,1","acknowledged,5,1,120,1","acknowledges,81,2,107,1","acohido,2,3,13,2,26,2,111,1,113,1","acollection,15,1","acourt,43,1","acquire,65,1","acquired,81,1,105,1","acquires,81,1","acquisition,30,1,123,1","acrime,85,1","acrobat,4,1","acronyms,103,1","across,2,3,39,2,47,1,26,1,37,5,40,1,45,1,81,1,90,1,99,1,102,1,107,1,111,2,113,1,134,2","act,2,1,39,1,40,1,58,4,69,1,70,1,86,1,81,1,82,1,85,1,90,1,89,1,99,1,116,2","acted,5,1","acting,105,1","action,43,1,31,1,58,1,91,1,92,1,93,4","actionand,91,1","actions,24,1,70,1,72,1,80,1,81,2,92,1","activate,111,1","activated,43,1","active,10,1,79,1,125,1,136,5","actively,94,1,136,1","activex,46,1","activexes,43,2","activists,52,1","activities,39,1,46,1,66,1,79,1,81,4,89,1,118,1,121,1,130,2","activity,2,2,4,1,24,1,28,1,46,2,70,1,77,1,79,1,81,3,85,5,89,2,91,2,92,3,93,1,105,2,107,1,120,1,116,2,130,1,132,2,135,1","activityto,85,1","actor,85,1","actors,1,1,65,1","actress,51,1","actual,81,1,85,1,89,3,100,1,105,1","actually,47,1,45,1,51,1,70,1,71,1,81,1,89,4,91,1,93,1,105,1,107,1,110,1,111,1,116,1,128,1,130,1","actuallymake,103,1","acustomized,1,1","adapt,105,1","adaptability,127,1","adapted,85,1,103,1","adapting,85,1","add,2,1,86,1,87,1,89,4,93,1,105,2","added,30,1,65,1,58,1,86,1,81,1,85,1,93,5,95,1,102,1,103,1,108,1,109,1,123,1,124,1,130,1,137,1","addiction,39,3,100,1","adding,43,1,28,1,46,1,86,1,85,1,89,2,114,1,132,1,133,1","addition,10,2,43,2,27,1,40,1,82,1,90,2,93,1,99,1,105,2,107,3,120,1","additional,3,1,10,2,31,2,24,1,73,1,81,2,89,1,99,1,104,1,105,3,118,1,127,1,130,1","additionally,10,1","address,2,1,39,2,47,1,94,3,31,1,24,1,26,1,28,2,45,1,58,1,69,1,77,1,78,1,86,5,81,11,82,2,87,1,89,10,92,1,103,5,105,8,107,1,108,1,106,2,109,9,112,1,113,1,118,1,126,2,130,7,132,1,135,1,134,1","addressed,81,1","addresses,13,1,30,2,28,2,57,1,78,1,86,2,81,9,85,1,87,1,88,2,89,1,98,1,103,3,105,3,107,4,113,6,116,1,119,1,123,2,127,1,130,3,133,1","addressing,58,1","addresslaundering,85,1","adds,2,1,81,1,105,1,109,1,112,1","adept,26,1","adequate,40,1,67,1,99,1","adequately,27,1,40,1,99,1,108,1","adevastating,40,1","adhere,56,1,110,1","adjust,106,1","administration,106,2,135,1","administrative,81,2,114,1","administrator,12,1,67,1,81,2,105,2,115,1","administrators,3,2,10,1,57,1,67,2,78,1,79,3,81,4,103,2,105,2,127,2,130,1","admit,115,9","admits,105,1","admitted,5,1,31,1,115,2","admitting,115,1","adobe,4,2","adopt,57,4,73,1,82,1","adopted,81,1,120,1","adopting,39,1","adoption,74,1,110,1,136,1","ads,39,1,43,4,47,6,45,2,46,1,81,1,85,1,89,1,103,1,125,1","adult,39,12,90,1,92,1","adults,2,1,39,1,121,2","advance,89,1,126,1","advanced,28,1,56,1,73,1,98,1,100,1","advancement,103,1","advantage,85,3,100,1,105,1,110,1,119,1,131,1,135,1,134,1","advantages,89,1","advent,135,1","advertise,90,1,92,1,103,1,109,1","advertised,81,1","advertisement,103,1","advertisements,43,1,37,1,46,1,79,2,89,2,101,1,103,1,131,1","advertisers,120,1,121,1,136,1","advertising,1,2,43,3,94,1,46,1,81,1,90,1,89,1,91,1,136,2,137,1","advertisingand,43,1","advice,43,1,81,1,90,1,89,2,93,1","advise,47,1,45,1","advised,89,1,114,1,135,1","adviser,81,1,90,1","advises,12,1,80,1","advising,88,1","advisor,77,1,89,1","advisories,90,1","advisory,52,2,95,1,137,1","advocacy,105,1","advocates,28,1,58,2,90,1,89,1,100,2,105,1,135,3","adware,1,5,10,3,43,3,47,4,30,1,37,7,46,1,51,1,85,1,89,9,104,1,120,4,109,1,118,1,123,1,125,1,132,1","affairs,39,1,103,1","affect,31,1,134,1","affected,10,1,30,1,40,2,67,1,95,1,98,1,99,2,100,1,114,2,123,1,131,1,134,1,137,1","affecting,67,1,83,1,101,1","affidavit,81,4","affiliated,90,1,128,1,134,1","affiliates,1,1,27,1","affiliateshave,1,1","afflict,77,1","afflicted,52,1,131,1","affluent,134,1","afford,90,1","aficionados,112,1","africa,82,1,107,1","african,108,1","aftab,86,2","aftermath,100,1,105,1","afternoon,133,1","aftershocks,105,1","afterward,111,1","ag10x,89,1","against,1,1,3,1,4,1,10,1,12,1,39,2,43,1,94,1,31,9,24,1,28,2,40,1,46,1,57,2,65,1,67,2,58,1,69,2,70,2,72,2,89,1,81,16,82,1,85,2,90,2,93,1,99,3,100,1,103,1,105,4,107,2,106,3,109,1,110,1,111,1,115,6,116,1,131,1,132,3","againstidentity,31,1","againstinternet,85,1","age,4,1,39,2,58,1,89,1,85,1,118,1,135,1,134,5","aged,39,2","aged19,15,1","agencies,3,1,2,4,5,1,6,1,12,1,47,1,31,1,24,1,26,5,45,1,58,1,70,3,72,2,77,1,79,1,81,3,85,3,90,2,100,1,105,4,114,2,116,1,130,1,132,1,134,2","agency,2,1,6,1,43,6,47,1,24,3,45,1,65,3,81,9,100,1,101,2,103,2,105,2,130,3","agent,12,2,71,1,79,1,81,15,130,1","agents,1,1,12,2,27,1,81,4,85,2,90,1,103,2,105,1","ages,3,1,86,1","aggravated,132,1","aggregate,89,1,103,1","aggregatethem,103,1","aggregating,105,1","aggregation,105,2","aggregator,103,1,105,1","aggregators,103,3,105,1","aggressive,39,1,94,1,90,1,105,1,112,1","aggressively,46,1","aggrieved,81,1","agile,40,1,99,1","aging,134,1","ago,37,1,89,1,81,1,85,3,90,1,88,1,104,1,108,2,110,2,111,2,114,1,118,1,121,1,128,2","agoofy,51,1","agrave,132,1","agree,28,1,67,1,69,1,81,1,131,1","agreed,5,1,57,1,82,1,110,1,111,1","agreement,47,1,37,1,45,1,89,1,81,1,83,1,87,1,115,2","aguilty,115,1","ahead,29,5,51,1,82,1,100,1,105,1,107,1,116,1,132,1","ahlo,2,1","ahome,85,1","aid,86,1","aiding,81,2","aim,94,1,81,1,93,3,137,13","aimdes,137,2","aimed,2,2,28,1,57,1,86,1,93,1,98,1,106,1,116,3,132,1","aiming,65,1","aims,84,1","air,71,1,114,19","airline,81,1,100,3","airport,70,4,81,1","akerman,39,1","akonix,137,2","alabama,86,1","alan,69,1,77,1,117,1","alarm,65,1","alarming,118,1,132,2","alba,81,1","albert,43,1","alert,47,6,24,7,45,6,52,1,89,2,81,1,90,1,130,1,134,2,137,1","alert”,24,1","alerted,2,1,89,1","alerts,24,1,45,20,70,1","alex,30,1,67,1,83,1,92,4,111,2,123,1","alexander,40,2,81,1,99,2","alexandria,70,4,107,1","alexey,95,1","alfred,107,1","algorithm,95,1,105,2","algorithms,103,1,105,1","algos,103,2","alias,81,3","align,105,2","aligning,82,1","alike,105,1,130,1,136,1","allan,105,3","allegation,126,1","allegations,43,1,81,1","alleged,1,10,43,2,81,4","allegedly,1,3,5,1,43,7,81,3,90,1,104,1,109,1,115,4,128,1","allegedlyordered,115,1","alleges,43,1","allen,39,1,90,1","alliance,5,1,40,1,46,1,99,1,106,1,120,1,109,1,118,4,119,1","alliances,5,4,130,1","allmay,57,1","allow,4,1,12,1,37,1,46,1,57,1,67,1,70,1,89,1,86,1,90,1,87,1,100,1,131,1,132,1","allowed,31,1,81,3,84,1,90,1,115,1,126,1","allowing,31,1,69,1,102,1,105,1","allows,4,1,70,1,81,2,108,1,125,1,132,1,134,5","allthe,87,1","allthree,40,1","alluringly,132,1","almost,5,1,39,1,94,1,27,1,80,1,81,1,85,1,90,1,92,1,101,1,103,2,120,1,111,3,112,2","alo,134,1","alone,52,1,89,1,81,1,85,1,100,1,101,1,107,2,132,1","along,13,1,26,1,51,1,57,1,89,1,81,4,103,2,128,1,130,1","alongside,103,1","alongthe,85,1","alorie,66,1","alot,57,1","alperovitch,85,7,116,1","alphanumeric,105,1","already,2,1,6,1,12,1,47,1,36,1,40,1,45,1,57,1,69,1,86,2,81,3,82,2,90,1,88,1,92,1,93,1,99,1,100,2,101,1,105,4","alsosignificant,43,1","alsotracks,43,1","altamira,81,1","altered,26,5","altering,89,1","alternative,131,1","alternatives,81,1,100,1,130,1","although,39,1,65,1,58,1,89,1,88,1,102,1,103,1,107,1,106,1,133,1","altogether,89,1,81,1","aluminum,51,1","aluminumfoil,51,1","alumni,105,1","always,51,1,67,1,89,5,86,1,85,1,88,1,103,1,105,4,109,1,130,1,135,1,136,1","amass,111,1","amazed,105,1","amazing,102,1","amazon,39,1,86,21,81,2,115,1","amere,112,1","america,12,1,27,2,28,1,46,1,52,1,72,1,74,1,81,4,82,5,90,1,93,1,2,11,100,1,106,3,120,1,111,3,113,1,114,1,118,1,119,1,134,1,137,1","american,3,2,52,1,58,1,81,1,2,2,103,3,105,1,106,1,112,1,116,1","americanexpress,103,1","americanfinancial,103,1","americans,39,4,27,6,29,6,58,1,73,2,89,1,81,1,2,1,103,1,105,1,111,2,129,7,135,1,136,8","americas,68,1","ameritrade,2,4","amherst,127,1","ami,40,1,99,1","amid,136,1","amodern,85,1","among,39,5,28,1,66,1,58,1,77,2,90,3,93,1,103,3,107,2,108,1,109,1,116,2,118,1,124,1,130,1,136,3","amongaffiliates,29,1","amount,30,1,36,1,68,1,70,1,89,2,86,1,81,3,88,1,92,1,100,1,105,1,123,1,125,1","amounts,81,1,2,1,100,1,105,1,111,2","amp,1,2,17,1,43,1,27,1,37,1,46,1,57,1,77,2,89,1,81,8,82,1,100,1,105,1,109,1,110,2","ample,6,1","amsterdam,127,1","amy,133,1","anaffiliate,1,1","analog,81,4","analysis,10,1,43,1,30,1,94,5,57,5,67,1,58,1,69,2,83,1,84,1,93,2,101,1,107,3,108,2,123,1,126,4,127,1,132,1,136,1,137,1","analyst,29,1,57,3,77,1,81,3,85,2,2,3,102,2,105,1,111,1,116,1","analystfor,103,1","analysts,67,9,81,1,2,1,103,1,107,3,111,1,132,1","analytics,26,2,136,1","analyze,28,1,81,4,100,1,126,1","analyzed,26,1,120,1","analyzes,81,1","analyzing,83,1,126,1","anastasia,107,1","anatoly,103,1","anattack,116,1","anattention,116,1","ancheta,1,5","and1,29,1","andadapt,85,1","andalways,116,1","andapplications,57,1","andashley,115,1","andbank,103,1","andbecause,112,1","andbusiness,57,1","andcaliber,85,1","andcash,103,1","andcomplexity,57,1","anddiscuss,87,1","andeducating,57,1","anderson,36,1","andfind,116,1","andhad,116,1","andhome,87,1","andinternet,68,1","andloudcash,1,1","andmicrosoft,91,1","andother,43,1,103,1","andothers,103,1","andpotentially,103,1","andprivacy,103,1","andremains,115,1","andrew,52,1,57,1,78,1,81,2,82,1,85,2,103,1,107,1,115,1,130,1","andsilently,85,1","andsoftware,17,1","andturned,91,1","andunfair,43,1","andweaknees,115,1","andy,74,1","anecdotal,2,1","aneed,85,1","anelectronic,103,1","angeles,1,1,26,1,27,1,81,3,115,2","angle,94,1","anglo,105,1","angry,83,1,100,1","aninfected,51,1","aninitial,114,1","ann,70,1","anne,98,1","annenberg,39,1","annettebening,51,1","announce,69,1","announced,1,1,6,1,43,1,28,3,57,1,69,1,89,1,90,2,103,2,136,1","announcements,28,1","announces,81,4","announcing,86,1","annoying,13,1,37,1","annual,69,2,70,3,77,1,81,1,102,1,125,1,129,1","annualcreditreport,70,1","annually,39,1,103,1,105,1","anomalies,105,5","anonline,40,1","anonymity,26,9,86,1,89,1,81,2,85,1,103,1,132,1,134,1","anonymizer,109,2","anonymizers,81,2,130,1","anonymous,89,1","another,1,1,4,1,6,1,39,1,30,1,94,1,24,1,57,2,67,1,70,1,79,2,86,1,89,1,80,1,81,7,82,1,85,3,90,1,88,1,2,2,98,10,99,1,100,1,103,5,105,2,107,1,109,1,111,4,113,1,115,1,121,1,123,1,126,1,130,2,134,1","anotheroption,40,1","answer,6,1,40,1,51,1,77,1,2,1,105,1","answer’s,99,1","answering,72,1","answers,51,1,87,1","antenna,57,1,71,1","antennae,81,1","anthony,81,1,114,1","anti,6,5,43,2,47,3,30,2,94,1,40,2,45,7,46,3,52,2,67,6,58,1,71,1,89,2,81,4,83,6,90,2,88,3,95,11,2,5,99,2,101,22,109,3,111,3,118,1,123,2,130,1,131,3,132,6","anticipated,39,1","antics,85,1","antifraud,10,1","antiphishing,28,4","antispam,10,2,56,1,112,2,116,1","antispyware,46,2,56,1,95,1,105,2,109,1","antivirus,15,1,10,1,40,2,45,4,51,4,52,3,69,6,77,2,81,1,85,1,99,3,105,2,107,2,120,5,109,1,118,4,119,1,125,1,128,1,130,1","antivirussoftware,66,1,77,1","antonio,114,1","anxiety,105,1","anybody,70,1,98,1,107,1","anymore,52,1,57,1,105,1,114,1,135,1","anyone,4,1,12,1,31,1,52,1,70,1,86,5,89,1,92,2,105,3,112,1,116,1,135,1,134,1,136,1","anything,46,1,57,1,66,1,71,1,89,2,81,1,85,1,93,1,109,2,111,2,113,1,131,1,134,1","anytime,46,1,81,1","anywhere,81,2,2,1,109,1,132,1","aol,28,10,93,1,105,1,120,15,109,1,113,1,118,3,119,1,132,1,137,4","ap,36,1,52,1","apart,30,1,2,1,123,1","apatch,116,1","apersistent,114,1","api,43,1","apiece,81,1,103,1","app,67,2","apparent,36,1,85,1","apparently,1,1,112,1,115,1","apparentlyby,114,1","appeal,79,1","appealing,47,1,45,1","appear,12,1,39,1,52,1,65,1,79,1,86,1,81,3,90,1,95,1,94,1,98,1,100,1,120,1,112,1,124,1,132,1","appearance,10,1,91,1,93,2,95,1,104,1,107,1,111,1,137,1","appeared,30,1,84,1,95,1,94,1,105,1,116,1,123,1","appearing,39,1","appears,30,1,74,1,89,1,81,2,94,3,108,1,116,1,123,1,128,1","apple,28,1,102,3","applets,28,1","appleyard,78,1,81,17","appliance,56,1","appliances,122,1,134,1","application,10,1,30,4,67,6,69,1,77,2,89,1,81,2,82,1,92,1,94,1,123,4,136,1","applications,10,1,43,1,47,1,26,6,28,2,37,3,45,1,46,3,57,9,67,6,69,15,72,1,77,2,89,2,81,7,83,1,85,1,93,4,94,1,101,2,105,1,130,1","applied,89,2,85,1","apply,72,1,74,1,89,2,116,1,134,3","applyfixes,77,1","applying,27,1,89,1","appoint,105,1","appointed,81,1","apprehend,12,1","apprehended,89,1,81,1","approach,39,1,36,1,58,1,105,1,112,1","approached,39,1","approaches,51,1,74,1","appropriate,43,1,47,1,24,1,29,1,45,1,110,1","appropriating,109,1","approval,51,1,58,2,105,1","approvals,81,1","approve,105,1","approved,26,1,27,1,58,3,89,4,81,2,130,1,132,2","approves,58,9","approximately,3,1,10,1,39,2,89,2,81,1,90,1,115,1","apps,67,9,69,9","appscan,81,3","appshield,81,5","april,3,1,65,1,86,1,81,1,88,1,2,1,105,1,111,1,121,1,124,1,132,1","apron,134,1","aquilina,115,2","arbitrarily,52,1","arbitrary,107,1","arbor,93,2","arcane,103,1","architect,113,1","architecture,105,1","archive,3,1,39,1","archives,6,1","area,17,1,26,1,40,1,79,1,80,1,92,1,94,1,2,1,99,1,100,1,106,1,115,1,116,1,134,1","arealso,15,1","areas,72,1,81,4,85,1,94,1,100,1","areconvinced,85,1","arefar,40,1","aregoing,57,1","aregradually,85,1","arehearing,31,1","areinfected,91,1","aren,28,1,40,1,57,1,69,1,89,1,81,1,90,1,99,1,107,1,108,1,106,1,120,1,111,1,114,1,130,1,135,1","arena,94,1,100,1,134,1","arenowned,43,1","arepiggy,85,1","arewhite,116,1","arguing,58,1","argument,56,1,105,1","ari,58,1","arise,112,1","arises,103,1","arising,2,1","ariz,103,1","arizona,81,2","arlen,58,1,98,1","arlington,45,5,94,1","arm,109,1,134,1","armed,81,1,84,1,101,1,134,1","armies,130,1","army,15,1,12,1","armyever,15,1","arnold,2,3,134,1","arose,134,1","around,4,1,43,2,30,1,29,1,40,1,51,1,56,1,57,1,65,1,67,1,68,1,69,1,74,1,79,1,89,1,81,8,83,2,84,1,85,1,90,1,93,1,95,1,94,1,2,1,99,1,100,2,101,1,102,1,105,1,106,1,120,1,109,1,111,1,123,1,126,2,127,1,131,1,132,1,137,2","arraignment,81,2","arraignments,81,1","arrange,86,1,89,1","arranged,12,1,103,1,130,1","array,5,1,86,1,134,1","arrears,134,1","arrest,12,1,81,5,88,1,90,1,103,1","arrested,1,1,12,1,89,1,81,3,84,1,103,1,104,1,111,1,113,1,128,3,130,2","arrests,81,5,84,1,90,1,104,1,111,2,116,1,130,1","arrival,133,1","arrive,131,1","arrived,133,1","ars,92,1","arsenal,117,1","art,93,1","artform,103,1","arthur,10,1,67,1","article,17,1,31,1,40,1,78,4,86,1,89,2,81,4,85,1,91,1,92,1,99,9,100,1,105,4,106,1,122,2,129,1,134,5","article4372,91,1","articleid,56,1","articles,27,1,28,5,105,1,132,1","artists,5,5,26,5,37,1,103,1,119,1","ascertained,133,1","asdefendants,43,1","asecurity,115,1,116,1","asemployees,57,1","ashley,115,11","asia,39,1,27,1,52,1,102,1","asian,85,1","asite,85,1,103,1","ask,43,1,24,5,51,13,89,3,90,2,105,2,135,1,134,1","askance,28,1","asked,4,1,39,2,36,1,70,1,86,1,89,1,80,1,81,2,87,1,100,1,103,1,105,1,109,1,113,1,115,2,118,1,135,1","asking,29,1,36,1,89,1,90,2,100,1,103,2,105,1,111,1,113,1,118,1,135,1","askingfor,115,1","asks,103,1,105,2","aslaptop,57,1","aslegitimate,103,1","asmicrosoft,77,1","aspect,89,1","aspects,57,1","ass,115,2","assault,81,1,111,1","assess,40,1,99,1","assessment,103,1,105,1","assets,17,1,43,3,56,2,106,1,125,1,135,1","asshole,115,1","assign,29,1","assigned,81,2,130,1","assignments,114,1","assist,70,1,72,1,2,1,134,1,137,1","assistance,51,1,89,1,81,1,105,1,115,1,132,1","assistant,6,1,74,1,81,1,103,1,106,1,111,1,115,1","assisted,43,1","assisting,31,1","associate,29,1,58,1,86,1","associated,4,3,10,3,12,3,39,4,36,2,52,1,81,2,95,1,103,1,118,1","associates,81,2,2,1,101,3,115,1","associating,26,5","association,3,2,12,1,2,2,103,1,105,1,109,1,111,1,130,1,132,1","associations,4,1","assume,40,3,51,2,99,3","assumed,51,1,89,1,2,1","assuming,127,1","assumption,81,1,127,1,132,1","assurance,111,1","assure,101,2","asthrough,66,1","astonished,107,1","astray,82,1","asubject,31,1","asweeter,115,1","atan,29,1","atarget,57,1","atciphertrust,85,1","atilla,128,1","atjob,85,1","atkins,52,1","atlanta,67,1,70,1,90,1,105,1,107,1","atlantic,107,1","atlantictrustbank,107,1","atm,24,2,134,3","atmessagelabs,116,1","atop,103,1","atprotecting,114,1","atrojan,51,1","attach,2,1","attached,105,1","attachment,2,1,105,1,111,1,116,1","attachments,66,1,95,1,2,1,112,1,132,1","attack,15,1,13,2,37,1,40,1,51,4,65,1,69,11,77,3,89,2,81,2,88,11,90,2,91,1,93,9,95,1,94,1,99,3,104,2,107,2,108,1,106,9,109,13,111,5,112,10,115,4,116,2,126,1,127,1,128,2,130,1,131,3,137,1","attackagainst,40,1","attacked,77,1,81,1,111,1,115,1,117,9,128,1","attacker,13,1,37,3,57,1,67,1,81,1,93,1,108,2,113,1,137,1","attackers,10,3,37,3,65,1,66,1,67,1,77,1,81,1,90,1,93,1,107,1,108,2,125,2,130,1,131,2","attacking,37,9,69,1,81,1,109,1,115,1","attacks,3,1,15,1,13,6,6,1,10,10,31,1,28,1,29,1,37,1,40,8,57,6,65,5,67,2,68,1,69,11,74,1,77,2,89,2,81,12,82,2,85,5,88,1,90,3,93,9,94,4,2,3,99,4,105,1,107,2,108,15,106,1,120,1,109,3,111,9,115,15,116,13,117,4,118,1,124,1,125,1,128,1,130,1,132,5,137,3","attacksystems,40,1","attempt,15,1,10,2,26,1,65,1,89,3,84,1,85,1,94,6,116,1,124,1,125,1,127,1,137,1","attempted,12,1,51,1,84,2,118,1","attempting,10,2,81,1,2,1,107,1","attempts,10,1,37,1,58,1,81,1,105,2,107,1,111,1,124,2","attendee,110,2","attending,68,1,81,1","attention,57,1,67,1,69,5,89,1,100,1,107,1","attentions,40,1,99,1","attentionto,31,1","atthe,77,1,115,1","attitude,120,1","attitudes,81,1,106,1","attorney,86,1,89,1,81,16,90,1,2,1,115,4,135,1,134,4","attractive,93,1","attribute,79,1","atwhat,85,1","atwood,70,4","auction,36,1,81,5,94,1,103,1,104,1,134,1","auctioned,130,1","auctioneer,94,5,110,1","auctioning,81,1,130,1","auctions,85,1","audience,39,1,98,1,136,4","audit,30,1,40,1,99,1,123,1","auditors,67,1","audits,67,1","aug,46,1,136,3","augment,103,1","augmented,81,1,130,1","august,39,2,29,1,81,5,82,1,83,1,90,1,102,2,107,1,106,1,111,2,114,1,123,1,130,1,132,2,136,9","austin,45,1,86,1,2,2","australia,27,1","authentic,81,1,107,1,109,1,111,1","authenticate,81,1,82,1","authentication,28,10,29,1,57,1,81,2,82,9,2,1,105,2,110,1","authenticator,82,1","author,52,1,72,1,86,1,89,1,93,2,95,1,100,1,107,2,126,3","authored,58,2","authorities,15,1,79,2,89,2,81,3,82,1,90,3,95,1,2,2,103,1,108,1,113,1,128,3,134,4","authoritiesarrested,15,1","authority,36,1","authorization,4,1,2,1,132,1","authorized,105,1","authors,40,1,99,1,107,2,126,2,131,1","auto,27,1,70,1,124,2","autocomplete,92,2","automate,67,1","automated,15,1,67,1,69,1,77,3,81,3,93,21,107,1,130,1","automatic,106,1,118,1,134,1","automatically,40,1,81,1,85,1,99,1,105,1,107,1,124,2,125,1,130,1,137,1","automaticallysynchronize,57,1","automating,107,1","automobiles,27,1,105,1","autorun,124,1","availability,28,1,105,1","available,15,1,10,1,47,1,30,1,24,1,45,1,57,7,65,1,72,2,89,1,80,2,81,1,83,1,90,1,91,1,103,2,107,1,110,2,111,1,114,1,118,1,123,1,125,1,131,1","avenue,24,1","avenues,37,1,93,1,94,1","average,10,6,39,1,29,1,37,1,89,1,90,1,109,3,110,1,113,1,122,2,125,2,127,2,131,1,132,1,134,1","averaged,3,3","avert,95,1","aviv,84,1","avivah,79,1,2,1","avoid,15,1,10,1,47,6,31,1,24,2,26,1,45,2,46,1,57,1,78,1,89,3,81,2,94,1,100,1,105,1,111,1,119,1,121,1,131,1,135,1,134,1","avoid—a,100,1","avoided,31,1,57,1","avoiding,17,1,94,1,130,1","awaiting,81,2,88,1","awarded,101,1","awards,51,1","aware,47,1,45,1,65,2,105,5,107,1,109,1,111,1,116,1,135,1","awareness,27,1,46,2,81,1,91,1,94,4,120,2,134,1","away,10,1,27,2,28,1,51,1,57,2,69,4,70,1,71,1,89,1,81,2,92,1,93,2,2,1,98,1,108,1,109,2,111,2,112,1,121,1,134,1","away—in,81,1","awealthy,115,1","awebsite,40,1","aweek,116,1","awesome,112,2","awireless,40,1","axa,81,1","baback,43,1","babak,43,1","babies,39,3","babineau,57,1","baby,12,1,81,1","backbone,77,2","backdoor,89,1,93,1,95,1,117,1,128,2","backed,5,1,58,1,85,1,98,1,103,1,120,1","backfilling,103,1","background,43,1,105,1","backing,6,1,103,1","backs,57,1,130,1","backup,57,1,67,1,69,8,77,2","backupexec,69,1","backups,69,1","backuptapes,31,1","backward,105,1","bad,1,1,5,2,69,1,77,2,86,1,81,4,85,2,94,1,105,3,110,1,111,2,116,1,129,9,135,1","badgered,111,1","bag,6,1","bagle,107,6","bail,81,1,115,1","baird,105,1","bait,36,1,105,1","baker,81,2","balance,40,1,70,2,89,3,90,1,2,1,99,1,103,3","balances,89,2,81,1,103,1,121,1","baldwin,52,2","ball,100,1","balls,40,1,99,1","ban,112,1","banc,81,1","band,79,1,90,3","banded,6,1","bands,79,1","bandwidth,39,1,108,1","bank,30,3,24,4,26,10,28,1,29,5,36,2,46,1,68,1,70,1,72,5,73,11,74,1,79,1,89,7,80,2,81,11,82,8,83,1,84,6,85,4,88,2,90,3,92,2,2,31,100,2,103,4,105,3,109,4,111,5,114,1,121,1,123,3,132,1,135,2,134,9","banked,29,1","banker,89,1,83,1","bankers,2,1","banking,10,2,26,1,28,4,29,7,58,1,79,1,89,1,80,1,81,2,82,16,83,1,85,1,90,5,94,1,2,16,98,1,104,1,109,1,111,4,118,1,121,9,131,1","bankruptcy,72,1","banks,13,1,28,6,29,10,70,1,73,3,89,1,81,5,82,9,83,1,85,3,90,12,94,1,2,16,100,1,103,2,107,1,111,2,130,2,132,2,134,2","banner,39,1,103,1,107,1,120,1,131,1","bar,43,1,47,1,45,1,69,1,89,2,94,1,109,1","barb,70,3","barbara,110,1","barfs,51,1","bark,81,1","barrage,47,1,45,1","barrel,115,1","barrier,93,1,100,2","barriers,86,1,134,1","barring,39,1","bars,12,5,43,2,81,1","barter,134,1","bartered,100,1","bartering,107,1","base,78,1,81,1,85,2,87,2,101,1","based,1,1,43,2,31,1,29,1,37,2,46,1,56,3,57,1,65,1,67,4,79,3,81,4,82,2,85,1,90,2,92,9,93,1,95,1,94,1,2,6,100,1,103,1,105,4,108,3,110,1,112,1,114,1,115,2,116,1,122,1,124,1,136,1","basedin,103,1","basein,114,1","baseline,78,1,81,7","basement,111,1,115,1","basic,26,1,40,1,71,2,85,2,99,1,118,2","basically,58,1,71,1,81,1,92,1,95,1,100,1,105,1,112,1","basics,40,1,70,1,99,1,109,1,111,1","basis,47,1,31,1,45,1,58,1,89,1,85,1,100,1","batch,95,5,105,1","batches,103,1","battle,31,10,57,1,103,2,105,1,110,1,116,1,118,1","battled,90,1","battleground,67,1","battles,58,1,105,4","battling,81,1","baumhardt,127,2","bausch,136,1","bawdon,135,1","bay,100,1","bayosphere,100,1","bazaar,103,1","bazaars,79,1","bbc,68,11,96,8","bbcnews,68,1","bcp,45,1","beach,71,1,134,1","beachfront,134,1","beannoying,114,1","bear,105,1","beard,12,1","bearded,12,1","bearing,94,1","beat,132,1","beatsoup,79,1","beau,81,1","beautiful,103,1","beaverlick,70,4","became,30,1,81,1,93,1,92,1,105,1,112,1,123,1","because,4,2,12,1,39,1,31,1,37,1,40,2,51,3,52,2,57,1,65,1,66,1,67,1,58,1,69,1,70,1,74,1,77,1,89,1,80,2,81,7,82,2,84,1,85,2,90,3,94,1,2,1,99,2,100,3,102,1,103,1,104,1,105,9,107,2,106,1,109,1,112,5,121,1,124,2,126,1,127,1,129,1,130,1,131,2,132,1,133,2,135,2,134,5,136,1","becauseof,29,1","becharged,15,1","become,29,1,52,1,66,1,67,1,68,1,72,1,77,2,80,1,85,2,88,1,93,1,94,1,2,2,102,1,103,2,105,2,120,1,111,1,116,1,132,1,135,2","becomemillionaires,116,1","becomemore,57,1","becomes,56,2,80,1,85,1,105,1","becoming,27,1,56,1,67,1,77,1,89,1,81,2,85,2,2,6,105,1,120,1,116,2,118,1","bed,65,1","bedelivered,103,1","bedroom,39,1","bedrooms,12,1","beeasily,40,1","beeninevitable,112,1","beensuperseded,116,1","beenvictims,27,1","began,1,1,3,1,26,1,37,1,51,2,52,1,67,1,89,1,81,2,88,1,90,1,101,1,105,4,107,1,111,1,126,1,130,1,133,1","beganjotting,51,1","begansending,112,1","begging,93,1","begin,57,5,81,1,105,1,109,1,111,1,124,1","beginning,10,1,57,1,81,1,85,1,100,1,101,1,107,2,126,1,132,1,136,1","begins,80,1,111,1","begun,26,5,105,1,111,2,113,1,131,1,135,1","behalf,52,1,105,1,137,2","behavior,39,2,43,1,46,1,89,1,81,1,90,1,101,1,120,1,116,1","behaviors,39,1","belarus,103,1","belief,51,1","believable,94,1","believe,4,2,17,1,39,5,27,1,89,3,80,1,2,1,105,2,120,1,111,1,115,1,118,1,126,1,128,1,135,1","believeable,127,1","believed,81,1,84,2,120,1,128,2","believes,5,1,43,1,31,2,46,1,81,1,83,1,93,1,94,2,105,1,128,1,134,1","belleview,70,4","bellevue,70,6","belonged,81,1","belonging,81,2,108,1","ben,43,1","beneath,105,1","beneficial,85,1","benefit,89,1,120,1,112,1,116,1","benefits,40,1,99,1,105,2,108,1","benign,111,1","bentley,81,1","bepublished,119,1","berberian,134,2","bergen,37,4","berkeley,126,1","berry,51,1","besides,12,1,109,1","bespectacled,12,5","best,12,1,28,1,29,2,51,2,46,1,56,1,69,1,71,1,89,1,81,5,2,2,100,1,103,1,105,1,130,1,132,1","bestdirector,51,1","bet,89,1,103,1","beta,86,1","bethesda,67,1,131,1","better,31,1,46,2,58,1,69,1,77,2,86,1,89,3,81,2,82,1,100,2,103,1,105,4,120,1,114,1,116,1,126,1,132,1,135,1,134,1","betteridge,84,1","betty,82,1,111,2","between,3,3,5,4,10,3,39,5,28,2,52,1,89,1,80,2,81,3,82,1,99,1,102,2,105,1,107,1,120,2,109,1,118,1,124,2,130,2,132,1,133,1,134,1","betweenphishing,85,1","betweensecurity,40,1","beware,37,1","beyonce,51,1","beyond,40,1,51,1,81,2,94,1,99,1,132,1","bg,128,1","bharosa,82,3","bhopal,106,1","bianca,71,1","bid,81,2","bidder,81,2,88,1,107,1,130,1","bidding,111,1","bids,101,1","big,12,1,43,1,46,6,56,10,70,4,71,1,79,1,86,1,81,2,83,1,84,1,105,3,110,1,111,1,115,1,116,1,131,1","bigger,39,1,46,1,77,1,111,2,134,1","biggest,26,1,57,1,66,1,81,3,84,2,2,1,105,2,120,1,111,1,112,2,116,1,130,1,132,1,134,1","bigmistake,57,1","bilked,6,1","bill,52,1,46,1,58,15,89,1,98,12,105,1,111,2,132,2,134,2","billboards,90,1","billing,26,1,28,2,89,2,81,3,2,1,103,4,105,2,106,1,130,1,134,1","billings,103,1","billion,39,9,27,1,79,1,89,2,80,1,81,3,2,3,101,1,103,2,105,2,109,1,111,1,129,1,134,1","billions,106,1","bills,58,2,74,1,89,2,105,1,121,3,132,1,134,1","bilodeau,39,1","bin,4,2,111,1","bins,72,1","biography,51,1","biometric,28,1","biometrics,29,1","bipartisan,58,1","birth,24,1,72,1,89,3,81,1,103,1,114,1,135,1,134,1","bit,57,1,92,1,2,1,103,1","bite,81,1,109,1,134,1","bits,87,2,90,1","bittorrent,93,1","biz,40,9,99,9,107,2","bizarrely,111,1","bj,46,1","black,1,1,46,1,81,3,94,1,103,14,105,1,135,1","blackbag,81,1","blacklist,113,1","blackmail,15,1,104,2,111,1","blackmailers,111,1","blackops,81,1,130,1","blahblahblahstfu,81,1","blame,67,1","blamed,68,1","blames,67,1","blank,103,1","blast,105,1,113,1","blasting,2,1,131,1","blasts,13,1","bleak,103,1","blend,134,1","blended,40,1,2,1,99,1,107,1","blew,43,1","blind,67,1,2,1","block,52,1,67,1,58,2,74,1,81,3,94,1,103,1,111,1,112,2,113,1,116,2,130,1","blocked,39,1,52,1,81,1,112,1,137,1","blocking,10,1,81,1,2,1,120,1,115,1","blockingport,112,1","blocks,47,1,40,1,45,1,71,1,99,1,127,1","blog,43,2,83,2,93,1","blogs,1,1","blogspot,43,16","blooms,57,9","blossom,84,1","blossomed,132,1","blow,12,1,101,1","blown,67,1","blue,10,1,51,1,2,1","bluetooth,57,8","blunt,103,1","blush,105,1","bmg,67,2","bmw,1,1","boa,81,2,82,1","boafactory,81,1","board,3,1,79,1,81,2,2,2,103,1","boards,81,1,85,1,103,2,107,1","boatfactory,81,1","bob,12,2,118,1","bobby,12,1,43,2","boca,105,1","body,84,1,95,2,127,3","bofa,2,9","bogus,13,2,36,1,88,1,90,1,94,1,2,2,109,5,111,4,122,1,124,1,132,1,135,1,134,1","bold,12,1","boldlyhawked,103,1","bolondi,84,2","bolster,125,1","bolstered,99,1","bolsteredtheir,40,1","bolsters,105,1","bombard,86,1,111,1","bombarding,43,1","bone,70,4","book,86,1,81,1,2,1","booming,81,1,130,1","boone,70,4","boost,78,1","boosted,102,1","boosters,52,1","boosting,102,1,106,1","bootstrap,93,1,2,1","booty,103,1,111,1","border,81,1,2,4","borders,85,1","bored,51,1","born,128,1","borne,94,1,116,2","borrowers,100,1","boss,85,2,105,1,115,1","boston,79,1,131,1","bot,10,6,88,1,104,10,108,1,125,2,128,1,137,5","both,6,1,28,5,80,1,81,3,82,1,85,1,105,2,107,1,114,1,127,1,128,2","bother,52,1,105,1","botnet,15,7,81,1,85,2,88,1,93,1,104,1","botnets,1,1,15,2,85,3,88,1,95,5,104,3,116,2,128,1,130,1","bots,81,3,85,1,107,3,108,2,111,1,115,1,127,1,130,2,137,13","bots—robotic,130,1","bottom,47,1,45,1,86,1,81,1,85,1,105,1,111,1,112,1,115,1,116,1","bought,71,1,81,1,100,1,103,2","boulder,46,1","bounce,40,1,81,1,99,1,109,1,130,1","bouncebacks,81,1","bounced,130,1,133,1","boundaries,94,1","bounds,132,1","bourgeoisie,103,1","bova,134,1","bowman,113,3","box,47,1,45,1,70,1,72,1,135,3","boxes,1,1,43,1,81,2,112,1","boy,12,1,86,1,132,1","boyd,93,5","bracht,70,4","bragging,111,1","brakes,105,1","branch,58,1,84,1,2,1,114,1","branches,27,1,101,1","brand,28,1,73,1,86,1,109,1,136,1","brandon,81,1","bransford,94,3","brasilia,68,1","braunstein,69,3","brave,105,1","brazen,135,1","brazil,52,1,68,14,83,1,107,1,109,1","brazilian,68,1","breach,31,2,40,1,51,1,58,14,98,2,99,1,105,3,103,2,114,2,133,2","breachafter,114,1","breached,81,1,105,1","breaches,3,1,31,4,27,1,40,1,46,1,58,6,74,1,85,1,2,2,98,4,99,1,114,2,121,1,129,6","breachesare,29,1","breachnotification,31,1","break,86,1,89,1,81,3,85,1,90,1,93,1,2,10,105,1,104,1,106,1,130,1,133,3,134,1","breakers,100,1","breaking,5,1,31,1,68,1,135,1","breaks,134,1","breathtaking,112,1","breda,104,1","breed,81,1,88,1,116,1,137,1","breeds,56,1","brenner,46,1","bresson,116,2","brethren,57,1","brian,57,1,81,1,90,1,103,1,107,1,112,1,131,2","bribe,134,1","bricks,2,1","brief,82,1,113,1","briefing,108,1","brieflyblocked,115,1","brightest,2,1","brightmail,10,2,52,1","brilliant,115,1","bring,28,1,94,1,100,1,103,1,134,2","bringing,28,5,122,1","brings,103,1,127,1","briody,105,2","bristling,111,1","britain,84,1,103,1,109,1","british,36,1,65,1,68,4,69,1,77,1,84,3,85,2,116,1","broache,98,1","broad,46,1,90,1,120,1,131,1","broadband,94,1,108,1,120,1,112,1,136,20","broadcast,13,2,12,1,36,1,111,2,113,1,119,1","broadcasting,113,1","broadened,98,1","broader,58,1","broadly,77,1","brody,28,1","broersma,132,1","broke,81,1,93,1,103,1","broken,70,1,81,3,103,1,111,1","brokenness,39,1","broker,70,1,2,2","brokerage,17,12","brokerages,17,2","brokers,27,1,58,1,114,1","bromley,70,4","broten,135,1","brother,36,1,135,1","brought,1,1,92,1,105,1,130,1,134,1","browse,81,1,114,1","browser,43,3,47,5,30,1,28,1,37,1,45,5,65,1,66,1,69,1,73,1,74,1,89,2,81,3,82,1,83,1,94,2,120,1,109,3,123,1,125,1,131,1,132,1","browsers,10,3,43,2,37,6,67,1,81,1,131,1,132,3","browsertoolbars,116,1","browserwindows,43,1","browsing,77,1","bruce,65,1,114,1","bruin,104,4","brunt,56,1","brusque,103,1","brutal,12,1","brute,89,1","buchwalter,136,2","bucket,104,1","buckets,103,1","bucks,51,1,81,1,134,1","buddy,13,5,93,2,137,3","budget,105,1,129,1","budgets,65,1,114,1","budnitz,2,1","buffalo,105,1","buffer,67,5,93,1","bugsin,112,1","build,28,1,105,2","building,5,1,57,1,74,1,100,1,105,1,101,1,103,1","buildings,79,1","buildreputations,103,1","builds,100,1","built,40,1,57,1,90,2,99,1,107,1,109,2,137,1","bulgaria,103,1","bulk,81,2,105,1,107,1,108,2,130,1","bull,105,2","bullet,81,1,110,1","bulletin,81,2,103,1","bulletproof,81,1","bullion,81,2,103,1","bullittsville,70,4","bullshit,115,1","bump,65,1","bundle,47,1,45,1,93,2","bundled,10,1,89,1,93,1","bundles,93,1","bundling,93,1","burden,56,1,77,1,82,1,105,1,110,1","bureau,3,2,4,4,43,3,71,1,81,2,105,1,135,1","bureaus,70,2,89,3,90,1","burglarizes,70,1","buried,31,1,106,1","burlington,70,4","burns,58,1","burrowed,52,1","busch,135,2","bush,90,1,106,2","business,1,1,10,1,17,5,43,2,47,1,30,1,31,1,24,4,40,10,45,1,51,1,56,6,57,3,69,2,71,1,74,2,78,1,89,2,81,11,85,2,2,4,98,1,99,12,100,5,105,10,102,1,103,4,107,2,109,1,111,2,112,1,115,2,116,3,119,1,123,1,130,1,135,1,134,2,136,1","businessapplications,57,1","businesscontinue,40,1","businesses,3,3,13,1,36,1,40,10,56,1,57,4,74,2,79,2,89,1,81,6,88,1,90,3,94,1,2,3,98,2,99,10,105,3,103,1,104,3,108,1,111,3,116,2,119,1,128,1,130,1,135,1,134,2","businesseshaven,40,1","businesseswhose,116,1","businesseswithout,40,1","businesslike,116,2","businessman,52,1,82,1,2,1,115,1","businessmen,81,1","businessweek,17,3","business—which,81,1","bust,12,1,43,1","busted,1,9,5,1,79,1","busts,12,9,111,2,130,5,132,1","busy,40,1,92,1,99,1,107,1,135,1","butactually,85,1","butmany,17,1","butsoftware,77,1","butsome,112,1","butthe,51,1","button,86,1,115,1","buy,51,1,57,1,70,1,79,1,86,1,81,4,85,1,90,1,100,1,103,1,107,2,111,1,121,1,127,1,135,2,134,3","buyer,103,2","buyers,39,1,81,2,83,1,103,1,111,1","buying,51,1,81,1,85,1,2,1,100,1,103,1,111,1,121,1,135,2","buys,81,1","by”,45,1","bydan,100,1,105,2","bye,103,1","byenternet,43,1","byjonathan,29,1","byline,26,4","bymaintaining,57,1","byother,91,1","bypass,12,1,2,1","bypaul,67,1,69,1,83,1,101,1,126,1","byproviding,77,1","byron,13,2,26,2,2,2,111,1,113,1","bys,93,1","bythose,103,1","cabir,124,1","cable,52,2,81,1,112,1","cablemodem,112,1","cabo,134,1","cache,39,1,78,1,81,1,109,1","caching,79,1","cad,83,1","cadre,85,1","café,81,1","cajoled,2,1","calculated,36,1,127,1,136,1","calculating,81,1","calculus,113,1","calem,37,1","caliber,85,1","calif,67,2,81,1,82,1,94,1,107,1,108,1,109,1,116,1,130,1,131,1","california,15,1,30,1,57,1,70,4,81,2,100,2,110,3,123,1,126,1,134,1","call,1,1,47,1,31,1,24,3,45,1,51,3,65,1,70,1,72,1,89,7,81,2,82,3,92,1,2,1,105,2,107,1,111,1,112,1,116,1,118,1,135,1","callaghan,132,1","callbacks,30,1,123,1","called,5,1,39,1,28,1,51,1,46,1,52,3,67,1,79,1,89,1,81,4,82,1,84,1,85,4,90,1,92,1,95,1,2,3,105,5,103,2,104,2,107,4,106,1,109,2,111,5,112,1,121,1,125,1,126,1,131,1,134,1","calledadware,51,1","calledzombie,112,1","calledzombies,116,1","calling,100,1,105,1,119,1,132,1,134,1","calls,86,1,81,1,90,2,94,1,101,1,106,1,111,1,115,1,135,1,134,1","cam,83,1","cambridge,109,1","came,51,4,73,1,81,3,92,2,105,2,103,1,107,1,106,1,113,1,115,1,117,1,135,1,134,1","camera,12,1","cameras,134,1","camouflaged,85,1","campaign,90,2,100,1,105,1,110,1","campaigns,91,1,128,1","campbell,70,5","campus,110,1,133,1","campuses,111,1","canada,77,2,107,1,109,1","canary,100,1","canbe,40,1","cancall,112,1","cancel,24,3,81,1","canceled,90,1,105,1,134,1","cancelled,81,1","cancer,103,1","cannot,65,1,70,2,80,1,85,1,90,1,100,1,105,2,130,1,137,1","cantell,115,1","canyon,133,4","capabilities,101,1,107,1,128,1","capability,65,4,107,1","capable,1,1,5,1,57,1,65,3,93,1,95,1","capablephones,57,1","caper,1,1","capital,68,11","capitalist,111,1","capitalizing,82,4","capture,72,1,78,1,83,2,126,1,134,1","captured,89,1,81,2,82,1,92,1,2,1,105,1,126,1","capturing,81,1,120,1,130,1","car,24,1,105,1,120,1,134,2","card,15,1,5,2,10,1,24,4,26,5,27,3,28,6,36,1,66,1,70,11,71,4,72,4,74,1,78,2,79,1,89,17,81,42,85,2,90,5,92,2,2,2,98,1,100,4,105,3,103,22,104,1,107,2,108,3,128,13,110,1,111,2,116,4,124,7,129,1,130,2,132,2,134,26,137,4","cardaccounts,103,1","cardcops,81,1","carderplanet,81,8,130,1","carderportal,103,1","cardholder,28,1,98,1","cardholders,98,1","carding,81,1,103,1","cards,6,1,39,1,24,3,26,9,28,10,29,1,72,4,73,1,78,1,89,5,81,15,85,1,90,2,2,2,103,3,107,1,116,1,124,1,130,2,134,4","cardsand,103,1","cards—was,81,1","cardsystems,105,2,103,4,114,1","cardtrap,124,2","care,51,1,81,1,2,1,98,1,112,1","career,114,1","careers,114,1","careful,12,1,51,1,72,1,81,1,100,1,105,1,130,1,135,2,134,1","carefully,24,1,85,1,91,1,134,1","caregiver,135,1","careless,100,1","carelessly,52,1","caribbean,103,1","carla,134,1","carlin,133,3","carlsbad,133,1","carlson,58,1,132,1","carnegie,1,1,115,1","carolina,2,1","caron,58,1,132,1","carr,81,1,105,3,130,1","carried,57,1,69,1,107,1,117,1","carriedout,115,1","carriers,136,1","carry,57,3,72,3,89,2,85,1,106,1,115,2,137,1","carrying,82,1,107,1,137,1","cars,13,1,12,1,26,1,2,1,103,1,120,1,110,1,135,1,134,1","carsen,81,1","carte,81,1","carthage,70,4","cartridge,2,1","carts,67,1","carty,111,9","cascading,106,1","case,43,1,24,1,26,1,51,1,56,5,70,3,77,1,78,1,86,1,89,4,81,8,84,4,88,1,93,1,92,1,94,1,2,2,105,4,104,1,107,2,128,1,115,2,116,1,130,2,134,2","cases,3,7,4,1,6,1,39,1,43,1,30,1,79,1,89,1,83,1,90,5,94,2,2,1,100,1,103,1,109,1,111,1,116,1,123,1,124,1,130,1,135,1,134,1","cash,1,1,15,1,13,1,71,1,74,1,80,9,81,4,2,4,103,2,107,1,111,1,134,3","cashing,1,1","cassidy,109,3","castle,98,5","casual,39,1,111,1,118,1","casualty,27,1","cat,81,2","catalystsfor,57,1","catch,6,1,12,1,52,1,70,1,80,1,81,3,85,1,90,1,111,1,130,2,134,1","catching,90,1,134,1","categories,31,1","category,120,1","catherine,90,1","cats,51,2","caucasian,3,1","caught,30,1,81,1,92,1,2,1,105,1,103,1,123,1","cauliflower,51,1","cause,31,1,24,1,70,1,77,1,81,1,93,2,94,4","caused,3,1,89,1,81,2,103,2,115,1,121,1,134,2","causes,43,1,120,1","causing,81,4,93,1,111,1,126,1","caution,89,2,107,1","cautions,4,1","cautious,121,2","caveat,81,1","cavicchia,81,10","cavuoto,73,1","ccsupplier,81,3","cd,113,1,124,1","cdata,2,4","cds,113,1","cdt,92,2","celebratedthe,103,1","celebrities,105,1","cell,24,1,52,1,57,2,81,2,82,1,124,9","cellphone,26,1","cellphones,57,1","cellular,82,1","census,136,1","center,3,6,4,1,5,1,6,2,39,2,43,1,30,3,31,1,46,1,57,1,67,3,58,2,69,4,89,1,81,6,83,2,84,2,86,1,90,3,93,2,94,2,2,1,100,1,105,2,101,2,103,1,107,1,111,2,114,1,116,1,123,3,126,2,127,7,130,1,131,2,132,2,135,3,137,3","centersand,85,1","centerville,87,1","central,57,1,105,1","centralized,46,1,57,1,100,1","centre,65,1,77,2","centric,136,1","cents,81,1,111,1","century,85,1,120,1","cenzic,67,1","ceo,39,1,26,1,51,1,81,3,82,2,85,1,98,1,105,3,111,2,115,1,135,1","ceos,46,1","ceramic,134,1","ceremony,51,1","cert,77,1","certain,4,1,30,1,58,1,72,1,79,1,81,2,95,1,2,1,100,1,103,1,110,1,123,1,131,1","certainly,89,3,81,1,85,1,88,1,92,1,100,1,104,1","certificates,89,1,81,2,130,1","certified,70,1,81,1","certifies,110,1","cerulean,81,1","cfm,3,1","cgi,4,4","chain,85,2","chair,112,1","chairman,29,1,81,1,130,1","chalk,105,1","challenge,68,2,78,1,81,4,82,1,90,1,94,1,107,1,110,2","challenged,105,1","challenger,70,15","challengernky,70,9","challenges,77,1,116,1","challenging,110,1","chameleons,52,1","chance,65,1,70,1,81,1,85,2,100,1,134,1","chances,40,1,70,1,72,1,99,1","change,10,1,39,1,47,2,31,1,24,1,28,5,40,1,45,2,74,1,89,3,81,2,82,1,85,1,90,1,105,4,99,1,102,1,103,2,111,1,115,1,116,2,125,1","changed,71,1,81,1,95,1,105,1,103,1,120,1,116,2","changehands,103,1","changes,43,1,24,2,89,1,81,2,90,1,105,4,103,1,111,1,115,1,118,1","changing,26,1,37,1,2,1,106,1,111,1","changingtheir,15,1","channel,13,1,82,1,107,4,137,1","channels,46,1,81,1,127,1","chaos,100,1,124,1","character,85,1","characteristics,82,1,126,1","characters,67,1,103,1","charge,24,2,27,1,65,1,72,2,79,1,81,1,100,1,105,1,107,1,134,3","charged,39,1,27,1,81,3,84,1,113,1,115,1,134,1","chargedwith,77,1","charges,1,1,12,1,43,2,36,1,81,6,90,1,115,1,134,2","charges—one,81,1","charging,1,1","charitable,135,1","charles,26,1,51,9,81,1,102,1,136,1","charlescooper,51,1","chart,6,2","chart—with,81,1","chase,81,1,2,1","chased,90,1","chasing,111,1","chat,3,1,12,11,39,4,89,1,81,4,87,1,88,1,90,1,93,3,92,3,107,2,113,1,116,1,123,1,130,1,137,2","chatroom,66,1","chatrooms,39,1","chats,81,1,130,1","chatsthat,103,1","cheap,105,1","cheaply,81,1","check,3,1,43,1,30,1,24,1,29,1,52,1,57,1,67,1,58,1,69,1,70,2,71,1,72,1,77,1,89,3,81,5,83,1,84,1,93,1,94,1,2,1,105,1,101,1,111,1,121,2,123,1,126,1,132,1,137,1","checkers,85,1","checking,24,1,27,1,89,1,90,1,2,1,127,1","checklist,51,1","checks,1,1,6,1,24,4,27,1,72,3,89,6,81,1,95,1,2,1,135,2,134,1","chelyabinsk,81,1","chemical,89,1,106,3","chemistry,57,1","chernobyl,100,1","chertoff,106,1","chess,116,1","chevrontexaco,81,1","cheyenne,12,2","chicago,67,2,81,1,83,1","chicken,51,2,86,1","chief,6,1,39,1,52,2,65,1,67,1,74,1,77,1,79,1,81,3,90,2,100,1,103,2,109,1,110,2,111,1,113,1,114,1,116,2,124,1,130,1,131,1,132,2","chiefs,12,1,105,1","chihuahua,134,1","child,3,5,4,2,12,28,39,10,68,1,80,1,86,2,87,4","childbeater,12,1","children,3,2,4,2,12,17,39,11,86,5,87,3,114,1,118,2,121,3,134,1","china,52,1,83,1,90,1,94,1,102,1,109,1,111,1","chinese,69,1,102,1,107,1,117,11","chip,28,1,2,1","chips,28,1","chkp,77,2","choice,89,1,85,1,103,1","choicepoint,58,1,81,4,105,7,103,2","choices,51,1,89,1","choose,82,1,86,1,100,1,111,1","chooses,51,1","choosing,57,1,90,1","chosen,81,1","chris,36,1,51,1,93,1,111,1","christian,39,2,79,1,106,2,109,1","christianity,39,2","christians,39,2","christie,81,15","christmas,94,2,111,2,135,1,137,1","christmastheme,137,1","christopher,5,1,81,1,130,1","chrysler,128,1","chubb,27,10","chunk,105,1","churn,112,1","cincinnati,70,4","cio,81,1,100,1,105,1","cios,100,1","ciphertrust,85,3,116,2,122,2","circa,112,1","circles,2,2","circulated,77,1","circulating,85,1,93,1","circumvent,132,1","cisco,40,1,69,2,77,2,99,1","citadon,82,3","cite,28,2","cited,57,1,69,1,73,1,2,1","cites,130,2","citibank,79,1,81,1,90,2,110,1,111,2,132,1","cities,71,1,86,1","citing,17,1,106,1,120,1","citizen,81,1","citizens,4,2,73,1,81,2,108,1","city,57,1,70,1,74,1,85,1,86,2,105,1,107,1","citynet,52,1","civil,47,1,24,1,45,1","civilianlaw,114,1","civilians,106,1","claim,12,1,47,1,28,5,45,1,106,1","claimed,65,1,81,1,115,1,135,1","claiming,106,1","claims,81,2,2,1,115,1,126,2","claimsthat,57,1","clamor,105,1","clampdown,43,1","clara,67,1,81,1,82,1","clarke,106,4","claryville,70,4","class,81,1,85,1,133,2","classes,133,1","classic,56,1,120,1","classified,10,1,37,1,89,1","classifieds,13,1,12,1,26,1,37,12,2,1","claus,12,6","clean,17,1,46,1,81,2,2,1,111,3","cleaning,56,1,89,1,2,1,100,1,111,1","clear,30,1,27,2,84,1,105,2,103,1,116,1,123,1","clearcommerce,28,2","cleared,134,1","clearinghouse,24,1,81,1","clearly,73,1,103,1,107,1","clearwater,83,1","clements,81,1","clerk,70,1","clerks,134,1","clever,52,1,112,1","cleverly,52,1,82,1","clicked,43,1,90,1,93,1,135,1,137,1","clicking,47,1,45,1,86,1,105,2,109,2,124,1,125,1,131,1","clicks,81,1,130,1,137,1","client,10,1,29,1,67,13,81,8,93,1,115,1,136,1,137,1","clients,46,1,67,2,70,1,81,2,82,1,93,3,103,1,107,1,108,1,109,2,112,1,136,1","clientsand,115,1","cliff,1,1","climb,102,1","climbed,28,5","climbing,82,1,102,1,130,1","clinic,134,1","clint,51,1,92,1","clip,102,1","cloaking,67,1","clock,69,1","clones,95,14","close,12,3,47,2,45,2,57,1,69,1,70,1,89,2,85,1","closed,52,1,70,2,81,2,133,1","closely,77,1,81,1,84,1,2,1,116,1","closer,105,1","closes,81,1,85,1","closing,70,1,89,2,106,1","clothes,134,1","clothing,46,1","cloud,132,1","clout,106,1","clovis,135,4","club,46,1","clue,111,2","clueless,105,1,120,9","clues,47,1,45,1,81,2,107,1,111,1,130,1","clutching,81,1","cmp,56,1","cnet,51,9,66,1,112,1,116,1","cni,65,2","cnn,17,2,107,3,128,1,109,1,129,1","cnnmoney,129,1","co,13,1,39,2,43,1,26,2,28,1,52,1,65,1,68,1,69,1,77,1,81,2,82,2,2,1,105,1,111,2,112,1,113,1,115,1,121,1,135,1","coach,12,1","coal,100,1","coalescing,57,1","coalition,46,5","coast,81,1,107,1","cob,103,2","cobs,103,8","cocaine,39,1","code,1,1,10,10,43,4,37,1,52,1,57,1,67,2,77,1,89,1,81,1,83,3,84,1,93,3,91,1,95,2,2,3,103,1,107,6,106,1,120,1,128,1,111,6,116,2,125,4,126,1,130,2,131,1,132,1","coded,137,1","coder,128,2","coders,57,1,2,1,116,1","codes,57,1,133,1","codewhere,1,1","coding,67,2,69,1,85,1","coffee,57,1,74,1","coghlan,98,2","cognizant,2,1","coherent,81,2","coherentinc,81,1","coincide,91,1","cold,70,5,87,2","collaborate,111,1","collaboration,81,2,82,1","collar,6,1,81,1,116,1","collared,85,1","collect,13,1,69,1,81,2,85,1,105,1,116,1,126,2","collected,81,2,92,5,100,2,105,1","collectibles,27,1","collecting,81,1,105,1","collection,26,5,85,2,100,2,105,2","collections,1,1,27,1,81,2,105,1,108,1","collectively,81,1,118,1","collector,81,1","collectors,100,1","collects,105,2","college,27,1,81,5,111,1","colo,46,1","color,81,1","columbus,26,1,81,1","column,100,2","columnist,40,1,99,1","com,1,1,15,1,6,2,12,4,17,1,43,3,30,2,31,2,24,5,26,4,37,8,39,1,40,3,51,9,46,1,52,2,56,1,57,1,65,1,66,3,67,2,58,1,69,2,70,21,72,4,73,1,74,1,77,1,78,1,79,3,89,5,81,9,82,1,83,2,84,2,86,12,90,6,93,2,91,3,94,6,98,1,100,1,99,3,101,2,102,1,103,6,104,1,107,2,108,1,106,2,128,1,109,6,111,1,112,2,113,1,114,1,115,6,116,2,118,2,119,5,121,1,122,2,123,2,124,1,125,1,126,2,127,1,129,2,131,3,132,5,133,1,135,1,136,1,137,4","comb,132,1","combat,68,1,84,1,91,1","combating,12,1,39,3","combination,81,2,94,1,98,1","combinations,89,1","combine,28,1,40,1,99,1,116,1","combined,88,1,92,1,112,1","combining,56,1","comcast,111,2,112,27,134,1","comcasts,112,1","comcastsubscribers,112,1","come,6,2,39,2,40,2,51,1,52,1,57,1,89,1,81,4,82,1,85,1,90,1,93,1,99,2,103,2,111,1,116,1,127,1,130,2,131,1,135,1","comers,81,1","comes,46,1,56,1,65,1,89,1,88,1,91,1,95,1,94,1,2,2,105,4,110,1,111,1,112,1,113,1,118,1,137,2","comewith,103,1","comfort,81,1,130,1","comfortable,89,1,121,1","coming,5,1,81,2,93,1,102,1,109,2,111,1,132,1,135,1","comings,43,1","command,113,1","commanded,103,1","commandeering,93,1,104,1","commands,93,1,91,1,103,1,107,1,137,1","comment,43,1,79,1,81,2,84,1,86,1,2,1,101,1,111,1,115,1,126,1,133,2","commentary,51,1","comments,36,1,81,1,134,3","commerce,28,2,67,1,58,3,81,5,85,1,90,2,94,1,2,3,100,1,108,1,110,1,111,1,118,1,121,1,131,1,136,1","commercial,27,1,39,1,40,1,74,1,89,1,83,1,2,6,99,1,109,1,114,2","commercially,65,1","commercials,110,1","commission,6,1,17,1,43,1,47,1,24,3,29,1,45,2,52,1,70,2,71,1,72,1,89,1,81,1,86,1,90,1,91,2,2,1,105,1,103,2,118,1,135,1,134,2","commissioned,29,1,121,2","commit,4,1,15,1,70,2,81,2,90,1,2,1,111,2,130,2,134,1","committed,12,1,89,1,81,1","committee,58,5,98,1,105,1","committees,31,1,58,2","committing,89,1,81,2,130,1","commodities,85,1,113,1","commodity,100,1,103,1","common,3,2,4,1,15,1,37,1,39,1,46,3,57,1,67,1,77,1,89,5,83,1,85,1,86,1,88,1,100,2,107,1,120,1,115,1,118,1,124,1,135,1","commonly,15,1,111,1,127,1","communicate,81,2,86,1,90,1,130,1","communicating,39,1,40,1,99,1","communication,80,1,115,1,137,1","communications,3,1,57,1,70,1,89,1,81,2,84,1,93,6,2,1,100,1,112,1,130,1","communicationsthrough,91,1","community,1,1,24,2,81,2,85,2,90,1,107,1,108,1,132,1","communitydispatch,24,1","commwarrior,124,1","companies,3,3,4,1,43,5,31,3,24,3,26,1,27,6,28,11,39,1,46,3,52,1,57,1,67,2,58,1,69,3,70,4,72,2,77,2,78,1,79,1,89,1,81,10,82,1,83,3,85,1,90,16,94,3,2,5,98,2,100,4,105,4,99,1,101,3,106,3,110,4,111,1,113,1,116,4,118,2,119,1,127,1,129,1,130,3,132,1,134,6","companiesremain,57,1","company,1,3,43,2,30,2,31,2,24,4,26,1,27,2,37,1,40,8,51,2,46,2,52,2,57,1,66,2,67,1,72,2,77,2,89,1,81,11,82,2,83,5,85,7,86,1,87,1,90,5,92,2,94,7,2,3,98,1,100,1,105,16,99,4,101,1,102,5,103,5,107,3,108,4,120,1,128,1,109,2,112,5,114,1,115,2,116,7,118,1,122,6,123,2,125,1,131,3,135,1,134,5,137,2","company’s,118,1","company—bear,81,1","companycounterpane,114,1","companyentrust,29,1","companysaid,116,1","compare,79,1","compared,37,3,73,2,118,1,125,1,134,1,136,2","comparison,37,1,81,1,86,1,136,1","compel,74,1","compelling,81,1","compensate,24,1","compensation,27,1","competent,130,1","competing,46,1","competition,100,1,116,1","competitive,40,1,99,1","competitor,105,1,115,1","competitors,5,1,81,2,115,2","compile,81,1","compiled,91,1,113,1,136,1","compiles,77,1","compiling,90,1","complacency,120,1","complain,29,1,112,1","complained,43,1","complaining,52,1,93,1","complaint,3,3,4,2,6,3,43,4,47,1,24,2,45,1,70,1,78,1,81,13,90,1,103,1,111,1,134,1","complaintalleged,43,1","complaints,3,2,6,1,47,1,24,1,45,1,71,1,81,2,82,1,90,1,112,1,132,2,135,2","complement,90,1,105,1","complete,85,2,105,1,118,1","completely,89,1,88,1,93,1,2,1","completeness,72,1","complex,81,1,2,1,106,1,110,1","complexities,12,1","complexity,2,1","compliance,56,1,82,4","compliant,82,1","complicated,17,1,52,1,81,1,100,1,132,1","complied,86,1","comply,40,1,99,1","component,126,1,131,1","composed,29,1,37,1","compounding,105,1","comprehensive,10,1,24,1,81,1","comprise,88,1","comprisingover,15,1","compromise,10,1,65,1,100,1,105,1,134,1","compromised,1,1,13,1,5,1,56,1,58,1,80,1,81,5,84,1,85,3,93,1,91,1,92,1,2,1,98,1,100,2,105,2,103,1,107,1,108,2,106,1,111,2,115,1,116,1,127,12,133,2","compromises,81,1,137,1","compromising,2,1","compulsive,39,1","computer,1,2,3,7,4,6,15,1,5,7,6,1,12,4,17,6,43,2,47,16,31,1,28,1,29,1,37,10,39,7,40,4,45,27,51,3,46,2,52,15,57,1,68,1,69,7,71,2,72,1,77,6,89,5,80,1,81,27,82,3,84,6,85,8,88,3,90,3,93,1,91,3,95,1,94,1,2,5,105,1,99,4,101,3,102,2,103,2,104,3,106,5,120,6,128,2,109,11,111,8,114,1,115,3,116,1,117,1,118,1,119,1,124,1,125,3,126,3,127,1,129,11,130,8,131,3,132,2,133,15,134,7,137,1","computer’s,45,1","computerindustry,51,1","computerintruders,115,1","computerized,12,1","computers,1,1,4,3,15,2,5,1,10,2,12,2,17,1,43,4,30,1,31,1,29,1,40,6,46,1,52,5,57,3,66,2,69,1,74,1,77,2,79,1,81,9,85,9,88,1,90,2,91,15,92,1,95,1,94,2,100,1,105,2,99,8,101,3,102,1,104,2,107,4,108,2,106,1,120,7,128,2,109,1,111,3,112,4,114,1,115,1,116,2,118,4,119,1,122,1,123,1,124,2,125,4,126,12,127,2,130,3,131,6,132,2,134,1","computersecurity,112,1","computersystems,43,1","computerworld,107,5,120,4","computing,57,2,89,1,100,1","comscore,39,3,111,1","con,37,1,81,1,100,1,103,1,119,1","conceal,90,1","concealing,6,1","conceivably,57,1","concentrating,94,1","concept,137,1","concern,27,1,37,1,56,1,65,1,81,1,2,1,105,1,106,1","concerned,4,1,27,1,65,3,83,1,85,1,106,1,121,1,134,1","concerns,10,1,29,1,56,2,73,1,81,2,93,1,121,1,125,1","concert,5,1","concerted,52,1,88,1,107,1,110,1","conclude,89,1","concluded,10,1,86,1","conclusion,113,1","concurrent,115,1","condition,81,1","conditions,1,1","conduct,66,1,81,1","conducted,12,1,27,1,29,2,37,1,73,1,79,1,81,2,84,1,107,2,120,1,118,2,121,1","conduct—hacking,81,1","conducting,69,1,101,1,114,1","conducts,109,1,111,1","conduit,91,1","coney,86,2","conference,5,1,6,1,68,1,80,1,2,1,98,1,127,1","confidence,81,2,87,2,90,1,100,1,121,1,132,1","confident,81,1","confidential,10,2,30,2,31,1,27,2,37,5,74,1,89,2,81,4,104,1,123,2,125,1","confidentiality,105,1","configuration,112,1,127,1","configured,4,1,52,1,90,1,118,2","confirm,81,2,134,1","confirmed,37,2,81,1,118,1,133,1","confirming,112,1","confirms,1,1","confiscated,15,1","conforming,81,1","confuse,124,1","confused,120,1","confusion,56,1,120,1,118,1","conglomerates,85,1","conglomeration,6,1","congrats,87,1","congress,31,2,29,1,58,3,70,2,74,1,81,1,105,4,132,2","congressional,31,1,98,1","congressman,98,1","conline,45,1","connect,37,1,57,2,81,1,86,1,88,1,93,1,95,2,101,1,127,2,130,1","connected,4,1,52,2,89,1,81,1,107,1,120,3,109,1,126,1,127,2,134,1,136,1","connecting,85,1,88,1,118,1,127,1,136,3","connection,39,2,40,1,51,1,74,2,81,2,82,1,84,1,85,1,99,2,111,1,118,1,127,1,134,1,136,5","connectionrequests,91,1","connections,29,1,52,2,74,1,81,1,85,1,93,1,120,1,111,1,112,2,126,1,130,1,136,1","connects,39,1,57,1,137,1","conrad,58,1","cons,125,9","consecutive,24,1,89,1","consecutively,36,1","consent,43,1,47,1,45,1,46,1,79,1,89,1,80,1","consentdialog,1,1","consequences,4,2,58,1,100,1","consequently,57,1","consider,43,1,40,1,56,1,68,1,72,2,73,1,89,1,81,3,99,1,130,2","considerable,30,1,58,1,123,1","considered,56,1,67,1,69,1,74,2,104,1,107,1,124,1,134,1","considering,29,1,105,1","consider—just,100,1","considers,2,1","consider—the,100,1","consist,85,2","consistency,51,1","consistent,102,1","consistentlydescribe,103,1","consisting,79,1","consists,105,1","consolidated,105,1","consortium,90,1,2,1","conspiracy,1,1,36,2,81,4","conspirators,115,1","conspiring,130,1","conspy,43,1","constable,105,3","constant,12,5,81,1,87,1,105,1,103,1","constantly,40,1,52,1,65,1,90,1,99,1,106,1","constantreminders,87,1","constituents,100,1","constitute,3,1","constitutes,1,1","constructed,81,1,126,1","construction,81,1","construed,89,1","consult,89,1","consultancy,52,1,81,4","consultant,40,1,81,2,2,1,99,1,111,1,112,1,127,1,131,1,135,1","consultants,45,1,70,1,2,1,111,1,114,1","consulting,81,1,111,1","consumable,111,1","consumer,6,1,43,5,47,9,24,11,28,3,45,4,52,1,58,2,70,1,72,1,73,2,89,1,81,5,82,1,90,2,91,2,94,4,2,11,100,2,105,3,101,2,102,1,103,3,111,2,135,5,134,4,137,2","consumer’s,118,1","consumerinfo,89,1","consumers,5,1,6,5,17,1,43,10,47,6,31,1,24,1,27,3,28,2,29,6,45,2,52,1,57,5,58,1,70,2,73,3,77,1,79,2,89,6,81,8,82,1,85,3,90,2,91,1,94,6,2,6,98,2,100,9,103,1,110,1,111,8,114,1,116,1,118,8,121,1,130,2,135,1,136,1","consumerswho,43,1","consuming,52,1","contact,1,1,4,1,12,2,24,4,27,1,51,1,72,5,89,1,81,3,85,1,90,1,94,1,107,1,133,1,134,2","contacted,30,1,89,1,81,1,2,1,105,1,123,1","contacts,12,1,103,1","contagions,111,3","contagious,2,1,111,1","contain,37,1,83,1,90,1","contained,24,1,36,1,39,1,77,1,114,2,126,1,133,1","containing,6,1,111,2,114,2,116,1,131,1","contains,69,1,79,1,81,1,125,1","contend,57,4,94,1","content,39,6,56,1,57,1,65,1,71,1,79,1,89,1,80,2,81,2,115,1,132,2,137,1","contents,3,1,4,1,12,1,89,1,133,1","contents—basically,81,1,130,1","context,100,1","conti,127,4","continually,105,1,109,1,111,1","continue,10,3,31,1,52,1,57,1,70,1,81,2,82,2,93,1,94,2,105,1,99,1,111,1,116,1,118,1,136,2","continued,1,1,94,1,105,2,102,3,107,1,130,1,133,1,136,1","continues,10,1,92,1,94,3,105,1,108,1,111,1,136,1","continuing,43,1,132,1,136,1,137,1","continuity,40,1,99,1","continuous,85,1","continuously,57,1","contract,82,1,100,1,101,11,103,1","contractor,69,1,81,1,101,1,135,1","contracts,82,1,2,1,105,2","contrast,136,1","contribute,90,1","contributed,43,1,46,1,114,1,118,1","contributes,56,1","contributing,2,1","contributions,12,1,100,1","contributor,82,1,106,1","control,43,1,31,1,29,2,37,1,67,1,58,1,79,1,89,1,81,2,83,1,85,3,88,1,93,1,2,1,100,6,104,1,108,1,106,2,111,3,115,1,125,2,131,1,132,1","controlled,28,1,40,1,81,4,88,2,91,1,100,1,99,1,104,9,108,1,109,1,112,1,115,1,130,2","controlledcomputers,85,1","controlling,56,1,85,2","controls,47,1,39,1,45,1,57,1,105,1","controversial,65,1,112,1,126,1","conundrum,105,1","convened,134,1","convenience,71,1,82,1,2,1,111,1,134,1","convenient,134,1","conversation,3,1,12,1,87,1,100,1,137,2","conversations,24,1,81,1,87,1,112,1","conversationswith,103,1","conversing,12,1","conversion,103,1","converting,2,1","convict,12,1","convicted,12,1,90,1,111,1,132,1","conviction,81,1,132,1","convictions,81,1,90,1","convince,89,1","convincing,29,5,105,1","cook,26,6,57,1","cookies,89,2,120,1","cool,87,2","coolwebsearch,30,4,92,3,123,4","cooper,51,9,81,1","cooperate,85,1,115,1","cooperated,12,1,130,1","cooperation,130,1","coordinate,81,1","coordinated,36,1,69,2,90,1,103,2","coordinating,111,1","cop,12,1","cope,89,1","copied,12,1","copies,24,3,72,1,124,1,134,2","cops,15,9","copy,24,3,37,1,67,1,70,1,77,1,89,2,80,1,90,1,92,1,94,1,119,1","copyright,1,1,4,3,13,1,5,1,12,1,43,1,24,1,26,1,27,1,29,1,36,3,37,2,40,1,45,1,52,1,56,1,66,1,67,1,57,1,58,1,69,1,70,1,71,1,77,1,78,1,89,2,80,1,81,1,82,1,83,1,84,1,85,1,86,1,93,1,92,1,95,1,94,1,2,1,100,1,105,1,99,1,101,1,103,1,107,1,106,2,120,1,111,1,112,1,113,1,115,1,116,1,119,1,122,1,123,1,126,1,130,1,132,1,137,1","copyright®,10,1","copyrighted,4,1","coreflood,2,2","corestreet,28,1","corner,79,1,109,1,111,1","corp,10,5,6,1,28,3,29,1,37,1,52,1,67,1,57,1,69,3,77,2,81,1,82,3,83,2,93,1,91,1,95,3,100,1,101,3,107,3,120,2,131,2,137,1","corporate,31,2,56,1,57,1,77,1,80,1,81,6,85,1,90,1,95,1,2,2,105,1,100,1,103,1,108,1,116,1","corporatenetwork,116,1","corporatenetworks,116,1","corporation,27,1,57,4,67,4,86,1,93,4,95,4,122,1","corporations,40,2,81,2,82,1,99,2,118,1","corporex,70,1","corps,114,1","correct,58,1,70,1,100,1,109,1,118,1","corrected,134,1","corrections,24,1","correctly,51,1,111,1","correspondence,24,1,89,1","correspondent,118,1","corrupt,81,1,109,1","corruption,67,1,80,1","cosa,81,1","cost,4,1,27,1,28,1,70,1,79,1,89,2,81,2,82,1,90,1,105,2,101,1,102,1,106,1,109,1,113,1,134,1,136,2","costa,133,4","costing,105,1,103,1","costly,27,1","costs,3,4,28,1,40,1,56,1,80,1,81,2,99,1,112,1","cottage,70,2","cottrell,109,4","could,10,1,12,1,47,2,30,1,28,3,29,1,39,2,45,2,51,2,52,13,56,2,66,1,57,2,67,1,69,1,71,1,70,2,72,1,74,2,77,3,79,2,89,1,81,12,85,2,87,1,86,8,88,1,90,1,93,4,92,5,2,3,98,2,105,3,100,4,102,1,103,1,104,2,106,5,120,2,128,1,109,1,111,4,112,1,114,1,115,2,116,9,118,1,123,1,126,5,130,3,131,6,135,1,133,3,134,4","couldhave,31,1","couldn,12,1,81,1,82,1,120,1,111,1,130,1","couldstand,115,1","council,6,1,29,2,39,5,81,2,82,5,2,2,106,2","counsel,5,1,110,1","counselor,70,1","counselors,105,1","count,1,1,81,3,112,1,130,2","counter,39,1,111,1","counterfeit,13,1,78,1,81,7,2,1,103,1,111,1,130,1","counterfeiting,81,1","counterintuitive,100,1","countermeasures,130,1","counterpane,65,1","counterparts,136,1","counterspy,30,1,123,1","counties,133,1","countless,2,1","countries,13,1,52,1,65,2,68,1,80,3,81,3,82,1,83,2,85,2,90,1,103,1,107,1,108,3,111,1,116,1","countriesusing,85,1","country,68,3,80,1,81,2,90,1,108,1,111,2,116,1,134,1","counts,1,1,81,2","county,37,20,39,1,45,4,70,13,74,14,105,7,132,1,135,2,133,1,134,1","couple,39,1,71,1,89,1,81,1,83,1,98,1,105,1,110,1,130,1,134,1","coupled,83,1","courier,100,1","couriers,52,1","course,43,2,36,1,58,1,81,2,82,1,88,1,92,3,105,1,107,1","court,5,1,43,3,36,1,70,1,78,2,81,14,83,1,84,1,2,1,104,3,115,2,130,2","courtesy,2,1","courtroom,81,1","cover,12,1,31,1,40,1,52,1,90,1,98,1,99,1","coverage,43,1,30,1,27,3,67,1,69,1,83,1,84,1,93,1,94,1,105,2,101,1,107,1,123,1,126,1,132,1,137,1","covered,89,1,121,1","covering,10,1,81,1","covert,132,1","covertly,1,1,89,1","coveted,28,5,134,1","covington,70,5","cox,112,1","cozy,70,2","cpu,88,1","crack,28,1,39,1,85,1,109,1","crackdown,5,1,79,2,90,1,134,1","cracked,1,1,126,1","crackers,89,1","cracking,98,1","cracks,132,1","crafted,57,1,116,2","crafting,15,1,2,1,116,1","crafty,81,1","craig,36,1","crap,92,1,115,1","crash,77,1","crashed,88,1,111,1","create,10,1,30,1,26,5,28,1,52,1,56,2,57,1,72,1,80,1,81,2,83,1,85,1,93,1,100,1,128,1,111,1,113,1,116,2,123,1,124,1,125,1,126,2","created,43,1,28,1,39,1,56,1,67,1,79,1,81,2,84,1,85,1,91,1,2,1,105,1,100,1,107,1,106,1,109,1,117,1,125,1","creates,81,3,95,1","creating,24,1,40,1,57,2,89,1,81,3,86,1,99,1,106,1,111,1,116,1,130,1,132,1","creatingnew,116,1","creation,82,1,126,1","creativity,2,1","creators,81,1,94,1","credential,82,1","credentials,81,1,82,1","credibility,100,2","credit,15,1,5,2,10,1,6,1,24,13,26,15,27,8,28,3,36,1,39,1,66,1,58,3,71,6,70,45,72,8,73,1,74,1,78,3,79,1,89,41,81,48,85,3,90,8,92,2,94,1,2,6,98,2,105,7,100,2,103,22,104,1,107,4,108,3,128,13,110,1,111,1,114,1,116,4,129,1,130,3,132,2,134,32","creditor,105,1","creditors,24,1,70,1,134,2","creditreporting,89,1","creighton,85,9","crescent,70,8","crestview,70,8","crew,81,6,88,1","crime,3,2,4,4,15,1,5,13,6,2,12,14,24,1,26,5,27,1,28,5,68,2,89,2,81,4,82,1,83,1,84,4,85,13,88,1,90,3,92,1,2,12,103,1,104,1,107,10,111,2,113,1,129,1,130,2,132,16,134,4","crimecaptains,85,1","crimes,4,1,12,1,39,1,70,2,72,1,81,6,84,2,90,2,111,2,130,1,133,3,134,1","criminal,4,3,13,1,12,1,47,1,24,1,39,3,45,1,52,1,65,1,69,1,78,1,79,5,81,13,85,7,90,1,92,1,2,2,98,1,105,3,103,2,107,2,108,1,109,1,130,2,132,3","criminalactivity,103,1","criminalinformation,85,1","criminals,13,1,5,1,6,1,12,1,26,1,28,5,29,2,40,1,65,2,68,1,72,1,79,16,89,1,81,6,85,12,90,1,91,1,92,1,94,5,2,1,99,1,103,3,104,1,107,3,108,2,128,1,109,3,116,2,132,2,134,5","cripple,81,1","crippling,13,1,115,1","crisis,24,1,51,1","crisply,81,1","critical,56,1,65,3,67,1,69,6,77,1,78,9,89,2,106,4,118,1,126,1","criticism,90,1","criticized,110,1,111,1","critics,105,1","crn,56,6","cronin,105,6","crook,2,1","crooks,13,5,81,1,90,1,2,14,108,9,109,1,111,1,119,1","crop,69,1","crops,47,1,45,1","cross,67,1,71,1,89,4,92,1,94,1,124,1","crosscut,89,2","crossed,105,1","crosses,85,1","crosshairs,77,1","crossing,89,1","crossroads,2,1","crow,102,1","crown,36,1","crucial,105,1,100,1","cruelty,39,2","csco,77,2","csi,2,1","csmonitor,106,2","cso,132,1","csos,132,1","cto,67,1,69,1,81,1,105,4","cullen,110,2","cullinane,132,1","culminating,2,1","culpability,52,1","culprit,52,5,114,1","culprits,85,2","cumbersome,29,1","cummings,65,9","cummins,26,13","cup,95,1","cupertino,131,1","curbing,28,1","cure,28,10,90,1","curiosity,5,1,109,1","curious,135,1","currency,81,2,103,2","current,24,1,39,1,67,1,81,1,90,1,105,1,100,1,104,1,111,2,130,1,131,1,134,1","currently,43,1,39,1,40,1,65,3,92,1,105,1,99,1,101,1,120,1,128,1,115,1,136,1","curtail,2,1","curtailed,111,1","curve,132,1","custody,84,1,104,1","custom,10,1,85,1,136,1","customer,40,1,51,4,52,3,67,1,72,1,81,4,82,6,90,1,94,1,2,3,105,9,99,1,100,9,110,1,113,1,130,1,135,1","customer’s,56,1","customers,17,1,27,4,28,8,29,5,36,1,40,1,51,1,52,1,57,1,73,9,77,3,89,1,81,13,82,4,85,1,86,1,90,10,94,7,2,4,105,32,99,1,100,3,107,1,108,1,110,2,111,3,112,1,116,1,130,1,134,1","customers’,56,1","customize,47,1,45,1","customized,47,1,45,1,83,1","customs,12,1,39,1,84,1","cut,52,1,71,1,89,4,2,1,124,1,129,1","cuts,89,1,102,4","cutting,51,1","cvg,70,4","cws,92,1","cyber,4,11,5,13,10,5,6,2,17,1,39,4,46,1,79,12,81,1,85,1,90,3,91,1,2,9,106,24,120,1,109,1,111,1,114,1,118,4,119,1,129,1,132,16,134,1","cyberattacks,81,1,2,1,125,1","cybercrime,3,13,66,1,80,16,81,22,2,8,103,3,110,1,130,3","cybercrimes,130,1","cybercriminal,2,1","cybercriminals,3,1,81,1,103,2,104,1,111,1,130,1","cybercrook,2,2","cybercrooks,111,5","cyberhits,115,1","cyberincident,77,1","cyberintrusions,111,1","cyberinvestigations,103,1","cyberloss,81,1","cyberporn,39,2","cyberscam,17,1","cybersecurity,77,2,81,2,120,2,111,3,115,1,117,1,129,1","cybersex,39,1","cybersleuth,113,1","cybersource,28,1,109,1","cyberspace,81,2,86,2,107,9,106,1","cyberstalked,3,1","cyberstalkers,3,1","cyberstalking,3,1","cyberstorm,106,1","cybersweep,81,1","cyberterrorism,65,2","cyberthieves,2,1,103,1","cyberthreat,65,8","cybertipline,3,2","cybervandals,125,1","cycle,92,1","cycles,89,1","cyprus,81,2","cyveillance,94,1","czar,106,1","d01,114,1","d3ck,81,1","daily,1,1,30,1,31,1,40,1,99,1,103,1,112,1,123,1","daimler,128,1","dain,81,1","dallas,45,5","damage,46,1,65,1,78,1,89,1,81,1,88,2,93,2,105,1,99,1,134,1","damaged,100,1","damageto,40,1","damaging,40,1,46,1,77,1,99,1,134,2","damaginga,115,1","damn,51,1","damned,51,1","dan,27,1,81,2,90,1,2,1,100,1,107,1,111,1,116,1","dance,86,1","danger,51,2,83,1,87,2,106,1","dangerous,77,1,89,1,81,1,88,1,111,1,114,1,132,1","dangers,4,2,6,1,12,1,39,9,89,1,87,1,86,1,94,1,106,1","daniel,36,1","danieli,28,1","danlarkin,103,1","dark,132,1","darkness,81,1","darkprofits,81,6,130,1","data,13,2,10,2,12,1,17,1,30,8,31,1,26,11,27,1,29,1,40,3,46,2,56,4,66,3,57,7,58,27,67,1,69,1,74,1,77,1,78,9,80,1,81,12,82,2,85,1,90,3,93,1,92,2,2,10,98,14,105,35,99,3,100,29,103,11,104,4,107,1,108,2,106,1,120,2,109,3,110,2,111,4,114,10,116,6,121,1,122,2,123,4,126,2,127,3,129,1,130,2,131,1,132,1,136,3","database,47,1,24,1,39,1,45,1,46,1,67,1,77,1,79,1,89,1,81,3,83,2,90,3,94,1,2,2,105,7,114,1,115,1,130,1,134,1","databases,40,1,67,2,81,1,2,1,105,6,99,1,100,1,103,1","date,10,1,24,1,46,1,52,1,57,1,71,1,72,3,89,4,81,4,91,1,2,1,103,1,104,1,120,1,128,1,109,2,111,1,118,3,127,1,135,1,134,1","dates,72,2,81,1,114,1","dating,13,1,12,1,26,1,2,1","daunted,110,1","daunting,39,1,40,1,92,1,99,1,111,1","dave,106,1,111,1,132,1","david,36,1,52,2,72,2,78,1,81,4,130,1","—david,130,1","davidappleyard,103,1","davis,43,3,30,1,29,1,57,1,58,1,67,1,69,1,78,1,81,1,82,1,83,1,84,1,93,5,95,1,94,1,105,1,100,1,101,1,123,2,126,1,130,1,132,1,137,1","daviswireless,57,1","dawn,124,1","day,10,4,6,1,12,2,28,1,39,2,51,3,46,1,72,1,89,1,81,7,85,1,88,1,90,1,92,1,94,3,2,3,105,1,101,1,103,4,128,1,111,3,112,5,115,1,122,2,125,2,127,1,132,2,135,2","days,5,1,10,4,30,1,24,1,52,1,74,1,89,2,81,2,85,2,90,1,2,2,98,1,105,1,103,1,107,1,109,2,116,2,123,1,133,1,134,1","dayton,70,4","dc,24,1,27,1","ddos,15,2,88,2,111,4,115,2","ddosed,88,1","deactivate,95,1","deactivates,95,2","dead,127,1","deadline,82,1","deadly,89,1","deal,26,1,56,1,72,1,81,1,82,2,86,1,105,2,101,4,103,2,115,3,132,1","dealer,27,1","dealers,134,3","dealerships,134,1","dealing,58,4,2,1,100,1,107,2","deals,28,1,90,1,100,1","dealt,134,1","dean,37,1,81,1,131,1","death,88,1","debate,58,1,93,1,2,1","debated,58,1","debby,116,1","debit,5,1,26,1,78,1,81,3,103,1","deborah,78,1,81,3,130,1","debt,27,1,89,1,2,1","debuggers,95,1","dec,79,1,118,1,129,4,131,1,135,1,133,2","decades,51,1","deceit,90,1","decelerate,81,1","december,12,1,39,2,81,2,84,1,85,1,94,1,100,1,114,1,117,1,119,1,122,1,129,1,130,2,132,1,133,1,137,1","decentralization,100,1","decentralized,100,2","deception,89,1,84,1,116,1","deceptive,43,2,47,1,24,1,45,1,89,1","decide,88,1","decided,70,1,81,2","decides,93,1","decision,43,2,70,1,89,3","decisions,89,1,81,1,100,1,136,1","deck,81,2","deckerdismissin,81,2","declan,74,1,112,1","declarations,82,1","declared,132,1","decline,105,1,130,1","declined,43,1,81,2,84,1,2,1,126,1,133,2","decoded,107,1","decoursey,70,4","decrease,46,1,100,1","decreased,10,1,136,1","dedicate,94,1","dedicated,101,1","deductible,27,1","deemed,31,1,37,1,116,1","deep,106,1","deeper,103,1","deere,81,1","defaced,116,1","default,29,1,118,1","defeat,43,1","defend,109,1,131,1","defendant,81,1","defendants,43,1,81,2,115,2,130,1","defendants—rogerio,130,1","defended,77,1","defender,81,1","defending,65,1,105,1,108,1","defense,28,1,70,1,71,2,81,4,87,1,2,2,101,5,103,1,106,1,114,1,130,4","defenses,81,1,2,1,105,2,109,1,116,1,130,1","defensive,89,1","define,46,1","defined,70,1","defining,46,1","definitely,40,1,67,1,81,1,99,1","definition,46,1","definitions,6,1,46,1,89,1,127,1","defranco,26,1","defraud,36,2,81,3","defrauding,81,1","deftly,56,1","degree,58,1,85,1","delaware,98,2","delay,106,1","delays,24,2,80,1","delete,47,3,45,3","deleted,89,1","deletes,30,1,123,1","deliberate,93,1","deliberately,4,1,30,1,123,1","delicate,111,1","delighted,105,1","delinquency,12,1","deliver,43,4,37,1,77,2,81,1,93,1,103,1,132,1,137,1","delivered,43,2,72,1,103,1","delivering,2,1,110,1","delivers,136,1","delivery,1,2,30,1,81,1,82,1,123,1,130,1","dell,102,11,111,2","deloitte,2,1","deluge,112,1","delugethat,115,1","demand,39,1,89,1,111,1,132,1,136,1","demanding,26,1,82,4,94,1,111,1","democracy,46,1,58,1","democrats,58,1","demographic,136,1","demonstrate,114,1","demonstrates,27,1","demonstration,88,1","denial,1,1,3,3,13,6,15,1,10,1,40,1,81,3,85,1,88,1,99,1,104,2,107,3,108,1,111,2,115,2,116,2","dennis,132,2","denotes,94,1","densely,106,1","denton,105,6","denver,112,1","departing,112,1","department,3,1,4,2,5,2,12,2,39,1,69,1,74,1,77,1,81,6,90,2,105,1,101,3,103,1,106,1,120,1,111,1,112,1,114,1,115,1,129,2,130,1,135,1,133,2,134,2","departmentand,103,2","departmentbefore,112,1","departments,57,1,90,2,105,1,134,1","departure,101,1,115,1","depend,81,1,100,1","dependent,121,2","depending,6,1,135,1","depends,116,1","depiction,81,1","deploy,13,1,101,2","deployed,89,1,81,1,85,1,122,1","deploying,69,1,2,1,113,1","deployment,101,3","deposit,29,1,82,1,85,1,2,1","depositing,135,1","depot,81,1","depth,70,1,71,1,81,1,130,1","deputy,5,1,81,1,111,1,130,1,134,1","derek,36,1","derivation,89,1","describe,101,1","described,43,1,37,1,81,3,115,1","describes,81,1,120,2,130,1","describingweb,103,1","description,43,1","descriptions,81,1","design,40,1,99,1","designated,105,1","designed,28,2,77,2,81,2,82,1,90,2,105,5,104,1,109,1,111,1,113,1,114,1,116,1,124,1","desk,112,1","desktop,57,2,67,1,69,1,77,7,105,1,101,1,111,1,116,1,124,1","desktopcomputers,57,1","desktops,10,10,46,1,77,1,102,2","despite,46,1,57,1,82,1,94,5,102,1,103,1,106,1,119,1,126,1,130,5","destination,85,1","destroy,81,1","destroying,104,1","destructing,15,1","destructive,43,1,99,1","det,39,1","detail,81,1,103,1,111,1","detailed,40,1,81,1,93,1,105,2,99,1,103,1,126,2","detailedrecords,81,1","details,5,1,10,1,28,5,36,2,77,1,80,1,81,2,85,1,86,1,92,1,94,1,103,1,111,1,132,1,133,3","detailsthe,77,1","detect,47,1,24,1,45,1,46,1,83,1,95,4,106,1,127,1","detected,3,2,15,3,66,1,74,1,95,1,114,1,116,1","detection,15,1,10,1,46,1,81,4,83,1,85,1,93,1,105,1,101,4,111,1,130,1","detective,39,1,2,1,133,1","detects,30,1,47,1,45,1,123,1","determine,6,1,40,1,46,1,70,3,90,1,105,1,99,1,100,1,109,1,111,1","determined,36,1,89,1,2,1,106,1,114,1","determines,105,1,103,1","determinethe,103,1","determining,104,1","deterrence,85,1","detractors,111,1","devastated,125,1","devastating,40,5,69,1,99,2,134,2","develop,10,1,82,2,110,1,125,1,126,1","developed,12,1,69,1,83,1,103,1,126,2","developer,127,1","developers,57,1,81,1","developing,12,1,57,1,77,1,80,3,85,1,105,1,106,1","development,4,1,12,1,43,1,77,1,81,1,105,1,131,1","deviations,105,1","device,12,1,39,1,57,4,82,2,124,1,134,3","deviceidentification,57,1","devices,39,1,57,16,69,11,81,8,94,1,103,1,122,1,124,2,134,2","devon,70,4","devoted,81,1","dfw,45,4","dhanani,81,5","dhanani—had,130,1","dhs,106,5","diabl0,128,1","diagnostic,51,2","dial,120,1","dialog,43,1","dices,13,1","dictionary,89,2","did,1,2,3,1,43,2,31,1,39,2,51,1,71,1,77,1,89,3,82,1,84,1,85,1,88,1,90,1,92,1,101,1,103,1,107,1,120,1,110,1,111,1,114,1,115,2,116,1,118,1,121,1,127,1,131,1,134,4","didn,65,1,70,1,89,2,81,1,86,3,92,1,105,1,102,1,120,2,118,1,132,1","die,106,1,127,1","diego,26,1,90,1,109,1,114,1,135,2,133,2","dieguito,133,1","difference,89,3,87,1,105,1,104,1,120,1","different,13,1,31,1,28,1,40,1,57,1,89,2,81,3,85,1,90,1,93,1,91,1,92,1,94,1,2,2,99,1,107,1,113,1,114,1,124,2,126,1,132,1,133,1","differentiated,81,1","differentiating,2,1","difficult,43,1,47,1,40,1,45,1,46,1,79,2,89,1,82,2,83,1,85,1,88,1,2,1,99,1,103,1,107,3,126,1,129,1,135,1","difficulties,100,1","difficulty,134,1","diffie,100,2","dig,81,1,130,1","digit,89,1","digital,12,1,51,1,67,1,89,1,81,3,85,1,90,1,2,5,111,2,115,1,130,1,136,1","digitally,100,1","digits,24,1,89,1,81,1","diligent,10,1","diligently,111,1","dillan,87,1","dillan955,87,4","dilutes,89,1","dinesh,73,1","diplomas,81,1","diplomatic,65,1","dipped,102,1","dips,102,1","dir,81,1","dire,69,1,83,1","direct,28,1,36,1,46,1,81,2,105,1,107,1,109,3,111,1","directed,1,1,13,1,10,2,2,1,109,1,132,1,133,1","directedaccount,85,1","direction,81,2,130,1,134,1","directional,57,1","directions,89,1,94,1","directly,24,1,51,1,52,1,70,1,89,1,81,1,85,1,2,1,118,1","director,5,1,6,1,29,1,52,1,46,1,57,1,58,1,65,1,69,2,77,1,79,1,81,1,83,1,86,1,90,2,93,1,2,2,105,3,101,1,103,3,107,4,106,1,110,1,111,1,114,1,116,2,117,1,118,1,135,1","directorate,81,1","directory,107,2","directs,111,2","dirty,12,1,51,1,81,1,115,1","disa,101,4","disable,10,1,104,1,125,1","disables,105,1","disabling,57,1,95,1,132,1","disadvantaged,101,1","disagree,135,2","disagreed,102,1,103,1","disagreement,58,1","disagrees,86,1","disappear,52,1,70,1,81,1","disappeared,109,1","disassembling,126,1","disaster,93,1,106,1","disavowed,2,1","disbanded,81,1","discarded,135,1","discarding,72,1","discern,107,1,126,1","discerning,105,1","disciplined,5,1","disclaimer,89,3","disclaimers,82,1","disclose,81,1,100,2,130,1","disclosed,27,1,104,1","disclosure,10,1,58,5,67,1,105,1,100,1","disclosures,58,1","disconnected,90,1","discount,105,1","discounted,105,1","discounts,81,1,102,1,107,1","discourage,86,1,94,1","discover,30,9,81,2,103,2,123,9,130,1,134,2","discovered,40,1,89,1,81,1,84,1,85,2,90,1,93,1,92,2,94,1,2,1,99,1,107,2,109,1,113,1,114,1,124,1,126,1,133,1","discovery,43,1,30,1,105,1,123,1","discrepancies,28,1,2,1","discretion,74,1","discriminating,83,1","discuss,46,1,89,1,81,3,88,1,103,1,111,1","discussed,134,1","discussion,81,3,109,1,110,1,130,1","disenchanted,90,1","disgorge,43,1","disgorged,113,1","disgorgedapproximately,112,1","disgruntled,134,1","disguise,85,1","disguised,134,1","disgust,12,1","disks,105,1,126,1","disloyal,81,1","dismantled,104,1","dismiss,67,1","disney,2,1","disorders,39,1","disovered,92,1","dispatch,24,1","dispense,1,1","dispersed,90,1","display,12,1,43,1,39,1,46,2,89,1,86,1,101,1,109,1,125,1,130,1","displaying,81,1","displays,6,1,43,1,37,1,72,1,109,1","displease,52,1","disposal,15,1,31,1,90,1","disproportionate,94,1","dispute,40,1,99,1","disregard,31,1,40,1,99,1","disrupted,81,1,128,1","distance,51,1,111,2","distant,85,1","distinct,29,1,109,1","distressing,100,1","distribute,4,1,30,1,85,1,123,1,131,1","distributed,4,1,15,1,43,1,28,1,88,1,103,1,128,2,111,2,115,1","distributes,77,1","distributing,12,1,46,1","distribution,4,1,46,1,72,1,2,1","distributor,1,1","distributors,12,7","district,78,2,81,7,84,1,130,1,133,6,134,4","disturbing,109,1","disturbingly,67,1","dittrich,111,2","dive,134,1","diversinet,82,1","diverting,2,1","division,13,1,6,1,12,1,26,1,66,1,81,3,94,1,2,1,105,1,111,2,113,1,130,1,135,1","divisions,58,1","divulge,81,1","divulging,2,1,116,1","dizzying,5,1","dll,43,1","dmitri,85,1,116,1","dns,109,5","dobrow,81,1","dockers,51,1","doctor,134,1","document,3,1,4,1,12,1,24,3,46,2","documentation,93,1","documented,10,2,12,1,37,1","documents,5,1,71,1,72,1,77,1,79,1,89,3,81,19,90,1,126,1,130,2,135,3","documents—everything,81,1","documents—from,130,1","doesn,12,1,46,1,65,1,70,1,89,1,81,3,87,1,86,1,90,1,2,1,100,2,101,1,107,1,114,2,126,1,127,2,135,2,134,1","doing,43,1,29,1,39,1,58,1,69,2,71,2,89,1,81,2,85,2,88,1,93,1,92,2,94,2,2,2,105,1,107,3,108,1,120,1,111,2,119,1","doled,103,1","dollar,27,1,69,1,81,1,2,1","dollars,39,1,89,1,81,1,88,1,90,1,2,1,103,1,106,1,111,2,116,10,134,2","domain,30,1,28,1,39,1,89,2,81,4,82,1,94,6,107,3,108,1,109,3,111,1,123,1,130,2","domainkeys,132,2","domains,81,2","dominance,100,1","dominating,128,1","dominick,73,1","dominion,2,4","don’t,24,1,45,5,99,1","don’t,118,1","donation,135,1","dongles,82,1","donna,39,1,86,1","dons,85,1","door,51,1,70,1,79,1,105,1,107,1,111,1,135,1","doors,10,1,67,1,81,2,40,1,99,1,107,1,130,1","doorstep,89,1","doorsteps,81,1","dope,134,1","dormant,79,1,90,1","dos,85,1","double,46,1,101,1,111,1,115,1","doubled,39,1","doubt,137,1","doug,2,1,135,1","dow,77,5","dowjones,77,1","down,1,1,5,1,12,1,43,12,30,1,28,1,51,1,52,2,58,1,65,1,70,2,71,1,78,1,79,2,89,3,81,11,85,2,88,2,90,3,93,1,92,1,94,6,2,1,40,2,98,1,105,1,99,2,107,2,109,1,111,1,112,1,114,1,115,1,123,1,127,2,130,2,131,1,132,2,133,2","downgraded,105,1","download,4,2,47,2,30,1,39,1,45,2,46,2,70,1,79,1,81,1,83,1,93,1,94,1,40,1,99,1,101,1,123,1,125,1,127,1,131,1","downloadable,2,1","downloaded,4,1,37,1,92,1,105,1,103,1,107,2,110,1,131,1,136,1","downloading,43,1,47,1,45,1,66,1,57,1,88,2,2,1,137,1","downloadingspyware,43,1","downloads,10,1,47,2,45,2,57,1,89,1","downplay,106,1","downplaying,117,1","downplays,105,1","downright,47,1,45,1","downside,87,1","downstream,94,1","downtown,12,1,74,1","dozen,58,2,89,2,81,4,83,1,107,1,128,1,111,2,130,1,131,1","dozens,17,1,26,1,79,1,2,1,111,1","dr,39,2","draft,46,1,74,2,2,1","drama,67,4","dramatic,30,1,116,1,123,1","dramatically,6,1,26,1","drastic,85,2","draw,81,1","drawback,70,1,100,1","drawing,100,1","drawn,81,1,115,1","draws,122,1","dredging,135,1","drinkable,111,1","drive,4,2,12,1,47,5,51,7,46,1,73,1,89,1,81,2,88,1,93,1,103,1,110,1","driven,52,1,58,1,73,1,88,1,105,1,102,1,136,1","driver,12,1,89,1,81,5,98,1,105,3,103,1,130,1,134,1","driver’s,24,2","drivers,103,1,110,1","drives,124,1","driving,111,1","drop,56,1,81,3,93,2,103,2,104,1,116,1,127,1","dropped,89,1,115,1","dropping,89,1,95,1,105,1","drops,85,1,103,1","drove,74,1","drug,36,1,79,1,80,1,129,1,134,1","drugs,80,10,134,1","dry,81,1","dsl,52,1,110,1","dtaken,115,1","dual,106,1","dubbed,69,1,79,1","due,3,1,46,1,92,1,2,1","dummies,52,1","dump,81,2,103,2","dumped,2,1","dumps,103,4,107,1","dumpster,134,2","dunham,66,1,83,3","dunphy,107,2","dupe,94,1","duped,85,1","dupes,111,1","duping,132,1","duplicates,134,1","duquesne,39,5","during,15,1,10,5,30,2,29,1,37,1,39,1,81,4,82,1,90,1,92,2,94,1,102,1,115,1,117,1,123,2,125,1,132,2,135,3,134,1,136,2","duringsunday,51,1","durzy,94,5","dust,67,1","dutch,1,1,15,1,105,1,104,16","duty,110,1","dynamic,85,1","dynamically,81,1","dynamics,67,1","ead,94,1","eager,105,1","eagerness,105,1","ear,51,1","earlier,1,1,43,1,46,1,58,1,82,1,83,2,93,1,2,1,105,1,102,2,128,2,126,1,132,1","early,1,1,15,1,52,1,66,2,67,1,74,1,94,3,2,2,111,2,125,1,126,1,130,1,132,1,133,1,134,1","earn,103,1,116,1","earned,90,1","earning,1,1,37,1,103,1","earnings,89,1","earthlink,28,1,52,1,90,6,112,1","easier,17,1,28,1,52,1,80,1,81,1,82,1,2,1,40,2,105,1,99,2,111,1,112,1","easiest,134,1","easily,4,1,12,1,24,1,37,1,39,1,52,1,66,1,89,2,81,3,84,1,86,1,40,1,99,2,106,1,111,3,130,1","easilyidentifiable,91,1","easilyrecognisable,31,1","east,65,1","eastern,81,1,82,1,83,1,85,3","easy,51,1,56,1,57,1,58,1,70,2,71,2,72,2,79,1,89,4,81,3,87,1,86,4,2,2,105,2,99,1,100,1,103,1,106,1,109,1,111,1,118,1,135,1,134,2","easyanonymity,103,1","easyfor,40,1","ebay,30,1,28,1,36,4,89,1,81,3,85,1,92,1,94,24,103,1,104,1,110,8,111,1,123,1,132,1,134,3","ec,86,1","echoed,93,1","echoes,74,1,98,1","echouafni,81,1,115,10","eckelberry,30,7,83,2,92,3,123,7","ecker,92,1","eclipsing,84,1","economic,4,1,52,1","economically,65,1","economics,39,1","economy,5,1,89,1,81,1,90,1,105,2,100,1,103,1,107,2,116,1","ecosystem,105,1","ecredit,81,1","edcams,45,1","edelman,43,3","edentify,26,1","edge,51,2,70,1","edged,115,1","edges,105,1,100,2","edgewise,100,1","edgewood,70,4","edit,51,1","edition,30,1,106,1,123,1","editor,43,1,30,2,37,1,51,1,67,1,69,1,83,1,84,1,93,1,94,1,101,1,123,2,126,1,132,1,137,1","editor’s,136,1","edt,56,1","educate,4,1,12,1,17,1,89,1,6,1,94,1,105,2,110,1","educates,47,4","educating,81,2,94,1,105,1,110,1","education,4,1,10,1,81,1,94,2,105,1,108,1,110,2,117,1,127,1,134,1","educational,27,1,6,2,110,1","educationalfacilities,31,1","edward,81,1","effect,79,1,81,1,105,2,100,1,106,2,126,1,130,1","effective,28,1,90,1,99,1,119,1,134,1","effectiveagainst,40,1","effectively,30,1,105,1,111,1,123,1,137,1","effects,3,1,43,1,105,1,134,3","efficient,81,1","efficiently,93,1","effort,4,1,26,1,52,1,70,1,89,1,81,1,91,1,94,1,105,5,107,1,132,1","efforts,43,1,29,6,37,1,65,1,81,1,90,1,94,3,103,1,107,1,124,1","egg,2,1","eight,3,1,10,1,27,2,37,2,39,2,46,1,68,1,81,2,84,1,88,1,103,2,107,1,111,1,121,1","eighth,10,1","eighty,27,1","either,10,1,39,1,52,1,81,2,87,1,6,1,40,1,105,2,99,1,100,1,103,1,120,2,113,1,118,1,135,1,134,1","ekici,128,5","elaborate,103,1,111,2","elapsed,10,2","elder,135,1,134,1","elderly,135,11","electric,82,1,106,4","electronic,65,1,68,1,69,1,81,13,82,1,86,1,2,2,105,1,103,1,106,1,111,1,113,1,130,3","electronically,88,1,2,1,100,1","electronics,134,1","element,56,1,65,1,81,1","eligible,115,1","eliminate,81,1","elinor,121,1","elite,43,1,2,1","elitebar,43,6","elizabeth,81,1","ellen,106,1","elmo,86,1","elsevier,58,1,74,1,105,2","elsewhere,80,1,85,1,105,1,107,1","elsmere,70,4","elude,85,1","email,45,1,77,1,92,1,106,1","emailed,92,1","embarked,105,1","embarrassing,89,1,134,1","embarrassment,89,1","embedded,107,1,131,1,137,1","embraced,12,5","emerge,10,1,28,1,51,1,85,1","emerged,2,1,111,1","emergency,77,1,95,1,104,1","emerging,10,1,28,1,90,1,93,1,94,1,40,1,99,1,102,1,106,1,124,1,130,1","emphasized,70,1","empire,81,1","employ,65,1","employed,52,1","employee,81,2,2,1,40,2,99,3,115,1,126,1,134,1","employees,57,1,89,1,81,4,92,2,40,2,105,2,99,2,114,1,115,1,134,1","employeesstealing,31,1","employeetampering,40,1","employer,5,1,89,1","employers,70,1","employment,26,1","empower,29,1","emprespectively,115,1","empted,58,1","empting,58,1","empty,95,1,121,2","emptyapartment,103,1","emptying,17,10","enable,28,1,85,1,116,1,127,1","enabled,51,1,134,1","enables,110,1","enabling,69,5,136,1","enact,58,1","enacted,74,1,89,1,98,1","enacting,132,1","encode,103,1","encodedplastic,103,1","encoding,103,1","encompass,134,1","encounters,90,1","encourage,28,1,57,1,105,1","encouraged,52,1,131,1","encouragement,52,1","encourages,4,1,39,1","encouraging,79,1,94,1,111,1,134,1","encrypt,81,1,118,1","encrypted,74,1,81,1,107,1,130,1","encryption,89,1,81,1,95,1,100,3","encrypts,82,1","end,13,1,47,1,28,5,45,1,51,1,46,2,67,1,69,1,77,1,89,2,81,2,82,2,83,2,2,1,98,2,103,1,107,1,108,1,116,1,126,1,127,1,130,1","endeavor,111,1","endeavors,100,1","endemic,28,5","ending,46,1,89,1,111,1","endless,81,1,2,1","ends,132,1,135,1","enemies,69,1","energy,65,1,106,2","enforce,4,1,83,1","enforced,39,2","enforcement,3,1,5,7,12,2,17,1,31,1,47,1,24,1,39,1,45,1,58,1,78,1,89,1,80,1,81,11,85,7,90,5,6,1,95,1,94,1,98,2,105,2,100,2,103,4,107,1,111,2,114,1,115,1,116,1,126,1,130,5,133,2,134,2","enforcementand,103,1","enforcementofficials,103,1","enforcer,81,2","enforcers,81,1","enforcing,57,1","engage,4,1,39,1,81,1,91,1,118,1","engaged,81,2,130,2","engaging,130,1","engine,90,1,137,1","engineer,12,1,66,1,81,3,85,1,93,1,111,1,112,1,113,1","engineering,43,1,93,1,112,1,126,1,137,3","engineers,100,1,112,2","engineerslook,85,1","engines,101,1,107,1","england,12,1,36,2","english,81,4,95,1,103,3","enhanced,114,1","enhancement,90,1","enhancements,81,1","enjoying,134,1","enormous,77,1,88,1,100,1","enormous—and,100,1","enough,47,1,29,1,39,1,45,1,51,1,67,1,89,1,86,2,90,1,93,1,98,4,105,2,100,1,111,1,127,1","enoughbutter,51,1","ensuing,115,1,133,1","ensure,77,1,89,1,131,1,134,1","ensures,58,1","enter,56,1,89,1,81,3,90,1,105,1,109,1,131,1","entered,81,3,82,1,90,1,92,1,103,1,115,1","entering,81,1","enternet,43,4","enterprise,10,1,30,1,46,2,57,2,67,1,69,1,81,1,85,2,93,1,40,2,99,2,101,1,109,1,123,1","enterpriseenjoyed,115,1","enterprisenetworkingplanet,122,1","enterprises,10,1,69,3,81,1,40,1,99,1","enterprisewide,101,1","enterprising,93,1,105,1","enters,47,1,24,1,45,1,82,1,134,1","entertainment,37,8,51,1,67,1","entice,85,1","enticed,81,1","enticement,3,1","entire,4,1,39,1,89,1,93,1,2,1,100,1,104,1,107,1,133,1","entirely,57,1","entities,98,1,103,1","entitled,24,1,134,1","entity,81,1,134,1","entrap,12,1","entrapment,12,1","entrepreneur,40,3,99,3","entrepreneurs,40,1,99,1","entries,85,1,113,1","entrust,29,1","entry,79,1,83,1,2,1,105,1,134,1","envelope,137,1","environment,81,1,85,1,105,1,134,1","environments,89,2,105,1","epic,86,4,105,1","epidemic,67,1,2,1,132,2","epitome,83,1","equally,130,1","equates,89,1","equifax,24,2,70,3,89,1,134,1","equipment,1,1,81,3,40,2,99,2","equipmentto,77,1","equipped,39,1,74,1,111,1","equity,81,1","equivalent,13,1","equivalents,65,1","eradicate,98,1","eradication,101,1","erased,102,2,111,1","erasmus,88,5","erepublic,10,1","eric,43,1,81,1,92,1,100,1,131,1","erlanger,70,4","ernie,39,1","ernst,81,1","erosion,90,1","erotica,39,1","error,43,1,47,1,29,1,45,1,67,1","errors,89,1,80,1,81,1,117,1","erulemaking,4,1","erupting,112,1","escape,81,1,2,1,134,1","eschelbeck,67,3,77,1","eschew,131,1","escrow,111,1","esecurityplanet,122,1","especially,12,1,52,1","espiner,65,2","espionage,80,1,81,1,116,2","espionageusing,116,1","espouse,2,1","essebar,128,4","essential,87,1,136,1","essentially,5,1,37,1","essex,37,4","est,17,1,77,1,119,1,129,1","establish,24,1,26,1,46,1,79,1,81,3,85,1,98,1","established,4,1,5,1,77,1,81,1,85,1,6,1,102,1","establishes,81,1","establishing,27,2,57,1","estate,2,2,105,1","estimate,52,1,102,1,103,1,104,1,111,1,126,1,127,1,136,1","estimated,3,2,39,2,57,2,79,1,6,1,2,1,111,1,129,1,131,1","estimates,29,1,39,3,81,1,105,1,103,1,111,1,112,1","eternally,65,1","ethics,81,7","etrust,101,1","eula,47,2,45,2,83,1","euro,102,1","europe,27,1,28,1,39,4,81,1,82,1,83,1,85,3,102,1,126,1","european,79,1,83,1,85,1,90,1,107,1,126,1","evacuated,115,1","evade,83,1,130,1","evaded,81,1","evaluated,130,1","evaluating,81,1","evangelize,56,1","even,4,1,31,1,43,1,24,3,27,1,29,5,37,1,52,1,56,1,57,1,70,1,72,1,73,1,74,2,79,1,89,7,80,1,81,5,82,2,85,3,87,1,86,1,88,1,90,1,92,2,94,3,2,7,105,7,100,3,101,1,102,1,103,1,120,3,109,2,110,1,112,3,115,2,118,1,126,3,131,2,132,3,134,2","evening,51,1,81,2","eventhough,87,1","eventually,107,1,112,1","everbank,28,1","evers,104,1,128,1,110,1,116,1","everybody,69,1,85,1,105,1,101,1","everyday,72,1","everyone,46,1,77,1,81,1,86,1,94,1,2,5,105,2,135,1,134,1","everything,29,1,71,1,89,2,82,1,92,1,2,2,107,1,106,1,127,1","everyyear,103,1","evidence,12,1,26,1,46,1,80,2,81,2,91,1,2,1,105,1,104,1,106,1","evildoer,81,1","evolution,69,1,85,1","evolve,81,1","evolving,17,1,105,1","eweek,43,2,30,2,57,1,58,1,67,2,69,2,83,2,84,2,93,3,94,2,101,2,123,2,126,2,132,9,137,2","ex,5,1,88,1","exacerbated,89,1","exact,92,1","exactly,43,1,47,1,45,1,89,1,90,1","exactlythe,87,1","examination,29,1,82,5","examinations,2,1","examine,82,1","examined,12,1,2,1,120,2","example,47,2,28,1,37,1,45,2,69,1,79,1,89,3,80,1,81,4,82,1,83,1,86,1,94,1,40,2,99,2,100,1,101,1,103,1,120,1,115,1,116,2,118,1,127,1,130,2,132,1,134,2","examples,37,1,46,1,69,1,81,1,92,1,111,1","exceeded,81,1","excellent,40,1,99,1,100,1","except,81,1","excess,39,1,81,1","exchange,17,1,115,2,134,3","exchanged,86,1,111,1","excitement,95,1","exclusive,103,1","exclusively,90,1","exe,93,2","execs,110,1","executable,137,1","executables,81,1","execute,46,1,89,2","executed,2,1,132,1,137,1","executing,95,1","execution,93,1,137,1","executive,37,1,51,2,46,1,69,1,74,1,81,1,90,2,105,1,103,1,110,1,118,1","executives,46,1,81,1,2,2,110,2,111,1","exercise,89,1,106,1","exercisecontributed,91,1","exert,100,1","exhaustive,105,1","exist,65,1,81,1,94,1,105,1,107,3,112,1,130,1","existence,81,1,85,1,107,1","existing,31,1,24,1,28,1,73,1,98,1,134,1","exists,131,1","exited,81,1","exiting,39,1","expand,65,1,80,1,93,1,102,1,108,1","expanded,28,1","expanding,46,1,100,1","expands,94,1,128,1","expect,105,1,109,1,111,1,124,1","expectations,102,9","expected,10,1,39,1,58,1,65,1,79,1,2,1,98,1,104,1","expects,29,1,81,1,101,1,102,1","expense,31,1,98,1","expenses,27,1,89,1","expensive,28,1,89,1,114,1","experian,24,3,70,3,89,1,134,1","experience,88,1,2,1,98,1,105,1,111,1,135,1,136,1","experienced,3,1,47,1,27,2,45,1,81,1,2,1,105,1,112,1","experiences,110,1","experiencing,102,1","experiment,126,1","expert,80,2,81,1,92,1,111,1,125,1,132,1","expertise,85,1,109,2","experts,5,1,17,1,47,2,28,1,29,1,45,2,57,8,58,1,65,1,67,3,68,3,69,1,77,2,79,3,81,6,82,1,83,1,84,1,85,4,86,3,90,2,94,1,2,3,103,2,104,1,106,3,120,1,128,1,109,2,111,5,116,3,118,1,119,2,127,1,130,1,131,1,132,2,135,1,134,1","expertsagreed,57,1","expertsatellite,115,1","expire,107,1","expired,39,1,72,1,81,1","explain,120,1,135,1,134,1","explained,103,1","explains,71,1,89,1,81,1,105,1,107,1","explanation,91,1","explicit,39,1","exploded,132,1","exploding,39,1","exploit,10,2,17,1,47,1,26,1,45,1,66,1,65,1,67,1,89,1,93,1,92,2,116,2,126,1,131,2,132,2,135,1","exploitable,37,1","exploitation,4,1,10,1,37,1","exploited,3,2,39,1,52,1,67,1,69,1,128,1,131,2","exploiting,52,1,81,1,2,1,131,1","exploits,43,2,65,4,81,1,93,2,2,2","explore,94,1,126,1","explorer,47,1,30,1,37,1,45,1,66,1,69,1,88,1,92,1,109,1,116,1,123,1,131,2,132,1","explosion,68,1,83,1","exponentially,66,1","export,81,1","expose,4,2,57,1,77,1,86,9,2,1","exposed,4,1,10,2,37,2,39,2,81,3,103,1,114,2,118,1,129,2","exposing,71,9,81,1,125,1,132,1","exposure,10,1,69,1,2,1,114,1","express,69,1,89,1,93,1,2,1,105,1,103,1,107,1,116,1","expressed,73,1,90,1,103,1","expression,12,1","expressly,79,1,80,1","extend,26,1,28,1","extended,85,1,104,1","extending,2,1","extension,105,1","extensive,27,1,88,1,111,1","extent,133,1","extinction—the,105,1","extort,13,1,15,1,81,1,104,1,111,1,116,1,130,1","extorted,104,1","extorting,88,1","extortion,69,1,80,1,81,1,85,1,88,1","extortionthat,85,1","extra,43,1,28,1,89,1,81,1,2,1,40,1,99,1","extracting,82,1","extradite,111,1","extradited,81,2","extraordinary,107,1","extremeipod,84,1","extremely,81,1,40,1,99,1,131,1","extremist,95,1","eye,51,2,2,1,105,1","eyebrows,93,1","eyes,89,2,2,1","face,52,1,81,2,87,2,2,5,105,1,104,2,111,1","faced,5,1,57,1,58,1,72,1,105,1","faceless,2,1","faces,1,1,12,1,30,1,115,3,123,1","facetime,89,1,93,6","facilitating,81,2","facilities,100,1,106,1","facility,90,1,106,1","facing,67,1,77,1,81,2,106,1","fact,3,1,4,2,12,1,73,1,81,2,90,1,94,1,105,3,107,2,109,1,110,1,118,1,119,1,134,1","factor,82,2,6,1","factories,102,1","factors,105,1","fading,85,1","fail,27,1,52,2,46,1,57,1,79,1","failed,51,1,56,1,81,3,100,1,115,1,118,1,130,1","failing,56,1,105,1,100,1","fails,81,1,88,1,100,1,124,1","failure,80,1,85,1,100,1","failures,129,1","fair,70,1,89,1,86,1","fairly,81,1,87,1,105,1,130,1","fairlyeasily,77,1","fairview,70,4","faith,100,2","fake,12,1,30,1,81,8,85,3,107,1,109,1,110,1,116,1,121,1,123,1,130,1,132,1","faked,81,1,90,1","fall,31,1,46,1,81,1,6,1,2,1,111,1,113,1,135,1","fallen,88,1,134,1","falling,79,1","fallout,2,1","false,58,1,89,1,81,2,86,1,40,1,99,1,100,1,109,1,118,1,134,1","falsely,120,1,118,1","fame,37,1,116,1","families,83,1,85,1","family,3,1,12,2,27,3,39,14,70,1,81,1,85,2,87,2,86,6,112,1,115,1,135,1","familypc,39,1","famous,109,1","fan,134,1","fancy,92,1","fantasize,51,1","far,12,1,17,1,28,1,39,1,65,1,89,3,81,1,85,1,93,2,90,2,105,3,99,2,106,1,112,1,116,2,125,1","fargo,81,1,2,1","farid,128,1","farrell,117,1","fascinating,126,1","fashioned,5,1,26,11,74,1,81,1","fast,82,1,105,1,103,1,109,1,111,1,113,1,126,2,131,1,134,1","faster,105,1,102,1,136,1","fastest,72,1,88,1,134,1","fatalistic,111,1","fault,2,1,111,1","faulty,131,1","faux,82,1","favor,39,1,131,1","favored,108,1","favorite,90,2","faxes,2,1","fbi,1,1,3,2,4,16,5,1,30,1,81,7,90,4,92,3,6,6,2,1,105,1,106,1,128,5,111,2,115,2,116,2,123,1,130,2,132,2","fear,58,1,77,1,79,1,81,1,85,1,87,1,111,1,130,2,131,1","fears,73,1,93,6,130,1","feature,86,2,6,1,128,2,124,1","features,10,1,67,1,74,1,81,1,83,2","featuring,90,1","feb,81,1","february,12,1,81,5,82,1,98,1,105,2,102,1,103,1,110,1,115,1","fed,130,1","federal,1,1,3,1,4,8,12,1,43,1,47,1,24,3,29,3,39,2,45,2,52,1,46,1,58,1,70,2,71,2,72,1,89,1,81,7,82,9,86,1,90,5,91,2,6,1,2,7,98,2,105,7,100,1,103,1,106,1,111,2,114,1,115,3,118,1,130,2,132,4,135,1,134,3","federally,81,1","federalreserve,29,1","federated,100,2","feds,5,9,82,9,105,1,111,1,132,3","fee,37,1,39,2,81,1,40,1,99,1,103,1","feed,51,1,100,1","feedback,36,1,46,2,70,1,103,1,109,1","feeding,85,1","feel,52,1,72,1,89,1,85,1,87,2,94,1,111,1","feeling,46,1,105,2","feels,85,1","fees,73,2","fell,1,1","fellowes,89,1","felony,132,1,134,1","felt,27,1","female,3,1,39,1","fence,90,1","fences,105,1","fencing,103,1","fend,56,1,74,1,2,1","ferguson,28,1","fernqvist,74,2","ferrante,81,1","ferree,39,1","fetch,105,1,116,1","fewer,121,1,125,1,130,1,136,1","ffiec,82,8","fi,11,8,57,3,71,1,74,8","fictional,85,1","field,4,1,47,1,45,1,81,2","fields,103,1","fifteen,87,1","fifty,27,1,56,1,89,1","fight,29,1,89,1,81,3,85,1,90,9,94,1,101,1,111,2,116,2,134,1","fighting,24,1,52,1,90,1,6,1,94,1","figure,94,1,2,1,112,1,127,1,136,1","figured,94,1,111,2","figures,3,1,81,1,136,1","figuring,85,1","filched,111,1","file,4,1,47,2,30,2,24,4,45,2,51,1,57,1,65,1,67,2,70,1,72,1,73,1,74,1,77,1,81,3,93,4,92,1,6,1,95,2,2,1,105,1,123,2,124,2,127,1,131,1,134,1","filed,78,2,81,5,90,1,115,1,134,2","files,4,5,43,3,47,1,30,4,45,1,89,1,83,1,85,1,93,1,95,1,2,1,40,1,99,1,103,1,114,1,118,1,123,4,131,1","filesms,95,1","filing,135,1","filings,105,1","fill,81,1,134,1","filled,106,1","filling,134,1","film,39,1","filter,39,1,81,1","filtered,81,1,130,1","filtering,39,3,52,1,81,1,113,1","filters,10,1,28,1,39,1","final,46,1,116,1","finally,51,1,70,1,81,1,112,1,132,3","finance,80,1,132,1","finances,121,1","financial,3,1,10,4,17,1,31,1,28,6,29,1,56,1,65,1,68,1,70,1,73,1,78,3,79,4,89,13,80,1,81,5,82,15,83,1,84,1,90,10,94,1,2,5,40,1,98,2,105,3,99,1,100,1,103,1,107,1,108,1,120,2,128,1,109,6,111,1,114,3,116,1,118,2,121,3,125,3,131,1,132,5,135,1,134,4","financialgain,116,1","financialinstitutions,29,1","financially,105,1,116,2","financials,81,1,94,1","find,1,1,4,1,12,2,17,1,47,1,30,1,26,1,39,1,45,1,52,2,67,2,72,1,79,1,89,2,81,3,82,1,87,1,86,4,93,1,94,1,88,1,40,2,105,4,99,2,100,1,110,1,113,1,123,1,129,1,134,1,135,2","finding,12,1,39,1,46,1,70,1,86,1,93,1,94,1,2,1,100,1,120,1,111,1,126,1","findings,10,1,43,1,39,1,2,1,108,1,118,1,121,1","finds,51,1,81,1,105,3,120,9,116,1,118,1,121,9,127,1,130,1","fine,27,1,111,1,132,1","fined,27,1","fines,56,1,74,1","finger,109,1","fingered,46,1","fingerprint,110,1","fingerprints,29,1,111,1,117,1","fingers,105,1","finland,52,1,95,1,107,1,109,1","fire,113,1,115,1","fired,46,1","firefighter,12,1","firefox,131,1,132,1","firewall,5,2,47,2,45,6,52,1,67,1,69,1,74,5,79,1,89,1,81,4,2,3,88,3,40,1,99,2,103,3,120,5,111,2,118,3,119,1,127,1,130,1","firewalls,10,1,66,1,67,1,71,1,81,2,85,1,111,1,118,1,125,1","firm,26,1,39,1,46,2,79,1,81,10,93,1,90,1,94,2,2,1,40,1,99,1,102,2,109,1,111,6,113,1,114,2,124,1,131,2","firmly,81,1","firmqualys,77,1","firms,1,2,39,1,46,1,85,2,90,1,2,1,114,2","first,1,2,15,1,10,6,43,1,28,2,37,3,39,1,51,1,68,1,70,2,74,2,77,1,89,3,80,1,81,1,87,2,86,2,93,1,95,1,94,1,2,3,88,1,105,3,100,2,102,1,103,2,104,1,107,2,106,2,128,1,109,1,110,2,111,3,115,2,116,1,122,1,124,1,125,1,126,2,131,1,132,1,134,1,136,1,137,2","firstgov,4,1","firsthand,112,1","firstly,82,1","firstplace,51,1","fisher,132,3","fiskburg,70,4","fisted,67,1","fit,134,1","five,10,1,12,1,27,7,37,1,39,3,52,1,77,1,79,1,89,3,81,4,83,1,2,2,88,1,105,2,103,1,109,1,111,2,118,1,119,1,121,1,136,9","fix,27,1,51,1,52,1,128,1,110,1,124,1,131,11","fixed,39,1","fixes,111,1","fixing,81,1,105,1","fixingemail,94,1","fixtures,134,1","fl,87,1","fla,83,1,105,1","flabbergasted,111,1","flag,24,1,28,1,89,1,105,1,135,3","flagg,70,4","flamingo,121,1","flash,67,2","flashed,43,1","flat,88,1,99,1","flatmonthly,40,1","flaw,105,1,116,1,131,18","flawed,77,1","flaws,52,1,46,1,66,1,67,1,77,4,116,1","flawsdiscovered,77,1","flawswere,77,1","fledgling,132,1","fleece,111,1","fleming,101,5","flier,94,1","flight,69,1,117,1","flint,12,5","floating,71,1","flock,79,1","flood,81,1,82,1,109,1,111,1,130,1","flooded,88,1,115,1","flooding,52,5,125,1","floor,5,1,81,1","florence,70,4","flores,12,1","flourishingonline,103,1","flout,94,1","flow,85,1,105,2,112,2","flowed,52,1","flown,105,1","flows,112,1","flu,127,1","flush,46,1,113,1","flyunder,116,1","fms,95,1","focus,1,1,26,1,46,1,77,1,90,1,94,1,2,1,106,10","focused,10,9,86,1,105,1,106,1,134,1","focusedupdate,116,1","focuses,90,1,116,1","focusing,37,1,69,1,117,1","fodder,56,1","foia,4,1","foil,51,1,84,9","foiled,83,1,84,1,88,1,118,1","foiling,84,1","fold,39,1","folder,95,1,124,2","folders,52,1","foley,135,1","folks,51,1,71,1,85,1,2,5,134,1","follow,24,2,69,1,74,1,85,1,2,1,120,1,118,1,135,1,137,1","followed,10,1,82,1,107,1,109,1","following,4,1,10,1,31,1,24,1,58,1,81,1,88,1,105,1,120,1,119,1,137,2","follows,86,1,92,1,2,1","folsom,10,1","fontal,124,1","food,81,1","fooled,111,1,118,1","foolish,115,1","foonet,115,4","foonetfrom,115,1","foot,81,1","football,39,1","footprint,93,1","footprints,111,1","foraddison,29,1","forbids,83,1","force,12,2,39,1,89,1,90,1,2,1,52,1,112,1,114,18,134,2","forced,10,1,79,1,90,10,94,1,52,1,131,1","forcefacilities,114,1","forceofficers,114,1","forces,81,1,84,1,134,1","forcing,15,1,77,1","fordisplaying,77,1","forecast,102,1","forecasters,102,1","forefront,102,1","foreign,65,14,68,4,85,1,116,1","foremost,58,1","forensics,5,2,12,1,81,1,109,1","foresee,89,1","forevery,1,1","forextra,29,1","forge,81,1,90,1","forged,72,1,81,1,130,1","forgery,132,1","forget,90,1","forging,81,1","forgo,120,1","forgotten,79,6","forhim,115,1","forinstance,40,1","forinternet,85,1","forinvestigations,103,1","form,1,1,43,4,47,1,27,1,29,2,45,1,70,1,77,1,89,6,81,1,93,1,90,1,94,2,2,1,88,2,107,1,111,1,113,1,134,1","formal,82,1","format,4,1","formats,81,1","formatted,103,1","formed,46,1","former,12,1,77,1,80,1,81,13,90,2,2,1,103,3,108,1,106,2,115,1,134,1","formersoviet,85,1","formidable,90,1,115,1","forms,1,1,3,1,29,2,46,1,72,2,81,1,92,1,40,1,99,1,103,1,120,1,130,1,134,1","forrester,121,2","forsell,79,1","fort,45,5,70,16","forth,56,1","fortheir,15,1","forthese,87,1","fortunately,89,1,40,2,99,2","fortune,37,1","forty,27,1,39,1","forum,5,1,29,2,81,4,40,1,99,1,113,1","forums,78,1,81,7,88,1,103,1,130,1","forunprotected,40,1","forward,81,1,85,1,2,1","forwarded,81,1,130,1","forwarding,90,1","forwireless,57,1","foster,81,1","found,3,1,10,3,30,1,24,1,26,1,27,1,29,1,37,4,39,2,67,1,77,2,81,4,82,1,90,1,92,2,6,1,95,1,2,2,88,1,52,1,98,1,105,1,100,1,108,4,106,1,120,4,109,1,111,1,115,1,118,7,119,2,121,2,123,1,125,1,131,1,132,1,135,1","foundation,39,15,40,1,99,1","founded,81,5","founder,26,1,28,1,2,1,100,1,109,1,111,2,135,1","four,13,1,24,1,27,2,29,1,36,1,39,1,79,1,89,2,81,1,85,1,90,1,95,2,2,1,105,3,101,1,118,3,119,2,121,1,132,1","fourfigures,1,1","fourth,85,1,90,1,102,1","frame,43,1","framed,12,5","framework,81,1","framing,79,1","fran,90,1,110,1","francisco,5,1,26,1,51,1,79,1,82,1,90,1,100,1,116,1","francisville,70,4","frank,56,1,103,1","franks,81,2","fraud,3,10,15,1,5,6,31,1,47,1,24,3,26,7,27,7,28,5,29,1,36,12,45,1,68,3,70,4,71,1,72,2,79,1,89,3,81,32,82,2,83,1,85,1,90,9,6,20,2,6,105,1,104,1,108,2,128,13,109,2,111,1,114,1,116,1,121,2,129,6,130,1,132,2,134,6,135,1","fraud—and,81,1","fraudprotect,28,1","frauds,17,1,89,1","fraudster,6,1","fraudsters,7,8,29,5,36,1,80,1,81,2,6,1,105,1,130,1","fraudstersremain,29,1","fraudulent,5,1,47,1,24,3,27,1,28,1,29,1,36,1,45,1,70,1,73,1,89,2,90,1,94,3,2,1,107,1,108,1,109,1,110,1,111,1,114,1,134,1","fraudulently,27,2,81,1","fray,100,1","frazzini,81,6","freak,81,1","fred,127,1","free,13,1,4,1,43,2,47,6,30,1,24,4,27,1,28,1,39,1,45,6,67,1,70,4,72,1,89,2,81,2,87,1,2,1,98,1,105,1,111,3,114,1,115,1,123,1,134,1","freely,39,2","freeware,81,3","freeze,43,1,58,1","frenzy,132,1","frequency,3,1,10,1,111,1,127,1","frequent,70,1,94,2,109,1,111,1","frequently,10,1,67,1,89,1,81,1,111,1,127,1,130,1,135,1","fresh,1,1,2,1,103,3","fresno,135,3","fri,56,1","friday,72,1,74,1,90,1,91,1,103,1,104,1,110,1,114,1,133,9","friedberg,81,1","friedrichs,116,2","friend,70,1,89,1,86,1,135,2","friend’s,39,1","friendly,82,4,86,2,94,1,134,1","friends,87,1,86,3,105,1,134,1","frightening,89,1","fringes,79,1","froma,114,1","fromattacks,77,1","fromaverage,77,1","fromgovernment,77,1","fromindividuals,116,1","fromits,117,1","fromnumbers,85,1","fromsecurity,43,1","fromthe,1,1","fromzo0mer,103,1","front,31,1,26,4,37,5,51,2,46,1,71,1,89,1,85,1,90,1,6,1,124,1","frontbridge,111,1","frontiers,2,1","fronts,107,1","froogle,86,1","froze,43,1","frozenfor,85,1","fruit,69,1,103,1,109,1","frustrate,94,1","frustrating,2,1,52,1","frustrating—and,81,1","frywilson,116,1","fsb,81,1","ftc,47,12,24,6,43,21,45,7,70,3,71,1,72,1,89,3,82,1,86,1,91,10,6,2,2,1,52,1,119,1,134,2","ftc’s,24,1","fuel,65,1,105,1","fueled,102,1","fueling,83,1","fugitive,81,1,115,1","fulfillment,39,1","full,12,1,30,1,46,1,86,1,90,1,105,3,99,1,103,3,106,1,111,1,119,1,123,1,135,1","fullcontrol,77,1","fullunderstanding,40,1","fully,93,9,2,1,132,1","fun,95,1,88,2,108,1,111,1","function,57,1,88,1","functional,98,1","functionality,10,2,47,1,45,1,93,1","functionally,81,1","functioning,47,1,43,1,45,1","functions,57,1,40,1,99,1,107,1","fund,90,1","fundamental,81,1,40,1,99,1,100,1","fundamentally,89,1","fundcriminal,66,1","funded,81,1,115,1","funding,80,1,81,2,90,1","funds,81,1,82,2,85,1,2,2,88,1,40,1,99,1","furnish,103,1","further,10,2,43,1,57,1,72,1,80,1,84,1,52,1,105,1,103,1,113,1,133,1","furthermore,71,1,82,1,130,1","future,5,1,10,1,31,2,28,1,43,1,77,1,40,1,105,1,99,1,100,1,116,1,126,2","gadgets,71,1","gage,78,1,81,3,130,1","gail,2,1","gained,81,1,85,1,105,1,104,1,106,1","gaining,57,1,81,2,105,1","gains,79,1,102,2,125,1","gainsthe,87,1","gall,89,1","gamble,81,1","gambling,2,1,111,3","game,81,2,87,5,86,1,40,1,99,1,107,1,116,1,124,1","games,4,1,47,1,39,1,45,1","gammacash,1,4","gamut,134,1","gang,36,2,115,1","gangs,15,1,81,1,83,1,84,1,85,1,107,1,108,1","gangster,85,1","gangsters,85,1","gannett,13,1,26,1,2,1,111,1,113,1","gao,106,2","gap,26,1,102,1,120,2","gaping,105,1","gaps,26,1","garbage,135,1","gareth,36,1","garnering,67,1","gartner,79,1,81,4,2,2,101,1,102,4,111,1,116,1,121,1","gas,134,2","gastonia,2,3","gates,132,1","gateway,74,2,102,3","gateways,52,1","gather,15,1,65,1,69,1,79,9,89,2,81,3,130,1","gathered,57,1,84,1,91,1,92,1,104,1","gathering,81,1,100,1,132,1,134,1","gauge,129,1","gave,88,1,132,1","gear,77,2,81,1,115,1","geared,40,1,99,1","gee,105,1","geekfather,81,1","gender,3,1","generate,81,4,82,2,85,1,119,1,126,1,130,1","generated,12,1,80,1,81,1,90,1,108,1,126,1,127,1","generates,39,1,103,1","generating,30,1,113,1,123,1","generatingadware,1,1","generation,57,1,135,1","generationrx,39,1","generations,125,1","generator,126,1","genuine,132,1","geographic,85,1","geographical,28,1","geographically,90,1","geographies,81,1","george,5,1,81,3,2,6","georgia,2,1,52,1,126,2","geotrust,28,1,85,3","gerhard,67,1","germain,85,1","german,90,3,95,2","germany,95,1","getmore,116,1","gets,12,1,30,2,57,1,79,1,89,1,81,1,90,1,92,1,116,1,123,2,127,1,135,1","getting,12,2,24,10,39,2,43,1,51,1,46,1,69,1,70,1,71,1,89,2,80,1,85,1,90,2,6,1,94,3,2,1,52,1,105,2,106,1,116,2,118,1,127,1,130,8,134,1,135,3","gettingmore,116,1","getunsuspecting,85,1","ghana,108,1","giannetta,81,5","giant,1,1,6,4,104,1","giants,77,1","gibb,68,1","gif,2,4","gifford,90,2","gift,12,1,86,1,135,2","giftee,86,1","gifting,86,4","gifts,39,1","gigabytes,81,1","gil,28,1","gilbert,66,1","gillespie,39,1","gillmor,100,2","girl,12,2,86,1","girls,103,1","give,31,1,24,1,27,2,28,1,29,2,39,2,43,1,46,1,58,1,70,1,72,3,77,1,89,3,85,2,87,2,88,1,40,1,99,1,100,2,110,1,111,1,133,1,134,1","giveeveryone,112,1","given,31,1,46,1,81,2,85,1,86,2,52,1,105,2,100,3,114,1,132,1","gives,57,1,77,1,89,1,82,1,85,1,86,1,100,1","giving,27,1,51,1,81,2,85,1,87,1,90,1,2,1,100,1,111,1,127,1","glad,87,1","glamorized,85,1","glance,52,5","glaxosmithkline,81,1","glean,103,1","global,27,1,68,1,77,1,80,1,85,1,2,2,102,1,107,1,106,1,116,4,132,1,136,2","globally,132,1,136,1","globalsecurity,114,1","globe,111,1","glory,130,1","glossaries,6,1","glossary,6,1","glut,130,1","gmt,68,1,91,1","goal,81,1,90,1","goals,78,1,105,1","goes,30,1,51,1,89,1,88,1,100,1,107,1,112,1,123,1","going,46,2,58,1,71,1,72,2,89,3,81,3,85,1,90,1,92,1,6,1,2,2,52,2,98,1,105,1,100,1,103,3,120,2,113,10,115,1,131,2,134,1,135,1","goingafter,77,1","goings,43,1","gold,24,1,81,6,94,1,103,6,107,1","goldman,81,1","good,47,1,45,1,67,2,72,1,79,1,89,3,81,4,82,1,86,3,93,1,90,1,92,1,94,3,2,1,40,1,98,1,105,5,99,1,100,1,103,1,116,2,118,2,132,1,134,2,135,2,136,1","gooders,94,1","goods,79,2,81,8,90,1,2,1,103,2,121,1","googkle,109,1","google,30,1,43,6,57,1,81,1,86,1,88,1,109,1,113,1,123,1","got,43,1,46,1,71,3,81,5,52,1,105,5,107,1,111,3,132,1,134,3,135,1","gotcha,81,1","goth,90,1","gotten,1,1,94,1,2,1,132,1","gouge,51,1","gougepaying,51,1","gov,3,1,4,5,47,2,24,2,45,2,70,1,71,1,72,1,6,1,134,1","governed,93,1","governing,81,2,2,1,98,1","government,1,1,4,1,10,4,58,2,65,2,69,5,72,1,77,2,79,2,81,8,85,1,90,1,6,1,2,3,98,1,105,6,100,2,103,1,106,6,114,2,115,1,117,1,130,4,134,1","governmental,31,1","governments,65,1,69,1,81,1,85,1,98,1,106,1","governor,111,1","grab,30,1,89,2,81,2,123,1","grabbing,81,1,116,1,125,1","grabs,111,1","grace,12,1","grade,30,1,123,1","graders,39,2","grades,85,1","graduated,29,1","grams,112,1","grand,78,1,79,1,81,1","grandma,112,1","grandmother,109,1,111,1","granted,81,1","granting,24,1","grantors,89,1","grants,70,4","granular,100,1","graphical,82,2,91,1","graphics,106,1","grasp,111,1","grassroots,100,1","gravitated,85,1","gray,81,1","great,51,1,72,1,81,1,86,2,105,4","greater,26,1,70,5,73,2,80,1,40,2,99,2,100,1","greatest,81,1","greatly,28,5,70,1,89,1,40,1,99,1","greeks,85,1","green,51,1","greenberg,81,1","greeting,137,3","greg,81,1","gregg,81,1","grew,10,2,102,8,125,1,135,1","grid,100,1,106,1","grids,106,2","griff,114,1","griffiths,108,3","grinds,116,1","gritty,2,1","grossing,39,1","ground,105,9","group,15,2,5,2,31,4,27,2,28,1,29,1,37,1,39,1,57,2,74,1,79,3,81,25,82,1,84,1,85,2,90,6,6,1,94,1,2,1,88,1,105,5,107,3,120,3,109,3,113,1,116,1,127,2,130,7,132,1","groups,5,2,28,2,65,1,68,1,69,1,81,15,85,1,86,1,2,1,88,1,108,2,113,1,116,1,130,2","grove,70,4","grow,39,1,78,1,80,1,81,2,102,4","growing,10,1,17,1,30,2,28,1,29,1,39,1,46,1,57,1,72,1,73,1,89,1,81,1,94,1,52,1,100,2,103,1,109,1,123,2,125,2,129,1,130,6,132,1,134,1,135,1,136,1","grown,66,1,81,3,40,1,99,1,102,1,121,1,132,1,136,1","grows,57,1,70,9,92,2","growth,39,1,57,1,67,1,81,3,2,1,102,4,132,1","gruesome,91,1","grumman,101,1","grunt,85,1","gt,30,4,57,8,72,1,89,1,94,8,120,1,110,3","guangdong,117,1","guarantee,58,1,72,1,74,1","guard,89,2,87,1","guarded,52,1","guardians,4,1","guardingsensitive,114,1","gubser,70,4","guess,98,1","guessing,132,1","guidance,29,1,120,1","guide,24,1,72,2,86,1,87,1,127,1","guidelines,57,1,82,3,115,2","guilty,36,1,81,12,130,2","guise,111,1","gullibility,109,1","gullible,135,1","guns—one,81,1","gushed,113,1","guy,1,1,36,1,51,1,81,2,105,1","guys,12,3,43,1,77,2,81,1,85,2,90,1,94,1,88,2,105,1,109,1,111,1,116,1,131,1,135,2","habit,39,1,89,1","habits,89,2,118,2","hack,1,1,5,1,74,1,79,1,81,3,88,9,106,1","hacked,15,1,71,1,81,1,84,1,85,1,103,1,104,2,115,2,129,1,133,11","hacker,1,10,15,2,79,1,89,3,81,6,85,1,40,9,88,2,96,8,105,2,99,5,107,1,114,9,115,3,116,1,117,1,125,2,134,2","hackeris,85,1","hackerpromised,115,1","hackers,4,1,5,4,17,13,31,2,37,10,57,2,65,3,67,10,68,3,69,2,71,2,77,13,89,1,81,5,82,5,85,10,93,1,90,1,2,2,88,5,105,5,99,1,107,2,106,2,111,11,115,9,116,6,117,1,125,2,130,1,137,1","hackersare,116,1","hackerscan,116,1","hackerscurrently,57,1","hackerswanted,116,1","hacking,3,1,15,1,4,2,37,2,68,13,69,3,79,1,81,9,82,1,85,1,92,1,88,2,103,1,104,1,115,1,116,12,134,1","hackingattacks,68,1","hackles,67,1","hacks,81,1","had,1,1,3,1,12,1,39,1,51,2,72,1,77,1,89,9,81,20,82,5,84,2,90,2,92,5,2,6,52,4,105,14,100,1,101,1,102,3,103,4,107,3,128,1,109,2,111,5,114,1,115,5,116,3,117,2,118,8,126,2,127,1,130,5,132,2,133,2,134,11,136,2","hadn,52,1","hadnot,117,1","hair,81,1","haire,134,17","hakimi,43,4","half,3,1,13,1,10,6,26,1,37,2,39,4,73,1,74,2,77,1,81,3,90,1,91,1,2,1,40,1,105,1,99,1,101,1,106,1,111,3,114,1,118,3,121,1,125,1,130,1","hall,111,5,115,8,122,1","halle,51,1","halloween,91,2,6,1","halt,3,2,65,1,134,1","haltabuse,3,1","ham,67,1","hamilton,70,4","hammer,43,1,101,1","hampers,130,1","hampton,71,2","hand,39,1,70,1,51,1,89,1,82,1,85,1,93,1,92,1,128,1,127,1","handed,70,1,89,1","handful,81,2,90,1","handheld,39,1,57,2","handhelds,57,1","handing,132,1","handle,67,1,70,1,81,1,90,1,2,1,40,1,99,1,128,1,115,1,132,1,134,1","handled,81,1,85,1,108,1","handler,111,1","handles,124,1","handling,31,1,89,1,81,1,85,1,98,1,100,1,108,1","hands,89,2,81,2,93,1,94,1,106,1,111,1,133,1","handshake,135,1","handy,115,1","hang,51,1,81,2,88,1,109,1,135,1","hanging,69,1,51,1,103,1,109,1","hani,94,1","happen,57,1,71,1,93,2,105,1,120,1,127,1,135,1","happened,71,1,81,1,93,1,2,2,105,3,109,1,134,2","happening,85,1,100,1,107,2,112,1","happens,70,1,89,1,2,2,105,1,111,1,114,1","happy,51,1,89,1,134,1","happyhunting,103,1","harass,13,9","harassment,3,1","harbor,115,1","hard,4,2,12,1,45,1,47,1,46,1,58,1,51,5,79,2,89,1,81,3,85,1,86,1,88,1,105,3,100,2,103,1,108,1,109,1,110,1,112,1,130,1,131,1,134,1","harden,1,1","harder,57,1,67,3,79,1,81,1,90,1,94,1,40,1,99,1,103,2,111,1,116,2,130,1","hardest,105,1","hardlysurprising,114,1","hardware,28,1,56,1,74,1,81,1,40,1,99,1,111,1,116,1,130,1","harm,31,2,43,1,58,1,81,2,118,1","harmful,137,1","harried,40,1,99,1","harris,100,1","harsher,100,1","hartmann,2,1","harvest,2,1,107,2,113,1","harvested,81,1","hash,70,4","hasinfected,51,1","hasn,93,1,94,1,105,2,106,1","hassle,26,1,81,1","hastaken,68,1","hastened,52,1","hate,87,1","hats,1,1","haul,89,1","haunt,94,1","havediscovered,85,1","haven,28,1,46,1,87,1,93,1,109,1,112,1","haven’t,99,1","havesensitive,116,1","havethe,115,1","havetheir,103,1","haveworldwide,85,1","having,5,1,39,2,57,1,89,2,81,1,94,1,105,1,103,2,108,1","havoc,81,1","haywire,51,1","hazard,39,1","hbo,85,1","head,81,1,84,1,90,1,2,1,103,1,117,1,134,1","headache,12,1,57,1","headaches,70,1,94,4","headed,81,1","header,89,1,81,2,130,2","headline,125,1","headlines,37,1,46,1,69,1","headquarters,105,1","headset,51,3","health,24,1,39,3,81,2,2,1,52,1,120,1,111,1","healthy,105,1","hear,31,1,58,1,85,1,100,1","heard,51,2,92,1,2,1,88,1,105,1,133,1","hearing,43,1,46,1,98,1,109,1","heart,94,1,100,1","heat,105,1","heath,6,1","heather,111,1","heavier,105,1","heavily,102,1","hebron,70,4","heclaimed,115,1","heed,90,1","heels,137,1","hefty,101,9","height,2,4","heightening,98,1","heights,70,16","heiress,81,1","heists,2,1","held,46,1,58,1,70,1,81,2,105,1,104,1","helen,70,8","help,4,1,12,1,17,1,24,3,36,1,45,2,47,2,46,1,70,1,77,1,89,1,81,7,82,1,86,2,90,1,92,1,6,1,95,1,94,1,40,2,105,3,99,2,101,2,106,1,109,1,110,4,111,2,112,1,114,1,119,1,126,1,130,1,132,3,135,1","helped,1,1,12,1,81,5,2,1,106,1,120,1,117,1,126,9,130,2","helping,57,1,77,1,81,1,88,1,105,1,134,1","helpofficers,114,1","helps,12,1,56,1,90,1,105,1,100,2","helsinki,107,1,109,1","hemay,87,1","henry,39,10","herald,37,4,117,1,135,1","herded,13,1","herders,85,4,104,10","heretofore,126,1","herring,39,1","hewlett,102,1,110,1","hid,130,1","hidden,12,1,85,1,93,2,107,1","hide,28,1,67,1,81,2,93,1,6,1,2,1,107,1","hiding,43,1,81,2,130,1","hierarchy,81,1,85,1","high,5,1,10,1,12,2,17,2,28,1,29,1,37,1,45,1,47,1,46,1,58,1,69,1,71,2,77,1,80,1,81,2,94,1,88,2,52,2,98,2,105,2,101,1,102,1,111,2,112,3,116,2,121,1,127,1,130,1,133,14,134,3,136,4","higher,39,1,57,1,69,1,70,1,80,1,81,1,83,1,85,1,100,1,102,2,108,1,112,2,116,1","highest,10,1,37,1,57,1,81,2,88,1,107,1,130,1","highin,116,1","highland,70,4","highlighted,56,1,77,1","highlights,67,4,69,1,93,1","highly,5,1,37,2,57,1,89,1,81,5,105,3,103,2,130,1","hijack,30,4,107,1,116,2","hijacked,10,1,37,1,45,1,47,1,89,1,90,1,104,2,107,1,128,1,111,1","hijacking,30,1,82,1,85,1,123,1","hijacks,30,1,43,1,123,1","hike,39,1","hilary,51,1","hill,90,1","hillebrand,2,1","hills,70,16","hilton,81,1","him,1,1,5,2,12,1,51,1,81,4,87,1,92,1,2,3,88,2,105,1,113,1,115,3,132,1","himself,12,1,26,1,88,1,105,1,103,1","himwith,1,1","hines,57,1,94,1","hipaa,56,1,82,1","hire,40,1,99,1","hired,88,1","hiring,81,1,115,1","hisalleged,115,1","histestimony,115,1","historically,114,1","history,84,2,85,1","hit,39,2,79,1,89,1,81,1,88,3,107,1,128,1,116,2,134,1","hmm,127,1","hoaxes,110,1","hobby,88,1","hobbyist,81,1","hockey,12,1","hofmeyr,116,2","hold,57,1,71,1,72,1,89,1,92,1,98,1,134,1,135,1","holder,58,1","holders,81,1,85,1,105,1","holding,58,1,81,1,6,1,105,1,100,2,108,1","holdings,17,1,93,2","hole,69,1,81,1,94,1,88,1,105,1,128,1,116,2,130,1","holes,37,1,45,1,47,1,67,9,69,13,77,1,81,2,111,2,116,1","holiday,58,1,86,1,137,1","holidays,86,1,94,1,135,2","hologram,81,1","home,12,1,17,7,24,1,26,1,36,2,39,5,43,2,45,1,47,1,58,1,68,1,70,1,72,1,74,3,77,1,89,5,81,3,85,1,30,2,90,4,95,1,40,1,88,2,52,6,105,2,99,1,101,2,107,1,108,1,120,7,110,1,111,3,112,1,115,1,118,3,119,1,123,1,132,2,134,2,135,3,136,10","homeland,69,1,81,1,106,1,120,1,129,1","homelandsecurity,77,1,115,1","homeowners,27,1,70,1","homepage,39,2","homepc,17,1","homes,15,1,27,1,81,1,85,1,105,1,108,1,111,1,118,4,134,1,135,3","homework,39,1","honored,51,1","honourable,88,1","hoods,85,1","hook,109,1","hooked,39,1,90,1,118,1","hooligans,85,1","hoopes,106,1","hoops,81,1","hope,51,1,89,2,81,1,100,2,109,2,126,1,135,1","hopeful,70,4","hopefully,92,1,105,1","hopes,46,1,81,1,105,1,132,1","hoping,74,1,120,1,134,1","horizon,89,2","horizontally,89,1","horns,83,1,105,1","horrific,93,1","horrified,2,1","horse,1,1,65,1,67,1,69,1,51,3,89,1,83,1,85,1,95,1,101,1,104,1,107,3,111,1,124,1","horses,37,2,46,1,82,1,116,2","hospital,26,1","host,13,1,65,1,94,1,107,1,116,1,126,1","hosted,39,1,43,1,81,1,30,2,94,3,107,1,109,1,123,2","hostile,69,1","hosting,107,1,115,3","hosts,1,1,85,1,90,3,94,1,107,1,115,1,126,6","hot,57,1,85,1,90,1,103,1","hotbed,85,1","hotbot,1,1","hotel,81,1,115,1","hotels,81,1,94,1,103,1","hounded,135,1","hour,13,1,51,1,74,1,85,1,112,1,113,1,126,1","hours,29,1,39,2,51,2,80,1,93,1,92,1,95,1,94,1,88,2,52,1,105,1,109,1,111,1,131,1,134,2","house,4,1,29,1,39,1,58,2,72,1,77,1,89,1,81,1,86,1,90,1,40,1,98,1,99,1,104,1,115,1,132,5,134,6","household,2,2","households,39,1,118,2","houses,81,1","houston,115,1","howard,70,2,77,1,81,2,82,2","howes,43,4","however,31,1,28,1,45,1,47,1,56,1,65,2,67,2,69,1,70,1,71,1,77,1,81,3,83,1,86,2,6,1,94,2,40,1,99,1,100,1,102,1,107,5,108,3,106,1,111,1,121,1,125,1,130,1,131,1,132,1,133,1","hp,102,9,110,3","hsbc,79,1","hsiri,89,1","htm,3,4,13,4,4,4,5,4,10,4,12,4,17,5,31,4,24,4,26,4,27,4,28,4,29,4,36,4,37,4,39,4,43,4,45,5,47,4,56,4,66,4,57,4,58,4,65,4,67,4,68,4,69,4,70,4,71,4,72,5,73,4,51,4,74,4,77,4,78,4,89,4,81,4,82,4,83,4,84,4,85,4,86,4,87,4,30,4,93,4,90,4,6,4,95,4,94,4,2,4,88,4,52,4,98,4,105,4,99,4,100,4,101,4,102,4,103,4,104,4,106,4,107,4,108,4,120,4,128,4,109,4,110,4,111,4,112,4,113,4,114,4,116,4,117,4,121,4,122,4,123,4,124,4,125,4,126,4,127,4,129,1,130,4,132,4,133,4,134,4,135,4,136,4,137,4","html,1,5,15,4,7,8,11,8,46,4,66,2,65,1,73,1,74,1,79,4,89,1,80,4,91,5,92,5,40,5,9,8,96,8,98,1,99,1,102,1,104,1,106,2,108,1,128,1,112,1,115,5,116,1,118,4,119,4,121,1,124,1,125,1,127,1,129,4,131,4","http,1,1,3,4,4,4,17,1,24,5,39,1,45,2,47,1,56,1,66,2,65,2,68,1,71,1,72,2,73,2,74,2,78,1,79,1,89,1,81,1,91,2,40,1,70,4,98,1,99,1,102,1,104,1,106,1,107,1,108,1,128,1,109,2,112,1,115,1,116,1,121,1,124,1,125,1,127,1,129,1,135,1,137,1","https,92,1,109,1","hub,43,1,93,1,103,1","hubbard,116,2","hudson,37,4","huge,56,1,68,1,30,1,103,1,107,1,111,2,123,1","huger,107,1","hughes,39,1,81,2,86,3","hugos,107,1","hum,51,1","human,51,1,80,1,127,2","hundred,13,1,89,2,90,1,105,1,134,1","hundreds,13,6,12,1,24,1,45,1,47,1,79,1,81,3,85,1,90,1,88,2,52,1,107,1,111,2,125,1,131,1,133,1,134,1,135,1","hunger,65,1","hunt,116,1","hunting,89,1","huntington,81,1","hurdles,105,1,111,1","hurme,135,5","hurt,102,1","hurting,116,1","hurts,106,1","husband,111,1,135,1","hydrant,113,1","hype,65,2","hyperlink,109,1","hypponen,52,1,107,14,124,3","hyppönen,109,3","i3c,6,2","iaaca,103,4","iacp,105,1","ian,84,1","ibid,3,5","ibm,81,1,102,2,106,1,116,1","ic3,4,1","ican,103,1","iceberg,31,1","icg,90,1","icon,45,1,47,1","icons,45,1,47,1","icq,81,3,103,1","icsi,126,3","id,26,2,29,13,71,1,72,1,79,1,89,7,81,2,30,9,92,1,2,3,105,4,100,1,107,1,123,9,130,1,132,2,135,1","idc,102,9","idea,46,1,72,1,89,2,85,1,86,2,90,1,2,1,98,1,105,1,112,1","ideas,72,1,92,1","idefense,66,6,79,2,81,7,83,4,2,1,103,2","identical,89,1,111,1","identification,12,1,24,3,28,1,78,1,89,2,81,13,90,1,70,1,130,3","identifications—who,81,1","identified,10,1,12,1,31,1,39,1,81,2,83,1,86,2,91,1,2,1,52,1,128,1,130,1,137,2","identifier,124,1","identifiers,28,1","identifies,10,5,26,1","identify,12,1,29,1,89,2,81,5,86,1,90,1,94,1,70,1,52,1,105,1,110,2,113,1,130,2","identifyas,85,1","identifying,12,1,39,1,86,1,105,1,103,1,122,1","identifyinginformation,29,1","identities,5,1,26,1,36,1,58,1,89,1,81,1,82,1,85,1,30,1,92,1,6,2,105,1,100,1,103,2,107,2,123,1,134,1","identity,3,1,15,1,5,1,17,1,31,11,24,10,26,1,27,14,28,21,29,6,45,2,47,2,46,1,56,4,66,1,58,1,71,13,72,13,73,2,79,1,89,29,80,1,81,12,82,3,83,1,85,2,30,7,90,4,92,11,6,1,2,4,40,1,70,10,98,1,105,13,99,1,100,8,103,2,107,4,110,1,111,1,114,1,121,2,123,3,129,5,132,1,134,22,135,24","identity—a,100,1","identitystolen,116,1","identitytheft,31,1","idfraud,27,4","idg,28,1,120,3,110,1","idle,80,1,105,1","idlewild,70,4","ids,81,3,94,1,105,1","ids—were,81,1,130,1","idtheft,24,2,72,1,70,1","ifccfbi,3,1","ifhe,51,1","ifyou,40,1","ignorance,120,1","ignored,69,1,79,2","iii,130,1","iinterrupted,51,1","illegal,3,1,4,2,39,3,79,1,89,1,80,1,85,4,91,6,129,1","illegally,31,1,89,1,120,1,125,1","illicit,4,1,5,1,79,2,81,3,94,1","illustrates,90,1","illustration,94,1","im,93,24,137,17","image,82,2,85,1,93,2,105,2,107,1,131,1","images,39,7,92,1,105,1","imagination,91,1","imaginative,112,1","imagine,82,1,2,5,127,1","imagined,107,1","imlogic,137,3","immediate,30,1,123,1,136,1","immediately,1,1,24,1,89,1,81,1,86,1,30,2,70,2,105,1,101,1,106,1,109,1,111,1,114,1,123,2","immigrants,107,1","imminent,105,1","immune,80,1,87,1,111,1,127,1","impact,39,1,46,2,58,1,69,1,81,1,40,1,105,1,99,1,103,1","impacted,40,1,99,1","imperial,133,1","impersonate,27,1,51,1","implanting,111,1","implement,58,1,40,1,99,1,114,1","implementation,81,1","implemented,10,1,105,1","implementing,56,1,82,1,111,1","implications,57,1","importance,70,9,106,1,116,2,127,1,134,1","important,4,1,37,1,43,1,46,1,71,4,72,1,89,3,80,2,81,2,86,1,92,1,40,1,70,3,88,1,105,1,99,1,119,1,135,1","importantly,89,1,112,1","impossible,31,1,94,1,105,1,103,1,106,1","impostor,135,1","impress,52,1","improper,31,1,100,1","improve,46,1,82,1,116,1","improvements,81,1,103,1,120,1","improving,77,1","impulse,27,1","impunity,85,1","in1,1,1","inaccessible,126,1","inaccuracies,72,1","inactivity,105,1","inaddition,57,1","inadequate,100,1,115,1","inadvertently,126,1","inappropriate,133,1","inbox,52,5","inc,1,1,13,1,10,2,26,1,28,9,29,3,36,1,37,1,43,4,66,1,57,3,58,3,67,6,69,2,77,5,78,1,79,1,89,1,81,2,82,4,83,4,84,1,87,1,30,2,93,7,90,3,95,2,94,8,2,1,40,2,52,3,105,4,99,2,100,1,101,4,107,4,120,3,109,1,111,1,112,1,113,1,114,1,115,1,116,1,123,3,126,2,130,1,132,1,136,2,137,4","incarceration,85,1","incentive,105,1,116,2","incest,12,1","inchicago,81,1","incidence,28,5,89,1","incident,3,1,89,1,81,3,90,2,92,1,2,1,106,1,114,1,126,1,133,1","incidents,3,1,31,2,6,1,105,1,106,1,108,1,111,1,114,1","inclined,67,1","include,10,1,24,2,29,1,39,1,45,1,47,1,66,1,72,1,89,1,81,2,82,1,30,1,93,1,90,2,92,1,40,1,99,1,106,1,107,1,110,1,114,1,123,1,130,1","included,12,1,39,1,77,2,79,1,81,2,86,1,30,2,92,1,95,1,98,1,128,1,117,1,123,2","includes,27,1,80,1,82,1,90,1,92,1,95,1,40,1,105,2,99,1,109,1,136,1","including,12,1,17,1,31,2,24,1,28,4,29,1,39,1,43,1,45,1,47,1,46,1,66,1,57,3,67,1,69,1,77,3,79,1,89,4,81,8,93,1,90,2,92,1,95,1,94,1,88,1,98,1,100,1,101,1,103,2,104,1,107,1,120,2,128,3,112,1,114,1,118,1,119,1,124,1,132,3,134,2,135,2","inclusion,93,1","income,79,1,108,1","incoming,81,1","incompatibility,81,1","inconsequential,28,1","inconvenience,85,1,105,1","inconveniences,112,1","incorporate,105,1","incorporated,103,1","incorporates,77,1","incorrect,89,1,100,1","incorrectly,39,1,58,1,52,1","increase,10,9,37,3,39,3,56,1,57,1,65,1,67,2,69,1,78,2,82,5,83,1,90,1,40,1,99,1,100,1,107,1,111,1,116,1,121,1,125,3,132,1,136,2","increased,27,2,39,1,93,4,102,1,108,1,120,1,111,1,121,1,122,1","increases,26,1,65,1,105,1","increasing,10,2,66,1,57,4,81,1,94,4,2,2,116,1,125,1,132,1,136,1,137,1","increasingingenuity,116,1","increasingly,13,1,5,1,39,1,57,1,65,1,89,1,81,1,83,1,94,1,40,1,52,1,105,1,99,1,103,1,107,1,108,1,116,1,120,1,125,2","increasinglypopular,66,1","increating,31,1","incredibly,82,2,106,1","indecent,12,1","indeed,45,1,47,1,2,1,105,1,100,1,125,1,132,1","independence,87,1,70,4","independent,27,1,67,1,134,1","index,17,1,45,1,89,2,112,1,116,1,129,1,137,1","india,106,1","indicate,66,1,103,1","indicated,73,1,106,1,108,1","indicates,10,1,56,1,81,1,104,1","indication,29,1,81,1,86,1,30,1,128,1,113,1,123,1","indications,136,1","indicted,5,1,81,1","indictment,1,2,78,1,81,9,115,1,130,1","indictments,81,1","individual,31,1,28,1,37,1,39,1,57,1,58,2,89,1,81,3,82,1,86,1,90,1,91,1,105,1,109,1,114,1","individually,57,1","individuals,15,1,5,1,31,1,26,1,39,1,43,1,89,1,81,2,30,1,92,1,2,1,105,3,100,1,103,1,104,2,128,3,116,2,120,1,123,1,132,1,134,1,135,1,136,1","individualsusing,91,1","industrial,2,1,116,3","industries,17,1,81,1,82,4,98,1,105,2,103,1","industry,4,1,5,1,10,1,31,1,28,1,39,5,45,1,47,1,46,2,57,2,58,3,65,1,51,1,77,1,89,1,82,10,85,1,91,1,6,1,94,1,2,1,105,4,103,1,106,5,109,1,110,2,111,2,117,1,130,1,132,1,136,1","industryclients,103,1","inept,111,1","ineverything,103,1","inevitable,93,9","inexchange,115,1","inexorable,67,1","inf,124,1","infamous,81,3,124,1","infantry,90,1","infect,37,1,2,1,88,1,124,1,126,1","infected,10,2,46,2,66,2,51,1,89,1,81,2,85,3,30,4,93,1,90,1,91,2,92,1,2,1,88,2,52,3,101,1,107,6,111,1,112,4,120,4,122,2,123,4,125,1,126,9,127,1,131,4,132,1,137,6","infectedsystems,15,1","infectees,112,1","infecting,126,1,130,1","infection,46,2,95,1,88,6,120,1,137,2","infections,3,1,47,1,46,1,93,1,101,1,107,1,112,1,118,1,120,3,122,1","infectious,111,2","infest,2,1","infested,131,1","infiltrate,37,1","infiltrated,94,1","inflexible,81,1","info,45,1,72,1,86,4,92,8,105,4,103,1,107,1","informant,5,1,81,8,130,3","informants,81,1","information,13,1,4,3,5,4,10,3,17,1,31,8,24,8,27,3,28,8,29,4,36,2,37,10,39,7,45,9,47,9,46,1,56,1,66,1,57,3,58,3,65,5,69,4,71,4,72,20,74,4,79,4,89,23,80,2,81,22,82,2,83,3,84,2,85,5,86,5,87,4,30,7,90,9,91,1,92,10,6,2,94,3,2,5,40,1,70,3,98,3,105,28,99,1,100,8,101,2,103,10,107,3,109,3,110,6,111,7,114,9,116,2,118,5,119,1,120,3,121,2,123,7,125,2,126,1,130,4,131,1,132,3,133,3,134,14,135,10,136,1","informational,72,1,89,1","information—possibly,81,1","information—ranging,105,1","information—such,100,1","informationwill,116,1","informed,73,1,89,1,2,1,105,1,114,1,136,1","informing,94,1","infosecurity,45,1,47,1","infosurv,29,1","infrastructure,28,2,56,2,65,3,69,1,77,1,81,2,85,1,100,4,106,4,130,1","infringement,4,2,37,1","inherent,57,1","inherently,40,2,99,2","inheritance,134,1","inheriting,93,1","inhibit,105,1","inill,1,1","ininvestigations,134,1","initial,24,1,81,1,107,1","initially,10,1,81,1,92,1,104,1","initiate,12,1,89,1,90,1","initiated,72,1,89,1,81,2,130,2","initiates,81,1","initiative,4,1,58,1,84,1,6,6,105,1","injection,46,1,67,2,2,1","injury,89,1,132,1","ink,89,1,2,1","inlocal,85,1","inmassachusetts,115,1","innocence,81,1","innocent,39,1,43,1,81,1,85,1,88,1","innocently,111,1","innocuous,85,1","innovative,112,1","innovis,89,1","inobserving,77,1","inon,85,1","inorder,40,1","inothers,115,1","inpremium,103,1","input,36,1","inquiries,89,1,70,1,133,1","inrecent,40,1","inroads,103,1","inrouters,77,1","ins,28,1,29,1,93,1","inscam,116,1","insecure,77,5,2,1","insert,124,1,132,1","inserted,124,1,134,1","inserts,43,2","insertsadvertising,43,1","inside,1,1,12,1,72,1,89,1,81,2,105,1,126,1,130,1","insider,81,2,2,1","insiders,67,1,2,2","insidetroy,85,1","insidious,46,1,135,1","insight,105,1,100,1","insights,43,1,67,1,69,1,83,1,84,1,30,1,93,1,94,1,100,1,101,1,123,1,126,1,132,1,137,1","insisted,51,1,111,1","insisting,103,1","insists,5,1","insome,57,1","inspect,81,1,118,1,130,1","inspected,120,1","inspecting,89,1","inspection,90,1,6,3","inspector,81,1,6,1","install,1,1,4,1,45,3,47,3,46,3,57,1,51,2,74,1,89,3,85,1,90,1,52,1,101,1,107,1,128,2,125,1,131,3,132,1","installation,1,1,45,1,89,5,101,1,126,1","installations,1,1,43,1","installed,1,2,4,1,10,2,37,5,43,2,45,2,47,2,46,2,89,1,83,2,84,1,85,1,30,1,95,1,101,1,107,1,108,1,111,1,116,1,120,2,123,1,131,1","installedad,1,1","installing,43,6,45,1,47,1,82,1,52,1,99,1,104,1,135,1","installingadware,15,1","installingantivirus,40,1","installingsecurity,116,1","installs,45,1,47,1,89,1,137,1","instance,26,1,57,1,81,1,94,1,40,1,105,1,99,2,106,1,111,1,121,1","instances,12,1,46,1,73,1,2,1,124,1,131,1","instant,3,1,13,5,39,3,77,1,81,4,93,6,103,1,131,1,137,2","instead,1,1,43,1,45,1,47,1,74,1,89,1,81,1,82,1,109,1,112,1,116,1,125,1","institute,39,2,65,1,67,1,69,2,77,2,79,1,117,2,126,2,127,1,130,1","instituteclaims,117,1","instituted,77,1","institution,27,1,100,1,109,1","institutions,65,1,78,1,89,4,81,2,82,5,90,3,94,1,2,3,88,1,105,1,100,1,132,2,134,2","instructed,85,1,70,1","instructional,78,1","instructions,13,3,81,2,85,1,95,2,88,2,131,1,137,1","insult,89,1,132,1","insurance,24,2,26,1,27,6,29,1,72,1,89,1,81,1,82,1,94,1,40,1,70,2,105,1,99,1","insurers,27,1","insuring,27,1","integrated,83,1,101,2","integrity,105,1,120,1","intelguardians,111,1","intellectual,4,1,5,1,68,2,81,3,83,2,90,1,130,1","intelligence,39,3,79,1,81,1,90,1,2,2,101,1,103,2,106,1,108,1,136,2","intelligenceservices,66,1","intelligent,30,1,105,1,123,1","intellisync,57,1","intended,89,1,81,1,2,1,135,2,137,1","intensediscipline,117,1","intensified,2,1","intensity,85,2","intent,81,3,105,2,107,2,130,2","intention,37,1","intentional,82,1","intentionally,26,1,40,1,99,1,115,1","intentions,105,1","inter,93,1","interact,81,1","interaction,67,2,124,1","interactions,28,1","interactive,81,1,6,1,100,1,137,2","intercept,82,1,93,1","intercepted,89,1,40,1,99,1,111,1","intercepts,131,1","interchange,105,1,132,1","interest,81,1,90,1,70,1,98,1,100,2","interesting,81,2,94,1,88,1","interestingly,56,1","interface,28,1,105,2","interferes,43,2","interfering,43,1","intermediaries,103,1","intern,126,1","internal,81,3,2,1,40,1,105,2,99,1","international,12,3,39,1,68,4,81,5,85,2,90,1,2,1,70,4,105,1,101,3,102,1,103,1,107,1,120,1,121,1,126,1,130,1","internationalconference,68,1","internationally,103,1","internet,3,5,13,1,15,2,4,5,5,2,10,5,12,19,17,2,24,1,26,2,28,2,29,6,37,4,39,35,43,4,45,17,47,4,66,1,57,2,65,2,67,4,68,2,69,5,71,1,72,1,74,4,77,3,79,1,89,2,80,1,81,32,82,6,83,1,85,26,86,6,87,14,30,2,93,3,90,14,91,11,92,2,6,18,95,1,94,1,2,16,40,18,88,5,70,2,52,7,99,22,101,1,103,9,104,2,106,1,107,5,108,3,109,13,110,11,111,15,112,14,113,3,114,2,116,3,118,9,119,3,120,5,121,4,123,2,125,3,126,7,127,11,130,7,131,3,132,4,134,2,135,1,136,19,137,1","internetcrime,85,2","internetidentity,85,1","internetnews,81,1,86,1","internetsecurity,77,1,40,1","internetthreats,40,2","internetwork,69,1","interpret,81,1","interstitials,89,1","intervals,37,1","intervene,12,1","intervention,93,1,105,1","interview,29,2,43,2,30,1,93,2,105,1,103,1,114,1,115,1,120,1,123,1","interviewed,2,1,111,1,120,2,133,1","interviewee,89,1","interviews,81,1,118,1","inthe,51,1","intimate,105,1","intobotnets,1,1","intonostalgia,85,1","intoonline,103,1","intricate,17,1","intro,13,4,26,4","introduce,81,1,98,1,101,1","introduced,58,1,74,1,98,1,110,2,132,1","introduction,51,1,120,2","intruder,2,1,111,3,113,1","intruders,5,5,105,1,99,1,111,1,118,2","intrudersfrom,40,1","intrusion,81,1,85,1,105,1,114,2,130,1,133,1","intrusionand,1,1","intrusionprevention,116,1","intrusions,3,1,74,2,129,1","intrusionwas,114,1","intrusive,89,1","intruth,40,1","inundated,109,1","invade,85,1","invades,107,9","invasive,111,1","inventive,82,1","inventor,100,1","inventory,67,1,69,1,90,1","invest,69,1,81,1,90,1,102,1","invested,81,1,111,1","investigate,28,1,89,1,81,1,105,1,113,1,130,1,134,1","investigated,12,1,81,2,84,1,2,1,114,1,135,1","investigates,133,1","investigating,15,1,17,1,81,1,84,1,131,1","investigation,3,1,4,5,5,1,12,1,89,1,81,8,90,1,98,1,105,4,103,1,104,2,128,2,114,1,130,2,133,4","investigations,4,9,12,2,71,1,81,2,90,3,92,1,116,1","investigationslured,85,1","investigative,4,1,81,1","investigator,12,1,90,1","investigators,12,9,17,1,31,1,89,1,81,2,90,6,91,2,2,2,104,1,130,1,134,2","investigatorsintentionally,91,1","investing,17,1,90,1","investment,121,2","investments,90,1,121,1","investors,17,1,81,1,105,1","invisible,81,1,103,1,130,1","invitation,105,1","invoices,105,1","invoked,81,1,2,1","involved,15,1,89,1,81,3,92,1,6,1,105,1,104,1,128,1,116,1","involvement,15,1","involves,89,1,85,2,132,1","involving,74,1,81,1","inweb,66,1","ios,69,1","ip,36,1,81,8,82,2,105,8,107,5,108,1,115,1,130,7","ipods,57,1","ips,122,1","ira,84,1","irbid,107,1","irc,13,1,93,3,107,2,115,1,137,2","ireland,84,1,133,2","irish,89,1","ironic,52,1","ironically,107,1","ironmail,122,1","ironport,112,1","isc,67,1,69,1","isdepleted,103,1","isdue,116,1","island,103,1,107,1","isn,3,1,12,1,69,1,51,1,81,1,86,2,94,1,98,1,105,1,101,1,109,1,111,1,135,1","isnot,116,1","isolate,52,1","isp,89,1,90,1,94,4,52,2,115,1,126,1","ispresented,1,1","isps,28,2,81,1,90,2,94,1,52,10,105,1,113,1","israel,84,1","israeli,84,2,116,1","iss,126,4","isstolen,103,1","issue,45,1,47,1,46,2,51,1,80,1,83,1,86,1,92,1,94,1,52,1,127,1,131,3,134,1","issued,24,1,26,1,69,1,81,1,82,2,70,1,105,2,103,2,125,1,137,1","issuer,89,1,81,1,100,2","issuers,81,2,103,1,130,1","issues,24,1,45,1,47,1,57,4,58,1,73,1,89,1,40,1,70,1,105,1,99,1,101,1,110,1,111,1,120,1,127,1,132,1","issuing,24,1","isthe,51,1,85,1","iswhen,31,1","item,81,1","items,72,1,51,1,81,1,70,1,121,1,134,1","itfrom,91,1","itgave,115,1","itis,87,1","itrc,31,4","itrcclaimed,31,1","itresources,57,1","its,1,2,4,1,10,1,12,2,24,1,26,1,27,1,28,3,46,2,66,1,57,2,58,6,65,2,69,1,51,1,74,1,77,5,81,19,82,4,83,1,85,1,86,2,87,1,93,1,90,1,92,1,6,9,94,8,2,3,88,2,70,1,52,1,98,1,105,18,100,4,101,3,102,9,103,4,106,3,107,2,108,3,128,2,109,3,111,2,112,4,113,2,114,3,116,3,120,2,122,3,126,1,127,2,130,6,133,1,134,1,136,1,137,2","itself,46,1,68,1,81,1,85,1,93,1,95,1,2,1,52,2,105,2,100,1,109,1,126,1,131,1,132,1,137,2","itsnetwork,112,1","itthrough,85,1","itunes,28,1","itwould,1,1","iwebtunes,43,3","jack,85,1","jacked,133,1","jackson,29,1","jacobsen,81,9","jacques,88,15","jaeden,81,1","jail,36,2,81,1","jailed,36,2","jama,39,2","james,111,1,115,1","jameson,36,1","jan,133,1,136,1","janelle,81,3","january,1,1,3,1,10,2,12,1,37,1,39,3,81,2,90,1,107,2,111,2,116,1,132,1,136,1","japan,84,1,102,1,107,1","japanese,1,1,84,1","jaques,31,1","jaquith,85,2","jaquithsaid,85,1","jason,81,3,113,1","java,43,1","javascript,43,1","jaw,105,1","jay,81,1,115,3,135,1","jaynes,132,1","jeanson,1,1","jennings,94,7","jeremy,130,2,132,1","jeri,135,1","jerry,90,1","jersey,12,1,37,29,81,2,111,1","jevans,81,3,130,1","jewelry,134,1","jhtml,56,1","jiang,89,2","jillings,111,1","jim,79,1,6,1,2,1,103,1","jimmy,5,1","jnpr,77,2","joan,135,1","joaquin,135,1","job,12,7,71,1,89,2,81,3,85,1,6,4,94,2,40,1,105,1,99,1,100,1,103,1","jobs,13,1,12,1,26,1,58,1,89,1,81,1,2,1,88,1","jody,81,1,103,1","joe,66,1,82,1,83,1,2,6","johannes,67,1,69,1,79,1,81,1,90,1,130,1,131,1","john,17,1,56,1,71,5,51,1,78,1,81,6,2,1,52,1,98,1,105,1,101,1,103,1,111,1,114,1,116,1","johnlevine,112,1","johnson,79,1,81,9,2,1,130,2","join,81,1,98,1,101,1","joined,81,1,90,1,109,1","joining,81,1","joint,5,1,70,1,118,1,131,1","joker,94,4","jon,13,2,26,2,81,1,2,2,111,1,113,1","jonathan,114,1,115,1","jones,77,5","jonestown,87,1","jordan,30,2,92,2,107,1,123,2","jordanchat,107,1","joris,104,1,128,1,110,1,116,1","jose,93,1,94,1,110,1","joshua,115,1","journal,46,1,134,1","journalism,100,1","jpmorgan,2,1","jr,103,1","judge,36,1,43,1,89,1,81,1,130,1","judged,81,1","judgment,103,1","judgments,70,1","judiciary,58,1,98,1,105,1","juggle,40,1,99,1","juju,89,1","jul,116,1","julia,51,1,81,1","julie,28,1","juliennes,13,1","july,27,1,47,1,46,1,81,2,90,1,40,1,105,1,99,1,101,1,107,2,109,1,111,2,132,1","jump,57,1,81,1,6,1","jumped,125,1","june,10,1,37,1,39,3,69,2,81,3,2,2,98,1,105,2,101,1,103,1,111,2,113,2,114,1,116,1,132,2,134,1","junior,133,1","juniper,39,4,77,1","junk,13,1,37,1,52,6,105,1,112,2","jupitermedia,86,1,122,1","jurimetrics,39,1","jurisdictional,111,1","jury,78,1,81,1,132,1","justice,3,3,4,2,5,2,12,3,36,1,81,5,90,2,92,1,103,3,111,1,130,1","justicedepartment,103,1","justification,52,1","justify,89,1","juvenile,12,1","kaboodle,86,1","kaiser,39,14","kanata,81,1","kanellos,102,1","karam,80,1","kate,90,1","katt,93,1","kavado,81,1","kawamoto,124,1","kaysville,72,1","kazakhstan,111,1","keen,13,1,111,1","keepers,100,1","keeping,10,1,79,1,2,1,100,1,106,1,109,1,118,2","keeps,13,1,85,1,30,1,105,1,107,1,123,1,132,1,135,1","keith,39,1,111,1","kelly,88,1,133,2,134,1","kemmerer,135,2","ken,66,1,83,1,52,1,120,1,134,1,135,1","kenton,70,12","kentucky,70,8","kept,15,1,89,1,81,1,2,1,52,1","keptcatching,115,1","keptclimbing,115,1","kerberos,81,3","kernel,93,1","kevin,1,1,5,2,81,1,90,1,2,1,105,1,115,1","key,5,4,10,1,45,1,47,1,65,1,71,1,89,1,81,1,83,1,105,2,100,3,101,1,109,1,118,1,121,1,130,1","keyboard,89,1,81,1,93,1,88,1,109,1","keyboards,81,1","keychain,82,1","keylogger,66,2,89,1,83,4,84,10,30,2,92,1,123,2","keyloggers,29,1,66,3,83,16,85,1,84,1","keyloggervariants,66,1","keylogging,29,1,83,7,85,2,120,1","keynote,81,1","keypad,134,1","keys,24,1,45,1,47,1","keystroke,15,1,46,2,66,10,89,1,81,1,82,1,85,1,30,2,105,1,109,1,111,1,123,2","keystrokes,29,1,37,1,45,1,47,1,66,1,89,2,81,2,88,1","kff,39,1","kick,127,1","kicked,90,1","kid,81,2,86,2","kiddies,111,1","kiddy,115,1","kidnapped,39,1","kids,12,1,39,2,89,1,86,13,87,11,108,1,118,1","kilgore,90,1","kill,103,1,106,1","killed,106,1","kim,89,5,130,1","kimball,89,1","kind,1,1,5,1,77,1,83,1,85,2,2,2,105,4,109,1","kinds,85,1,105,1,100,2,116,1","kingdom,77,1,111,1,115,1","kingpin,81,2,130,1","kinko,89,2,81,1","kiosk,89,1,81,1","kip,111,1","kirch,115,1","kiters,2,1","kits,13,1,111,2","knew,81,1,90,1,2,1,52,1,109,1,115,1,126,1,135,1","knocked,81,1,130,1","knocks,81,1","know,1,1,31,2,45,2,47,2,66,1,58,1,72,1,89,3,81,5,85,1,86,5,87,1,93,1,90,1,91,1,70,3,105,5,100,4,107,1,110,1,111,1,120,2,132,1,134,1,135,2","knowing,45,1,47,1,87,1,114,1","knowingly,115,1","knowledge,46,1,89,1,94,1,105,1,103,1,109,1,114,1,126,2,137,1","knowledgeable,72,1","knowledgeto,85,1","known,1,1,29,1,37,1,43,2,72,1,81,4,82,1,85,1,93,1,92,1,2,1,52,2,105,1,103,1,104,1,107,2,108,1,111,3,115,1,116,2,132,2,134,1,135,2","knows,12,1,81,1,2,1,70,2,105,2,107,1","knowthe,85,1","kodiak,81,1","koenig,82,2","konqueror,132,1","korea,90,1,52,1,109,2","korean,1,1","kosinski,121,2","kraft,111,1","krashed,115,1","krebs,90,1,131,2","krim,114,1","kuchinskas,86,1","kudos,65,1,103,1","kumar,126,3","kurt,105,3","kurtz,46,1,106,2","kuwaiti,107,2","ky,90,1,70,1","labeled,57,1","labels,108,1","laboratory,109,1","lack,57,1,80,1,81,3,85,1,40,2,99,2,100,1,110,1,119,1","lacked,74,1,118,1,120,1","lacking,28,1,115,1","ladbrokescasino,111,1","laden,93,1,111,1","lagged,101,1","lakes,70,4","lakeside,70,4","lam,115,1","lame,51,1","lan,40,1,99,1","lance,69,1,109,1","land,89,1","landline,109,1","landlord,79,1,134,1","landscape,10,1,37,2","landslide,57,1","lane,111,1","language,81,2,103,2,110,1,132,1","lanning,130,1","lanterns,109,1","lap,12,5","laptop,57,1,74,1,81,1,100,1,111,2","laptops,57,2,81,1,102,1","larcenous,2,1","large,1,1,10,1,26,1,36,1,43,1,66,1,67,1,77,2,89,1,93,1,90,1,94,1,2,3,40,2,88,1,28,5,105,1,99,3,101,1,111,1,116,4,125,3,135,1","largeamount,115,1","largecompanies,40,1","largely,57,1,100,1,132,1","larger,6,1,94,1,40,1,52,1,105,1,99,1,102,1,103,1,104,1,107,1,126,1","largernumber,77,1","largess,86,1","largest,15,3,39,1,81,2,90,2,105,4,102,1,103,1,104,1,108,1,111,1,132,1","larkin,90,3,111,1","larry,43,1,67,1,69,1,79,1,81,3,83,1,84,1,30,1,93,1,94,1,101,1,123,1,126,1,130,1,132,2,137,1","laser,81,2","last,1,1,3,1,15,1,5,1,10,1,17,1,24,1,39,2,46,1,66,2,67,1,68,2,71,1,73,1,51,1,77,2,79,1,89,3,80,1,81,10,82,1,83,1,85,1,84,2,86,6,2,2,52,3,100,1,102,2,103,2,106,2,128,3,109,2,111,4,112,3,113,1,115,6,116,7,118,3,120,1,122,1,125,1,126,1,127,1,133,1,134,1,135,1,136,3,137,1","lasting,51,1","lastweek,114,1","lastyear,112,1","latching,137,1","latest,12,1,17,1,37,1,43,2,45,4,56,1,57,1,58,1,67,2,69,1,89,3,83,1,85,1,84,2,30,1,93,2,6,2,95,4,94,1,52,1,101,1,107,2,114,1,120,1,122,2,123,1,124,1,126,1,127,2,132,1,137,1","latin,27,1","latisha,86,1","latonia,70,8","latvia,2,2,88,1,111,1","latvian,82,1,88,1","laughing,88,1","launch,15,1,65,1,81,3,83,1,85,1,93,1,91,1,6,1,40,1,88,1,99,1,104,1,106,1,108,1,115,1,124,2,125,1,126,1","launched,68,1,81,3,94,1,28,1,105,1,107,2,115,1,116,1,124,1","launches,40,1,99,1","launching,1,1,65,1,81,1,108,1,111,1,115,1,137,1","launchlarge,115,1","launder,5,1,2,1","launderer,81,1","laundering,1,2,36,1,81,3,84,1","law,3,1,4,3,5,7,12,2,31,3,24,1,27,1,39,1,45,1,47,1,58,4,74,5,78,1,89,2,80,1,81,18,82,1,85,6,90,6,6,1,86,1,95,1,94,1,2,2,98,2,105,2,100,3,103,6,104,1,106,1,107,1,110,1,111,2,115,1,116,1,126,1,130,6,132,2,133,2,134,2,135,1","lawenforcement,103,1","lawler,110,2","lawrence,52,7","laws,4,1,31,2,39,3,58,2,81,1,2,2,98,1,103,1,104,1,111,2","lawsuit,82,1,83,1,91,1","lawsuits,82,1,2,1","lawyer,58,1,81,6,82,1","lawyers,31,1,100,1","lawyersays,115,1","lax,67,1,100,1,103,1,120,1","layered,67,1","layers,71,1,109,1","lazar,37,1","lead,45,1,47,1,66,1,81,2,6,5,102,1,111,1,116,1,126,2,131,1","leader,12,1,27,1,81,2,136,1","leaders,81,2,98,1,130,1","leadership,39,2","leading,37,1,57,1,69,1,81,1,40,1,99,1,101,1,120,1,121,1,136,1","leads,26,1,81,1","league,39,1","leah,71,1","leahy,58,4,98,1","leak,106,1","leakage,31,1","leap,102,9","leaped,81,1","leaping,124,9","leaps,132,1","learn,4,2,89,1,81,1,90,1,110,1,134,1,135,1","learned,45,1,47,1,57,1,77,1,81,1,52,1,105,4,135,1","learning,5,1,71,1,89,1,105,1,100,1","least,3,1,31,1,24,2,29,1,39,1,45,2,47,2,46,2,78,1,89,2,81,4,83,1,84,1,90,1,86,1,95,1,2,1,105,1,102,2,103,1,107,1,111,1,112,1,115,1,118,2,119,1,134,1","leastnowadays,112,1","leave,73,1,89,2,81,1,85,1,102,1,134,1","leaves,56,1,94,1,100,1,131,1,134,1","leaving,12,1,56,1,58,1,71,1,79,1,2,1,70,1,112,1,116,1,131,1,135,1","lecture,100,1","led,36,1,81,1,84,1,90,1,86,1","lee,6,1,86,1","leewalker,115,1","left,81,2,95,1,2,1,70,1,52,1,107,1,117,1,129,1,134,1,135,1","legal,4,1,5,1,26,1,27,1,39,1,89,4,81,1,90,1,91,1,2,3,105,1,101,1,109,1,132,1","legally,105,1,120,1","legend,111,1","legislation,31,1,46,1,56,1,58,5,68,1,74,1,89,1,98,3,106,1,132,4,134,1","legislative,132,3","legislators,100,2","legislatures,74,1","legit,105,1,134,2","legitcompany,81,1","legitimacy,137,1","legitimate,29,1,36,1,72,1,89,4,81,4,83,1,6,1,28,1,52,1,105,3,108,1,109,1,110,1,111,1,114,1,118,2,119,2,130,1,132,1,134,1,137,1","leininger,90,2","lemos,108,1,127,1","lender,26,5,89,1","lenders,100,2","lending,100,1","lends,100,1","lengths,90,1,105,1,107,1","lengthy,103,1","lenovo,102,2","leo,105,1","less,12,1,29,1,37,1,72,1,74,1,89,1,81,1,83,1,85,1,90,1,92,1,86,1,2,2,88,1,28,1,52,1,105,3,99,1,102,1,103,1,111,1,114,1,116,1,117,1,130,1","lesson,105,2","lessonspeople,57,1","lesssecure,40,1","lessthan,91,1","lets,89,1,81,3,86,1,130,1","lett,36,1","letter,3,1,4,2,2,3,114,2","letters,134,1","letting,86,1,127,1","level,5,1,46,2,56,1,57,1,89,1,81,3,85,1,2,4,105,1,100,1,106,1,124,1,130,1,137,1","levels,5,1,85,1,102,1","levelsoldiers,85,1","levenson,81,1","leverage,67,1,77,1,110,1","levi,36,3","levine,52,1","lexington,93,1","lexis,46,1,105,17","lexisnexis,58,1,74,1,105,51,103,1","lexus,103,1","liability,2,2","liable,80,1,70,1","liberties,12,1","libraries,39,1","library,39,1","license,24,3,45,1,47,1,71,2,89,2,81,2,83,1,98,1,105,3,103,1,134,1","licenses,81,3,103,1,130,1","lida,43,2","lie,106,1,111,1","liens,70,1","lies,77,1,89,1","life,26,1,39,1,71,2,51,2,83,1,85,10,70,2,52,1,103,1,135,1","lifeblood,105,1","lifestyle,136,1","lift,116,1","lifting,17,4","liftingpasswords,17,1","lightweight,28,1","liked,81,1","likeiaaca,103,1","likeliest,39,1,132,1","likely,10,2,39,1,57,1,73,1,81,1,105,1,103,1,108,2,112,1,116,5,124,1,125,1,127,1","likened,110,1","likes,82,1,105,1","liketo,112,1","lillie,86,1","lily,51,1","limaburg,70,4","limit,89,1,86,1,2,1,70,1,105,1,116,2,134,2,136,1","limited,10,1,46,1,80,1,2,1,105,1,100,1,102,1,127,1","limiting,52,1","limits,81,1,2,1","linda,43,1","lindner,77,1","line,26,1,39,1,71,1,51,4,89,1,81,1,87,1,90,1,86,1,70,2,105,3,110,1,111,1,112,1,116,1","lines,81,1,82,2,90,1,70,1,130,1","linesmight,85,1","lining,132,1","link,4,1,79,1,85,1,90,1,105,1,106,1,107,2,128,1,109,2,111,1,118,2,135,1,137,3","linked,74,1,85,3,2,1,107,1,128,10,109,1","linking,90,1","links,4,1,29,1,45,2,47,2,74,1,89,1,80,2,81,4,90,1,6,1,106,1,107,2,128,1,109,1,111,1,119,1,120,1,131,2","linux,45,1,47,1,112,1,131,1","linwood,103,1","lion,88,1","lipped,133,1","liquidate,17,1","lisa,43,1","list,13,5,12,1,43,1,46,1,57,1,69,1,77,8,81,1,93,2,92,1,86,10,40,1,99,1,107,1,113,1,115,1,120,1,126,1,137,2","listed,58,1,72,1,77,1,81,2,86,1,70,1,107,1,137,1","listen,93,1","listening,127,1","listing,26,1,65,1,83,1,6,1,105,2","listings,81,1","lists,89,3,86,15,40,1,99,1,113,3,137,1","lit,81,1","litan,79,1,2,2","literally,92,1","little,5,1,71,1,51,1,79,1,81,2,85,2,87,1,92,3,86,3,2,2,105,2,103,1,107,2,109,1,111,2,113,1,115,1,116,1,132,1,134,1,135,3","live,87,1,86,1,2,5,40,1,99,1,103,1,134,1,137,1","lived,71,2","liveexpert,51,1","lives,87,1,100,2,115,1,134,1","living,37,5,39,1,71,1,81,1,86,1,88,1,107,1","llc,56,1,92,1,70,1,52,1","load,51,1,93,1,2,1,109,1","loaded,43,1,81,1,94,1,118,1","loading,81,1","loan,26,11,89,1,105,1,134,3","loans,89,2,111,1,134,1","lobby,133,1","local,4,1,12,2,37,8,74,1,89,1,81,2,85,4,90,3,2,2,40,1,105,2,99,1,103,1,106,1,111,1,130,1,134,2","locale,103,1","locally,89,1,90,1","locate,85,1,94,1","located,4,2,65,1,73,1,74,1,89,1,81,1,85,1,90,1,107,1,108,1","locating,79,1,126,1","location,1,1,12,1,39,1,57,2,72,1,89,2,81,1,82,1,94,1,28,1,107,1,115,1","locations,79,1,90,1,92,1,2,1,105,1,132,1","locators,28,1","lochart,52,1,107,1","lock,83,1,70,1,52,1,109,1","locked,43,1,70,1","lockhart,57,2","locking,89,1,135,2","locks,24,1","lockx,93,2","lodged,6,1","log,29,1,89,2,81,2,82,1,83,1,85,1,30,4,2,2,28,1,105,1,114,1,123,4,130,1,132,1,134,1,133,1","logan,81,1","logged,12,1,89,1,2,1,105,1,107,1","logger,46,1,81,1,30,1,123,1","loggers,46,1,81,1,82,1,30,1,111,1,123,1","logging,89,1,81,1,82,1,2,1,105,1,101,1","loggingsoftware,15,1","logic,100,2","logical,89,1","login,15,1,92,1,105,2,104,1,111,1","logins,79,1,30,1,93,1,123,1","logo,79,1","logon,82,1","logons,82,1","logos,107,1","logs,43,1,79,1,89,1,81,1,93,1,91,1,105,1","lol,137,1","london,39,1,65,2,69,1,84,2,88,1,127,1","lone,116,1","loney,127,1","long,1,1,27,1,51,1,77,1,79,1,81,3,87,1,93,1,90,1,94,3,2,1,88,1,70,1,105,1,100,3,101,1,103,1,107,1,109,1,111,4,112,1,127,1,130,1,132,1,134,3,133,1,136,1","longer,24,1,57,1,79,1,90,1,94,1,52,1","longest,51,1","longtime,81,1,100,1","look,27,1,43,1,67,1,69,2,46,2,77,1,89,2,81,2,83,1,85,2,84,1,30,1,93,1,90,2,86,2,94,2,2,1,70,1,28,2,52,1,105,6,101,1,103,1,107,2,108,1,110,1,111,1,116,3,123,1,126,1,132,2,134,2,137,1","look2me,46,6","looked,51,1,52,1,105,1,107,1,120,1,135,1","looking,12,1,29,1,43,1,51,1,89,1,80,1,81,1,87,1,93,2,94,1,2,1,88,1,52,5,105,5,107,2,109,2","lookout,70,4","looks,51,1,89,2,87,1,30,1,94,1,105,2,111,1,113,1,123,1,124,2,134,3","lookstoogoodtobetrue,6,2","looming,67,4,82,1","looms,57,9","loophole,52,1,132,1","loopholes,57,1,94,9,137,1","loose,81,1","loosely,82,4,105,1,111,1","looted,17,4,81,1","lopez,82,2,2,16","lords,85,2","loren,102,1","los,1,1,26,1,27,1,81,3,115,2","lose,90,2,100,2,102,1,116,1","loses,90,1","losing,31,9,73,1,51,4,30,1,2,1,100,2,123,1","losing—customers,81,1","loss,3,2,10,1,17,1,24,1,77,1,81,2,84,1,90,1,40,1,105,1,99,1,100,1,134,4","losses,3,2,78,1,79,1,89,1,81,3,6,1,2,2,103,1,115,1,130,1,132,1","lost,31,2,24,2,36,1,58,1,68,2,72,1,2,1,105,1,101,1,111,1,114,1,135,1","loteasier,57,1","lotteries,134,1","loud,31,1","loudcash,1,1","louis,6,1","lourdeau,111,1","loverde,102,2","lower,39,1,47,1,100,1,136,1","lowered,43,1,69,1","lt,39,1,57,8,94,8,134,1","ltd,77,1,81,1,83,1,28,1,103,1","lucas,134,1","luck,81,1,115,1","luckily,70,1","lucky,105,1,134,1","lucrative,17,1,90,1,103,1,132,1,135,1","ludlow,70,4","lull,116,1","lulled,89,1","lumping,89,1","lunch,134,2","lure,81,2,85,1,103,1,116,1,118,1,119,1,135,1,137,1","lured,4,1","lures,81,1","lurhq,83,1","luring,121,1","lurk,69,1,111,1","luster,102,1","lutner,112,3","lycos,1,2,113,1,115,1","lycos®,1,1,115,1","lynch,133,5","lynn,135,1","lyric,43,1","lytham,36,1","mac,131,1","macedonia,108,2","machine,46,1,89,5,82,1,30,2,92,1,94,1,88,3,52,1,103,1,108,1,111,1,113,1,120,1,123,2,126,6,127,1,131,2,134,3,137,2","machines,1,2,45,1,47,1,57,1,69,1,46,1,81,1,85,2,30,1,93,1,92,1,94,1,2,1,88,1,28,1,52,5,100,1,108,1,128,1,111,1,115,2,116,1,120,3,123,1,124,1,126,1,131,2","mack,134,1","macromedia,67,2","mader,70,5","mafia,81,2,85,1","magazine,1,1,17,6,39,1,105,1","magazinesaid,17,1","magnetic,28,2,103,1","maguire,2,4","maiden,24,1,72,1,89,2,103,3","maier,90,2,110,2","mail,3,2,13,1,5,1,10,2,17,1,24,1,36,1,37,6,39,2,66,1,57,1,65,1,67,1,69,3,72,4,51,1,78,1,89,19,81,17,85,6,90,3,86,2,94,3,95,1,2,3,70,3,28,2,52,12,105,3,103,1,107,2,108,4,128,2,109,2,110,2,111,16,112,16,113,10,114,1,116,4,118,5,119,3,121,2,122,1,126,1,130,6,131,4,132,5,134,1,133,1,135,12","mailaddresses,81,1","mailbox,72,3,89,1,2,1","mailboxes,89,1,81,1","mailed,89,1,81,2,86,1","mailer,107,1","mailing,132,1","mailings,90,1","mails,29,1,36,3,89,1,81,6,30,1,90,6,6,1,86,1,95,1,2,1,109,2,111,2,116,1,118,5,119,10,123,1,131,1,134,2,135,1","mailsdesigned,103,1","main,26,1,65,8,81,1,94,1,2,1,88,1,104,1","mainframe,133,1","mainly,12,1,111,1,113,1,116,1,122,1","mainstream,28,1","maintain,81,4,40,1,99,1,107,1,109,1","maintains,100,1,133,1","maintenance,43,1,89,1,133,1","maj,114,1","major,69,1,79,1,89,2,81,2,83,2,84,1,2,1,88,1,70,2,28,2,105,1,101,2,102,2,106,3,110,1,111,2,116,1,129,1,134,1","majority,39,2,68,1,90,1,94,2,105,1,111,1,120,2,121,1","maker,77,1,81,4,83,1,102,2,110,1,111,1","makerecommendations,40,1","makers,37,1,77,1,83,1,30,1,103,1,120,3,123,1","makersthat,77,1","makertrend,57,1","makesure,29,1","making,39,1,58,4,51,1,79,1,81,3,82,2,90,1,86,1,94,2,2,3,28,2,103,1,108,1,115,1,118,1,130,1,134,2","makinge,112,1","malaysia,81,1","male,3,1,39,1","males,111,1","malevolence,37,1","malevolent,100,1","malicious,10,8,37,4,57,1,65,4,67,1,69,2,77,1,81,1,83,12,93,2,91,1,94,1,95,5,2,3,88,1,52,2,105,4,103,1,107,4,109,5,111,4,116,6,120,1,124,1,125,4,131,3,132,3,137,5","mall,12,1","malware,15,1,37,1,56,1,57,1,46,1,83,1,93,6,107,1,127,2,137,2","manage,69,1,89,1,86,1,114,1,120,1","managed,10,1,56,15,81,1,40,1,70,1,105,1,99,1","management,26,1,56,1,57,1,67,1,77,1,81,2,82,1,94,1,40,1,28,1,99,1,101,1,111,1,114,1,127,2","manager,26,1,27,1,81,4,2,1,52,3,116,1,127,1,131,2,134,1,135,1","manages,67,1,94,1","managing,57,1,103,1,120,1","mandatory,93,1,105,1","maneuvers,91,1","manhunt,81,1","manipulate,106,1","manipulating,26,1","manipulation,80,2","manner,70,1,105,1,132,1","mantovani,78,1,81,17,103,1,130,1","manually,105,1","manufacture,103,1","manufacturers,102,1","manufacturing,81,1","manyhackers,40,1","map,27,1,81,2,130,1","mapquest,86,1","marc,105,1","march,3,1,39,13,67,1,51,5,78,1,81,10,84,1,105,2,106,1,107,1,128,1,109,2,112,1,126,1,134,1","marcon,105,2","marcus,90,1","marcy,87,1","margaret,86,1","margin,81,1","marginof,29,1","marin,134,5","marital,114,1","marius,81,1","mark,81,1,90,1,2,1,105,1,103,1,108,1,115,1,116,1,133,1","marked,77,1","market,26,1,39,2,56,3,57,1,58,1,46,1,79,2,81,1,2,1,28,5,105,4,102,11,103,17,111,1,116,2,121,1,136,2","marketed,136,1","marketers,105,1","marketing,27,1,57,1,72,1,46,10,89,2,81,1,90,2,94,1,40,1,52,1,99,2,107,1,109,1,112,1","marketplace,24,1,45,1,47,1,65,5,81,1,130,1","marketplaces,81,1,103,1","markets,57,1,51,1,81,1,85,1,105,1,102,1,116,1","marketversion,103,1","marking,10,1,124,1,135,1,136,1","markmonitor,28,1","marks,90,1,101,1","marksunner,116,1","marnie,39,1","marred,134,1","married,109,1,121,2","mart,26,1","martialdenial,85,1","martin,111,3,112,3","martinez,71,1","marty,77,1","mary,70,1,52,1","mask,105,1","masked,105,1","masks,6,1,2,1,105,1","mason,81,1","masquerades,81,1,130,1","masquerading,85,1","mass,81,2,93,1,100,1,107,1,128,1,109,1,116,1,132,1","massachusetts,115,1,127,1","massaging,100,1","massive,43,5,30,7,93,2,92,11,107,1,108,1,123,3","masspatching,116,1","master,85,1","mastercard,26,1","mastercards,103,1","mastered,93,1","masterminding,36,1","masters,87,1,111,1","mastores,81,1","mat,133,1","match,43,1,87,1,6,9,105,1","matched,30,1,123,1","matches,89,1","material,12,1,119,1","materials,39,1,6,1,134,1","mathematically,105,1","matrix,105,1","matt,39,1,57,1,94,1,105,1,127,1","matter,12,1,58,1,81,1,93,2,92,1,86,2,88,1,105,1,107,1","matters,100,1,111,2","matthew,81,2,132,1","matured,85,1","maturing,46,1,136,1","max,39,2,51,1","maximize,85,1,114,1","maximum,27,1,80,1","maxing,12,1","maybe,71,1,81,2,110,1,134,1","maynot,29,1","mayunknowingly,40,1","mcafee,67,1,95,3,101,2,120,1","mccabe,27,2","mccarter,81,2","mcclanahan,111,1","mccormick,78,1,81,1","mccullagh,74,1,112,1","mcdonald,81,1","mcewen,70,2","mckay,81,2,82,1","mckenzie,81,2","mclaughlin,105,12","mclean,81,1","mcniven,80,5","mcville,70,4","md,67,1","mean,89,1,105,1,100,1,112,1,116,1,132,1","means,10,1,37,2,57,1,79,1,89,2,81,1,6,1,40,1,52,1,99,1,108,1,109,1,116,2,124,1,127,1,134,1","meant,89,1,111,1,116,1","meantime,52,1","meanwhile,46,1,81,1,82,1,85,1,2,2,40,1,99,1,102,4,128,1,121,1,124,1,132,1,134,1","measurable,56,1","measure,58,1,81,1,2,3,98,2,105,1,111,1","measurement,136,2","measures,10,1,67,1,81,2,2,1,40,2,52,1,99,2","meat,88,1","mechanism,86,1,107,1","mechanisms,77,1,127,1","media,29,1,37,1,39,4,43,4,56,1,57,1,58,1,67,2,69,1,51,1,77,1,78,1,81,1,83,1,84,1,93,1,94,1,95,1,88,1,105,3,100,2,101,1,123,1,126,1,130,1,132,1,136,2,137,1","medical,72,1,118,1,134,3","medicines,28,9","medium,47,1,93,1,107,1,121,1","medley,98,1","meet,12,1,39,1,56,1,46,1,81,1,103,1","meeting,68,1,112,1,130,1","meets,56,1,6,9,100,1","mega,107,1","melbourne,70,4","mellon,1,1,115,1","melnick,79,2,2,1,103,1","meltdown,100,1","member,5,1,27,4,81,14,2,2,52,1,105,1,103,1,133,1,135,1","members,31,1,36,1,78,1,79,1,81,43,85,2,90,1,28,1,106,1,107,1,115,2,130,6,133,1","membership,78,1","memberunderground,103,1","memory,57,1,67,1,124,7,137,1","men,15,1,5,1,39,4,101,1,128,1,130,1","menacing,56,1,125,1","menacinggroans,91,1","mendham,81,1","menlo,109,1","mention,51,1,40,1,99,1,100,1","mentioned,89,1","mentor,70,4","menu,65,1,73,1,74,1","merar,67,1","merchandise,81,5,85,1,134,1","merchandisepurchased,85,1","merchandise—the,81,1","merchant,6,1","merchants,13,1,89,1,90,1,28,1,100,1,103,2,109,1","merchants—maybe,81,1","merck,81,1","mercury,81,1","mere,112,1","merely,104,1","merge,10,1","merged,130,1","merger,102,3","mesh,100,1","mess,56,1,52,1,134,2","message,3,1,37,3,43,1,79,1,81,7,82,1,85,1,90,1,95,2,103,1,107,1,110,1,130,3,131,1,137,4","messagelabs,111,2,116,2","messages,10,3,37,1,39,1,45,1,47,1,67,1,81,9,91,2,28,1,52,6,107,1,108,2,109,2,110,2,111,2,112,5,116,2,120,1,122,2,125,2,130,4,132,2,137,2","messaging,3,1,13,5,39,2,57,1,77,1,81,2,93,6,103,1,122,1,137,2","messenger,93,3","met,87,1,88,1","metastasized,111,1","mete,81,1","meth,134,1","methamphetamine,134,1","method,13,1,56,2,81,1,85,1,126,1","methods,10,1,29,1,43,1,81,1,82,2,6,1,52,1,107,1,110,1,111,1,130,1,135,1","metrics,136,1","metrix,39,3","mexico,107,1,134,3","miami,82,1,2,3,115,1","michael,29,1,81,2,102,1,106,1,122,1","michigan,79,1","micro,57,1,30,2,2,1,123,2","microcosm,2,1","microprocessor,28,1","microsoft,12,1,37,1,66,1,57,6,69,2,77,1,81,6,83,1,30,1,93,6,91,14,94,1,95,5,52,1,107,1,128,2,109,1,110,5,111,1,112,1,116,4,118,2,120,2,123,1,125,2,127,3,131,17,132,2,137,1","microsystems,100,1","mid,58,1,71,1,81,1,85,1,40,2,99,2","middle,81,1,82,2,105,1,133,1","midwest,106,1","might,31,2,27,1,43,1,45,2,47,2,67,1,51,1,89,3,81,8,85,1,94,1,2,6,28,1,105,1,100,3,103,5,106,1,111,2,112,1,116,1,118,1,134,1,133,1","mike,26,5,98,1,131,1","mikko,52,1,107,1,109,1,124,1","mildly,52,1","mile,57,1","miles,51,1,81,1,85,1","milestones,81,1","military,12,1,67,1,69,3,81,1,101,20,114,6,117,12,126,11","mill,70,8","millenium,30,1,123,1","million,3,6,13,1,10,4,29,1,17,1,31,1,26,1,39,15,78,3,79,1,89,3,81,9,83,1,84,12,90,1,91,2,6,1,86,1,2,4,88,1,105,6,101,3,102,1,103,3,104,11,107,1,109,1,110,2,111,1,112,7,113,2,114,1,116,2,125,2,129,2,130,5,134,1,136,7","millionin,103,1","millions,4,1,26,1,77,2,81,2,30,2,91,1,2,2,88,1,28,1,105,1,101,1,103,2,107,2,111,4,114,1,123,2,129,5,134,1","mills,121,1","milwaukee,105,1","mimail,81,3","mimicking,119,1","mimics,94,1,137,9","mind,58,1,51,1,89,1","minded,81,1","mindful,2,1","mindlessly,111,1","mindtrip,103,1","mine,12,1,24,1,100,1,103,1","minibug,51,2","minimal,105,1","minimize,45,1,47,1,89,1","minimizing,2,1","minimum,89,1,81,1,40,1,70,1,99,1,103,1,134,1","minimums,70,1","minneapolis,105,1","minor,51,1","minority,5,1","minus,29,1","minute,81,1,103,1,127,1","minutes,12,3,17,1,39,1,71,1,51,1,89,1,40,1,88,4,99,1,105,2,107,2,117,1,127,14,134,1","miracle,43,2","miraculously,51,1","mirc,81,1","mirror,52,5,105,1,118,1","miscellaneous,39,1,89,1","mischief,130,1","misclassify,2,1","misconfigured,52,1","misdirect,2,1","mishandled,58,1","mishandling,31,1","mislabel,4,1","misplace,100,1","misplaced,81,1","misrepresented,81,1","missing,3,2,39,1,56,1","mission,4,1,81,1,114,1","mistake,89,2,105,1","mistakenly,4,1","mistakes,70,1","mistrust,81,1","misuse,98,1,134,1","misused,4,1,103,1","mitchell,70,16","mitglieder,52,1,107,2","mitigating,105,1","mitnick,5,1,81,1","mitsui,84,2,88,1","mix,93,1,107,1","mixed,132,2","mm,95,4","mmn,103,1","mmv,68,1","mob,78,9,81,4,130,2","mobbed,130,8","mobile,39,6,57,18,81,14,40,1,99,1,124,5","mobiledevices,57,1","mobiles,57,1","mobilethreats,57,1","mobs,81,8,130,6","mobsters,5,1,81,1,130,1","model,81,1,85,2,105,2,100,1","modeling,2,1","models,103,1","modem,81,1,52,1","moderate,10,1,81,1","moderators,81,1,130,1","modes,85,1","modestly,89,1","modified,66,1,69,1,112,1,116,1,133,1","modifying,132,1","modular,10,2,83,1","moen,12,2","mogul,115,1","mole,79,2","molestation,3,1","moment,17,1,81,1,93,1","moments,2,1","mon,80,1,112,1,135,1","mona,43,1","monchamp,81,8","monday,72,1,80,1,6,1,94,1","monetary,85,2,103,1,116,1,134,2","money,1,1,7,8,17,3,36,2,37,1,39,1,66,1,65,2,67,1,68,1,51,1,89,2,81,12,82,1,85,3,84,1,30,1,90,3,92,1,94,1,2,3,88,4,105,3,100,2,103,1,104,1,107,2,108,1,109,1,111,2,115,2,116,6,123,1,129,1,130,1,134,4,136,1","money—those,130,1","moniker,81,1,93,1","monitor,29,1,45,1,47,1,67,1,46,1,89,5,81,3,86,1,28,1,106,2,109,1,112,1,114,1,130,1,134,1","monitored,39,1,79,1,81,1,92,1","monitoring,89,5,81,1,83,1,70,9,28,1,98,1,105,2,121,1","monitors,45,1,47,1,46,1,81,1,120,1","monster,6,5","monstrous,5,1","monterey,130,1,135,1","montereyherald,135,1","montezemolo,29,1","month,1,1,10,1,26,1,36,1,37,1,39,1,72,1,81,2,83,1,90,1,94,1,2,1,52,2,98,1,105,5,103,2,104,1,106,1,128,1,109,2,111,1,115,1,118,1,119,1,122,1,124,1,134,1,136,2,137,1","monthand,91,1","monthly,39,1,89,1,81,1,90,1,99,1,105,3,112,1,119,9,132,1,134,1,135,1","months,10,2,24,2,27,1,36,3,37,4,69,1,46,1,79,1,89,2,81,2,85,1,93,1,90,3,95,1,2,2,70,1,28,5,105,2,102,1,103,2,104,1,109,1,110,1,111,2,115,1,116,1,122,1,125,3,134,5","monumental,105,1","moore,70,9","morano,105,3","moreawareness,85,1","morecarefully,57,1","morefrequently,57,1","moreof,116,1","moreover,10,1,29,1,37,1,56,1,86,1","morerefined,103,1","moresophisticated,85,1,103,1","morethan,91,1","morgan,69,1","morgantown,90,1","morita,84,2","morning,12,1,70,4,117,1,132,1","moroccan,128,1","morocco,128,1,115,1","morphed,82,1","morphing,90,1","morris,37,4","mortar,2,1","mortgage,71,1,89,7,70,2,105,1,100,1,134,1","mortgages,58,1","moscow,103,2","mostly,12,1,81,1,85,1,88,1,111,1,121,1,130,2","mother,89,2,81,1,103,2,131,1,135,1","mother’s,24,1,72,1","mothers,103,1","motivated,65,1,116,3","motivation,88,1,128,1,116,2,125,1","motive,46,1,52,1,116,1","mountain,108,1,110,2","mounting,106,1,134,1","mouse,81,2,105,1","mousetrap,81,1","mousetrapping,39,1","mouth,110,1","move,45,1,47,1,56,1,57,1,77,1,79,1,85,1,93,1,28,1,100,1,101,1,103,3,109,1,111,1","moved,81,4,82,1,94,2","moves,82,1","movie,91,1","moviefone,137,1","movies,4,2,39,1,111,1","moving,10,1,57,1,79,1,80,1,81,1,85,1,93,1,94,4,126,1","mozilla,37,1","mr,103,6,106,3","ms,103,1","msblast,81,1,125,1","msft,77,3","msn,12,1,79,1,93,2,109,2","msnbc,39,5,79,7,118,4,131,3","mst,72,1","mueller,81,1","mugged,81,1","mule,85,3","mules,85,4","multi,5,1,27,1,130,1","multiagency,133,1","multibillion,69,1","multifactor,82,1,28,2,105,2","multifunction,83,1","multinational,5,1,81,1","multiple,3,1,39,1,81,1,90,1,92,1,40,1,99,1,100,1","multipurpose,10,1","murkiness,56,1","murky,125,1","mushrooming,83,1","music,4,2,43,1,67,1,81,1,93,1,90,2,2,1,28,1,111,1","muta,51,5","mutants,95,1","mutate,40,1,99,1","mutual,90,1,2,1","muzak,51,3","muzzfuzz,81,2","mydoom,40,1,52,1,99,1,107,13,128,1","myfip,83,1","mynetwatchman,52,1","myriad,111,1","myself,51,1","myspace04,137,1","mysterious,2,1,88,1","mystery,107,1","mythology,85,1","mytob,128,7","n2h2,39,4","nabbed,128,1,132,1","nabbing,12,1","nadir,132,1","nagel,103,1","naive,112,1","naďve,105,1","naively,2,1","name,12,1,24,6,26,7,65,1,67,1,72,2,89,10,81,4,82,1,83,1,85,1,87,1,30,1,90,2,86,9,94,2,2,6,70,1,28,1,105,1,103,5,107,3,109,1,110,1,111,1,123,1,124,2,132,1,134,3,135,1","named,15,1,43,4,81,2,85,1,84,1,92,1,86,2,94,1,2,1,106,1,132,1","nameprotect,28,1","names,15,1,4,1,12,1,39,1,66,1,68,1,46,1,89,1,81,11,87,1,30,3,90,2,86,4,2,2,28,1,98,1,105,6,103,3,104,1,110,1,113,1,123,3,130,2,132,1","napped,39,1","naraine,43,1,93,1,95,1,123,1,132,1,137,1","narcotics,85,1","narrative,51,1","narrowband,136,6","nasa,12,1,116,1","nasaa,3,3","nascent,2,1","nasdaq,136,1","nastier,81,1,130,1","nasties,93,1","nasty,43,4,93,2,88,1,137,1","nathaniel,106,1","nation,47,1,89,1,85,1,90,2,28,1,106,2,107,1,109,1,111,1","nation’s,24,1,45,1","national,3,3,4,1,5,1,29,1,39,11,58,1,65,3,69,2,81,2,84,2,91,1,6,1,86,1,28,1,98,1,100,1,104,1,106,3,128,1,109,1,118,3,119,1,120,1","nationalism,95,1","nations,102,1","nationwide,12,2,24,2,89,1,90,1,118,1,134,1","native,115,1","natural,85,1,100,1,113,1","naturally,89,1,81,1","nature,56,1,81,2,105,2","navigate,56,2","navy,67,1","nazario,93,8","nbc,118,1,131,1","nc13,3,1","ncmec,3,1,39,5","ncsa,118,1,120,4","nctimes,133,1","neal,85,1","near,51,1,126,1","nearly,1,1,3,2,27,1,36,1,37,3,39,4,73,2,51,1,46,1,77,1,79,1,89,1,81,1,90,1,40,1,99,1,102,1,103,1,106,1,108,1,111,2,118,2,122,1,125,1,132,1,134,2,133,1","nearlytwo,103,1","necessary,12,1,40,1,99,1,106,1","necessity,120,1","ned,28,1","needattention,87,1","needed,65,1,89,1,81,1,103,1,111,1,118,1,135,2","needing,52,1","needs,31,1,24,1,56,1,69,1,89,1,40,1,99,1,105,1,103,1,110,1,113,1","nefarious,89,1,132,1","negative,105,1,130,1,134,1","negatively,100,1","negotiate,58,1","neighborhood,2,1","neighboring,74,1","neighbors,87,1","neither,81,1","nerds,85,1","nest,2,1","nesters,121,2","net,13,1,26,9,39,3,83,9,88,4,108,9,112,1,120,1","netbackup,67,2","netframeworks,81,1","netherlands,104,3,130,2","netratings,136,15","nets,108,1,132,1","netsky,107,3","netspeed,136,2","netted,69,1,111,1","netting,129,1","netwoks,13,1","network,15,1,4,2,5,1,10,2,31,1,27,1,43,1,56,1,57,6,67,2,69,12,74,5,46,1,77,1,81,13,85,7,84,1,93,6,2,2,40,16,88,1,28,1,52,2,99,18,105,7,104,1,106,1,107,2,108,1,111,5,112,4,113,12,115,1,116,2,118,1,125,2,126,4,127,8,130,2,137,2","network—and,105,1","networked,105,1","networking,77,2,40,1,52,1,99,1","networkingequipment,77,1","networkingsoftware,77,1","networkprovides,40,1","networks,13,1,15,2,4,7,5,1,10,4,39,3,56,2,66,1,57,2,65,1,69,1,77,1,81,3,85,1,93,4,90,1,40,4,99,4,105,1,100,1,101,2,104,2,106,4,107,1,128,1,111,7,112,1,113,2,115,2,116,1,117,10,118,2,125,1,127,1,130,1,137,1","networld,43,1","neurosurgeon,12,1","neutral,105,1","never,29,1,31,1,26,1,89,6,81,1,85,2,87,1,90,3,91,1,6,1,86,1,105,1,107,2,111,1,115,3,118,1,120,1,127,1","neveractually,115,1","nevertheless,89,1","nevis,103,1","new,4,2,10,3,12,1,29,2,17,2,31,1,24,5,26,8,37,31,39,2,43,1,45,2,47,2,57,1,67,1,69,7,71,2,72,1,73,2,74,2,46,6,77,2,89,8,81,12,82,7,83,3,85,1,87,1,30,1,93,3,90,4,92,1,6,3,94,3,95,7,2,2,40,3,88,2,28,4,52,2,98,1,99,3,105,6,100,1,103,7,104,1,106,11,107,2,108,1,109,15,110,1,111,6,112,1,113,1,115,1,116,5,118,4,120,2,122,3,123,1,125,2,126,1,127,2,129,1,130,4,131,1,132,3,134,3,135,2,136,1,137,5","newark,78,2,81,7,130,1","newcomers,103,1","newer,52,1","newest,85,1,137,1","newfriends,112,1","new—just,130,1","newopportunities,103,1","newport,70,4","news,1,8,3,1,5,1,10,1,29,4,17,5,36,2,37,28,43,7,45,1,47,1,66,2,57,10,58,5,65,2,67,7,68,13,69,5,73,2,74,2,51,9,46,1,82,1,83,1,84,1,30,7,93,7,92,1,86,1,94,9,95,4,40,1,28,2,98,1,99,1,105,1,101,1,102,1,104,1,107,1,108,1,128,1,110,1,111,1,112,1,113,1,115,5,116,2,118,1,120,4,121,1,123,2,124,1,125,1,126,1,127,1,132,1,135,1,136,1,137,2","newsfactor,85,1","newsfrom,115,1","newsletter,87,1","newsmaker,116,1","newspaper,71,1,105,2","newspapers,81,1,105,1","newsroom,3,1","newswire,72,3","newswires,77,2","newvendors,103,1","nexis,46,1,105,17","next,3,1,39,1,43,1,45,1,47,1,57,1,58,2,65,1,74,1,46,2,82,4,85,1,87,2,90,1,94,1,95,1,2,3,52,5,98,1,105,3,100,1,102,1,103,1,112,1,131,1,132,2","nextlocation,85,1","nforcershq,91,3","niall,82,1","nic,81,1","nice,71,1,81,1,135,1","nichelman,134,5","nicholas,43,1,126,1","nicholson,70,4","nick,111,1,117,1","nickname,103,1,128,1","nicknames,81,2,130,1","nicolas,81,5","nics,81,1,130,1","nielsen,39,1,136,13","nielson,39,1","nifty,92,1","nigeria,108,1","nigerian,3,1,134,1","night,12,1,51,1,105,1","nightmare,2,1,106,1,111,1","nima,43,1","nine,39,1,81,1,132,1","ninety,10,1,29,1,27,1","niscc,65,4,69,2","nj,27,1","nobody,81,1,107,2,127,2,130,1","node,15,4","nokeystroke,117,1","nokia,57,5","nominal,81,1","non,31,1,39,1,56,1,81,1,86,1,40,1,99,1,105,1","noncompliance,81,1","noncriminal,103,1","nondescript,12,1","nondiscriminating,134,1","none,90,1,107,1","nonexistent,81,1","nonprofit,46,1,79,1,81,1,90,1,94,1,109,1,120,1","nonpublic,105,1","nonstandard,81,1","nonstop,30,1,123,1","nook,111,1","noon,133,2","nop,39,1","nor,89,3,81,1,86,1","norfolk,71,1","norlin,100,1","norm,85,1","normal,51,1,81,1,92,1","normalize,90,1","normalizes,39,1","normally,81,1,117,1,131,1","north,3,2,27,1,37,1,2,1,52,1,105,1,106,1","northeast,87,1,106,1","northern,37,8,81,2,84,2,70,4,134,1","northjersey,37,8","northrop,101,1","norton,45,4,51,2,2,2,101,1","norwood,81,1","nostalgically,5,1","nostra,81,1","notably,6,1","notat,40,1","notations,134,1","notch,29,1,2,4,111,1","note,37,1,51,1,89,1,85,1,30,1,88,1,123,1,136,2","notebooks,102,2","noted,31,1,65,1,77,1,100,1,122,1","notes,51,1,81,4,100,1","noteworthy,37,1,122,1","nothing,69,1,81,1,90,2,2,1,28,1,105,2,100,1,107,2,111,1","notice,37,1,43,1,81,1,105,1,103,1,107,1,111,1,112,2,134,2,133,1","noticed,67,1,30,1,93,1,105,1,111,1,123,1","notices,27,1,93,1","noticias,107,1","noticing,13,1","notification,1,2,31,1,58,5,74,1,98,1","notified,24,1,81,2,92,2,105,1,114,1,134,3","notify,24,1,58,1,98,1,105,1","notifying,105,1","noting,17,1,57,1,30,1,123,1,134,1","notion,100,1,111,1","notmaking,103,1","notoriety,116,3,125,1","notorious,81,1,30,1,123,1","notoriously,105,1","notpursued,85,1","notwithstanding,132,1","nov,1,1,24,1,36,1,66,1,80,1,82,1,94,1","novartis,81,1","novato,134,2","novel,126,1","november,1,1,29,1,17,1,43,2,57,1,58,2,67,1,69,1,72,1,77,1,81,4,83,1,90,1,86,1,94,1,95,1,28,1,102,1,106,1,122,10,132,1,134,1","nowliving,115,1","nsa,100,1","ntrt,136,1","nuclear,12,1","nuisance,89,1,94,1,105,1,111,1","numa,51,2","number,10,3,31,1,24,8,26,13,27,2,36,1,37,2,39,1,56,1,66,1,57,1,58,1,67,1,69,1,71,2,72,1,46,3,77,1,78,1,89,12,81,6,87,1,93,1,90,1,6,1,86,2,94,3,2,3,70,2,28,2,105,4,100,1,103,3,104,1,106,1,108,3,109,3,111,4,112,2,114,1,116,1,117,1,122,3,124,1,125,4,126,4,129,1,130,2,131,1,132,1,134,9,135,3,136,2","numbered,78,1","numberof,112,1","numbers,5,2,24,2,26,1,36,1,57,4,71,2,72,1,74,1,77,1,78,1,79,2,89,5,81,37,85,1,6,1,2,5,28,1,98,1,105,8,103,13,104,1,108,1,109,1,110,1,111,2,112,1,114,2,116,2,120,1,129,1,130,2,132,3,134,6,133,1","numbersas,29,1","numbers—can,100,1","numbers—of,105,1","numberspassed,103,1","numerical,109,2","numerous,43,1,82,1","nw,24,1","nw3c,6,2","oakbrook,70,4","obituaries,37,12","object,81,1","objection,58,1","obscenity,4,2,39,2","obscure,2,1,106,1,111,1","observed,10,3,57,1,103,1","obsolete,113,1","obstacles,28,1,134,2","obtain,12,1,24,1,89,1,70,3,105,1","obtained,31,1,89,1,81,3,88,1","obtaining,81,1,116,1","obvious,29,1,100,1","obviously,89,2","occasion,81,1,103,1","occasionally,26,1,83,1","occasions,81,1","occupied,81,1","occur,3,1,31,1,89,1,85,1,134,1","occurred,24,1,81,1,114,1","occurrence,27,1","occurring,31,1","oceans,81,1","oct,15,1,81,1,130,1","october,3,1,5,1,29,2,37,1,39,2,45,1,78,2,79,1,81,8,84,1,93,1,90,1,91,1,6,1,95,1,2,1,28,1,52,1,103,1,115,1,120,2,130,1","odds,26,1,103,1,112,1","oem,107,1","oemcd,107,1","of3,115,1","ofadware,43,1","ofamericans,29,1","ofbragging,116,1","ofcobs,103,1","ofcompanies,77,1","off,1,1,5,9,12,1,17,1,43,1,57,2,74,1,46,1,79,1,89,2,81,2,85,1,93,1,90,2,92,1,94,1,2,1,28,1,52,2,105,1,100,1,102,1,103,2,106,1,107,1,109,1,116,1,126,1,127,1,130,1,134,4","offend,51,1","offenders,82,1","offenses,36,1","offer,45,2,47,2,56,1,81,3,90,1,2,1,40,1,98,1,99,1,115,1,134,1","offered,45,1,47,1,57,1,74,1,81,2,70,1,28,1,103,1,115,1,130,1","offering,12,1,31,1,39,1,56,3,79,1,81,2,82,1,90,1,105,1,102,1,103,3,111,1","offerings,5,1","offermarked,115,1","offers,72,1,46,1,89,6,81,1,82,1,103,1,107,1,110,1","office,4,1,12,3,72,4,74,2,77,1,89,1,81,7,90,1,2,1,40,1,99,1,105,4,104,1,106,1,116,1,130,1,131,1,134,5,133,2,135,1","office’s,72,1","officer,65,1,67,1,74,1,77,1,79,1,89,2,81,1,90,1,52,2,100,1,109,1,110,1,114,3,116,2,124,1,131,1,134,1","officers,12,1,84,1,106,1,114,11,132,2","offices,43,1,74,1,81,1,109,1","official,4,1,72,1,106,1,109,1,112,3","officially,1,1","officials,5,1,45,1,47,1,67,1,72,1,81,4,83,2,90,1,6,1,94,1,28,1,105,1,106,1,111,1,114,1,115,1,133,2","officialscrack,1,1","offline,39,1,89,1,94,2,2,5,116,1","offshoots,128,1","offshore,30,1,123,1","ofidentifying,112,1","ofinstitutional,103,1","ofits,112,1","oflife,51,1","ofmore,1,1","ofpersonal,85,1","ofprofessional,85,1","ofraw,103,1","ofsecond,85,1","ofsecurity,29,1","ofsorts,85,1","ofspam,112,1","ofspyware,92,1","oftargeted,116,1","ofthe,43,1,85,1,103,1","oftheir,57,1","ofthese,57,1,114,1","ofthose,114,1","ofusers,43,1","ogilvyone,121,1","oh,51,1","ohio,29,1,26,1,43,1,81,1,115,2","ohlhorst,56,1","oil,82,1,106,1","okay,86,1","old,1,1,3,1,5,1,12,2,24,1,26,12,74,1,89,1,81,2,87,1,86,3,2,2,100,1,104,3,128,2,111,1,113,1,115,2,134,1,133,1","older,39,1,28,1,121,1,124,1,131,2,135,2","olds,39,5","olive,90,1","oliver,116,1","oltsik,81,2","omar,81,2,130,1","ominous,130,1","omissions,72,1","onal,24,10","once,10,1,43,1,45,1,47,1,57,1,71,2,72,1,46,1,89,2,80,1,81,9,83,1,85,2,93,1,2,5,40,1,70,1,99,1,105,1,103,1,107,2,124,1,126,1,130,1,132,1,134,5,137,2","onconsumers,43,1","onepersonally,115,1","ones,24,1,57,1,52,1,105,1,108,1,111,1,130,1,134,1","one—yours,130,1","onfederal,103,1","ongoing,56,2,105,1,104,1,128,2","onguardonline,6,1","online,3,4,13,2,15,1,5,1,10,1,12,2,29,22,17,18,24,2,26,14,27,2,36,1,37,1,39,19,43,1,45,2,47,2,68,8,69,1,73,9,77,2,79,2,89,9,81,24,82,7,83,2,85,6,87,2,30,2,93,2,90,9,92,2,6,6,86,11,94,10,2,35,40,1,70,1,28,44,99,2,105,1,103,3,104,4,107,1,108,6,109,1,110,5,111,7,113,1,114,1,115,2,116,1,118,14,119,2,120,14,121,17,123,2,127,1,130,6,131,2,132,1,134,2,135,1,136,7,137,1","onlineauctions,103,1","onlinecriminals,29,1","onlineis,29,1","onlinesatellite,115,1","onlineto,85,1","onlyabout,103,1","onremote,112,1","onsecurity,43,1","onshared,29,1","onsite,101,1","onslaught,116,1","onslaughts,108,1","ontario,81,1","onthe,116,1","onto,12,1,39,1,43,3,57,2,77,1,89,1,81,1,82,1,93,1,90,1,94,1,105,1,103,1,109,1,125,1,137,1","ontoservers,103,1","ontousers,1,1","open,24,2,67,1,69,1,71,1,72,1,74,4,89,7,81,5,87,1,90,1,2,3,70,3,52,6,105,1,100,1,131,1,134,2,137,1","opened,24,1,79,1,81,1,2,2","opening,4,1,10,1,45,1,47,1,85,1,95,1,2,1,106,1,111,2,127,1,134,1","openness,106,1","opens,46,1,132,1,137,1","openvpn,81,1","opera,131,1,132,1","operate,81,2,85,2,91,1,37,1","operated,3,1,5,1,81,1,107,1,130,1","operates,1,1,85,1","operating,26,1,45,2,47,2,57,1,67,1,69,8,77,2,79,1,89,1,81,3,85,1,30,1,52,1,99,1,106,1,128,1,109,1,116,1,123,1,124,1,130,1,131,3","operatingsystems,57,1","operation,5,2,43,5,69,1,79,2,81,5,85,4,84,1,30,1,90,1,94,2,103,4,111,1,123,1,130,1,132,1,134,1","operational,114,1","operationalize,93,1","operations,5,5,69,1,79,1,81,2,94,1,52,1,105,1,107,2,127,1,131,1,134,1","operator,81,1,115,1","operatornetwork,57,1","operators,43,1,57,4,81,1,85,1,105,1,111,3","opined,132,1","opinion,39,1","opportunities,2,1,134,1","opportunity,56,11,58,1,46,1,107,1","opposed,74,1,118,1","ops,81,3","opt,29,1,89,8","optimistic,106,1,132,1","option,81,2,82,1,99,1","options,82,5","oracle,67,1,69,1","orange,105,1","orbit,115,1","orbots,115,1","orchestrate,111,1","orchestrating,69,1","order,43,2,65,1,68,1,89,2,81,2,90,1,70,1,28,1,99,1,101,3,110,1,115,1,134,2","ordered,29,1,115,3,130,1,134,2","orderof,103,1","orders,85,1,115,1","ordinary,111,1","ordination,65,1,69,1,77,1","orfacilitating,91,1","orfinancial,29,1","org,3,3,39,1,94,1,103,1,114,1,118,1","organised,81,1","organization,5,2,26,1,27,1,39,1,79,1,81,11,85,1,2,1,40,1,99,1,105,1,130,1","organizations,65,3,72,1,46,1,77,1,81,2,6,1,105,1,101,1,116,1,130,1,134,1,135,1","organize,12,1,85,1","organized,5,11,66,1,69,1,79,1,81,12,83,1,85,2,84,1,88,1,107,16,108,2,111,1,130,3","orhandwriting,29,1","oriented,1,1,57,1,105,1,134,1","origin,105,1","original,89,2,81,1,94,1,104,1,111,1,130,1","originate,81,2,82,1","originated,10,1,89,1,81,1,130,1","orleans,115,1","ormarketing,40,1","ormules,85,1","orrin,81,1","orservices,134,1","orvirtual,68,1","orvirus,112,1","orwhat,1,1","orwindows,57,1","osama,111,1","oscar,51,5","oscars,51,1","otherdevice,57,1","otherforms,57,1","othermembers,103,1","othermisleading,43,1","otherprivate,114,1","otherprogrammers,85,1","otherraw,103,1","othervendors,43,1","otherwise,12,1,121,1","ought,111,1","ourin,112,1","ouroperational,114,1","ourpersonnel,114,1","outage,106,1","outages,81,1","outand,87,1","outbound,111,1,112,1","outbreak,52,1,107,3,122,4,125,1","outbreaks,116,1","outcry,89,1","outdid,51,1","outer,81,1","outfits,43,1,117,1","outfitted,74,2","outgoing,112,3,135,2","outgoingconnections,112,1","outgrown,129,1","outlawed,11,8,74,8","outlaws,5,1","outlets,81,1","outlined,85,1,105,1","outlook,69,1,131,1","outperform,105,1","outrage,111,2","outright,100,1","outset,100,1,109,1","outside,4,2,72,1,74,1,81,1,85,1,94,1,40,1,99,1,105,2,118,1","outsource,81,1,40,1,99,1","outstanding,24,1,89,3","outstripsthat,68,1","outthe,87,1","oven,51,1","overall,46,1,70,1,37,1,102,2,112,1","overboard,40,1,99,1","overburdened,103,1","overcharged,134,1","overcoming,134,1","overconfident,81,1","overdrawn,134,1","overdue,105,1","overflow,67,5","overflows,93,1","overlook,111,1","overlooked,57,1","overly,82,1","overmatched,105,1","override,81,1,130,1","overseas,81,2,90,1,102,1,134,1","oversees,12,2,135,1","overstated,83,1","overt,29,1","overtake,131,1","overview,6,1","overwhelmed,12,1,81,1,88,1","oveson,81,4","own,1,1,4,1,10,1,12,2,29,1,43,1,66,1,58,2,79,1,89,1,81,5,82,2,83,1,85,3,93,1,90,3,86,1,28,1,52,2,105,5,100,1,101,1,103,1,106,1,109,2,111,1,112,1,130,1,132,1","owned,57,1,69,1,81,1,101,1,130,1","owner,15,1,81,1,2,1,40,1,70,1,99,1,111,1,113,1","owners,15,1,79,2,85,1,94,1,2,1,40,2,70,1,52,3,99,2,105,1,104,1","ownersof,112,1","owning,77,1,30,1,123,1","owns,52,2","oxley,29,1,56,1,40,1,99,1","p01s02,106,1","pa,58,1,87,1","pac,12,1","pace,102,1","pacific,39,1","pack,116,1,120,1,127,1","package,12,1,89,2,93,1","packaged,93,1","packages,85,2","packaging,90,1","packard,102,1,110,1","packets,81,1","padlock,109,1","padobot,124,4","paean,90,1","paedophile,39,3","page,31,1,36,1,43,2,45,1,47,1,51,1,46,1,89,4,81,7,83,1,93,1,6,1,86,2,94,3,2,2,70,1,105,1,111,5,120,2,130,3,132,2","pager,134,1","pages,39,3,43,1,68,1,77,1,81,4,30,1,90,3,92,1,94,2,107,1,110,1,111,3,123,1,131,1","pagesthat,116,1","paid,1,1,89,2,85,2,2,1,70,2,52,1,111,1,116,1,134,2","pain,57,1","painful,30,1,123,1","painless,105,1","pains,67,1,52,1","painstakingly,100,1","painted,70,1","painter,5,7,81,5,130,6","pakistan,90,1","palacio,81,3","paller,69,6,77,1,117,3","palm,57,2","palmalso,57,1","pandemic,132,9","pandemics,125,1","pane,131,1","panel,5,1,58,9,103,1,110,1,132,1,136,2","panelists,57,2,110,1,134,1","panelrecommended,57,1","panels,58,1","panic,89,1","paper,72,1,89,2,81,1,126,1,129,2","paperghost,93,1","paperless,82,1","papers,71,2,81,2,85,1","paradeis,51,1","parallel,100,1","parametric,81,1","paranoid,82,2,105,2","parent,39,1,89,1,86,2,105,1","parental,12,1,39,1","parents,4,2,12,1,39,1,83,1,87,2,86,6","parex,2,2","paris,81,1,134,1","park,70,12,109,1","parked,74,1","parking,81,1","parry,86,1","part,15,1,24,1,26,1,58,1,68,1,74,1,46,2,81,8,83,2,85,3,87,1,93,1,90,5,6,1,94,1,40,1,52,1,88,1,99,1,105,13,101,2,107,1,128,2,110,1,114,1,116,1,118,1,120,2,127,1,130,1,134,1,137,1","partially,67,1,112,1","participants,118,2,120,2","participate,39,1,81,1,116,1,130,1","participated,81,1,115,1,120,1","participating,130,1","participation,109,1","particular,72,1,77,1,89,1,81,1,92,1,94,2,95,1,105,2,103,1","particularly,4,1,10,1,17,1,27,1,67,1,77,1,79,1,81,1,82,1,83,1,40,1,99,1,105,1,107,2,110,1,131,1","parties,43,1,92,1,100,1","partiesfrom,43,1","partisan,58,1","partly,102,1,109,1","partner,81,2,101,1,106,1","partners,1,1,39,1,81,3,6,1,40,2,98,1,99,2,105,2,137,1","partners—and,130,1","partnership,81,1","parts,100,1","party,1,1,46,1,93,1,105,1","pasquale,81,1","pass,13,1","passable,81,1","passage,58,1","passaic,37,4","passcode,28,3","passed,58,1,81,1,85,2,70,1,126,1","passes,81,1,132,2","passing,132,1","passively,86,1","passmark,82,2","passports,89,1,81,3,103,1,130,1","password,24,1,89,12,81,6,82,6,94,1,2,2,52,1,37,2,105,4,111,2","passwords,17,4,29,2,24,1,36,1,66,1,57,1,89,6,81,7,82,3,85,1,84,1,30,3,90,2,92,2,86,1,2,1,28,1,88,1,105,5,103,1,109,1,110,1,116,1,123,3,130,3,132,2","passwordsand,57,1","passwords—from,81,1","past,27,1,66,2,69,1,77,1,81,4,85,2,93,1,90,1,2,4,52,1,88,1,105,1,102,11,111,2,114,1,116,3,118,1,120,1,126,1,132,5","pastors,39,2","patch,10,2,69,1,81,1,93,1,111,1,127,4,131,2","patched,93,1,132,1","patches,10,1,45,4,47,1,71,1,77,1,89,2,81,1,52,1,111,2,116,1,127,3,130,1,131,2","patching,69,2,77,4,116,1,127,2","patchingsystems,77,1","patchwork,98,1","path,58,1","patient,103,1,111,1","patrick,58,1,30,1,92,2,98,1,123,1","patriot,81,1,116,1","patronage,105,1","patronize,2,1","patrons,85,1","pattern,28,1,103,1","patterns,67,1,28,1,105,1","paul,39,1,46,1,81,2,28,1,106,1,115,2,120,1","paulo,68,1","pause,113,1","pay,29,1,31,1,27,1,39,1,73,10,51,2,46,1,89,2,81,3,70,2,88,1,100,1,103,1,111,2,113,1,116,1,121,2,131,1,134,4","payer,28,1","paying,89,1,81,1,94,1,103,1,107,1,121,1","payingcustomers,51,1","payload,30,1,92,2,116,1,123,1","payloads,88,2","paymaxx,74,1","payment,26,1,81,2,70,2,104,1,107,1,116,2","payments,24,1,89,1,81,1,90,1,105,1,103,2","payne,66,1","payouts,85,2","paypal,79,2,89,3,81,1,85,1,90,1,94,6,104,1,111,1","payroll,74,1,2,1","pays,81,1","payto,15,1","pc,13,5,17,2,43,1,66,1,57,2,51,14,81,2,30,1,2,1,52,1,37,1,88,8,102,16,109,3,111,21,116,2,118,9,123,1,124,3,127,5","pcs,1,1,13,14,15,1,17,5,43,1,57,1,51,1,77,2,81,1,90,1,2,4,52,2,88,4,102,4,104,14,108,4,128,2,109,3,111,8,112,5,113,14,115,1,116,1,118,3,124,13,127,9,131,2","pd,137,1","pda,82,1","pdas,57,3,124,1","pdf,3,1,4,1,39,1","pdt,112,1,116,1","peacefully,70,1","peddle,103,1","peddled,103,1","peddler,103,1","peddling,79,1,103,2","peddlinghis,1,1","pediatric,12,1","pedophiles,39,2","peer,4,22,45,2,47,2,85,1,107,6,111,2","peers,116,1","peggy,133,1","pen,88,1,135,1","penalties,98,1,111,1,132,1","penalty,90,1,104,2","pending,31,1,43,1,46,1,98,1,114,1,132,1","penetrate,81,1,117,1","penetrated,106,1,130,1","penetration,69,1,136,1","penitentiary,12,1","pennies,82,1","pennsylvania,24,1","pentagon,114,3","people,1,1,13,1,12,3,17,1,29,1,27,5,36,2,39,10,57,3,58,3,65,2,71,1,73,1,51,1,79,1,89,4,81,14,83,1,85,5,84,1,30,1,90,4,91,2,92,2,86,3,94,5,70,1,52,2,88,3,105,21,100,5,102,1,103,3,106,2,107,1,108,1,128,2,109,3,110,3,111,2,112,1,114,2,115,2,116,2,118,2,119,2,120,2,121,5,123,1,125,2,127,1,131,1,132,2,134,9,135,5,136,1","peopleuse,112,1","peoplewho,115,1","per,13,1,10,5,26,1,39,4,72,1,46,2,81,3,82,2,90,2,109,1,113,1,116,1,125,1","percent,3,16,10,13,17,1,29,4,27,10,39,16,56,6,66,1,73,6,89,2,83,1,90,4,6,1,94,1,37,10,105,2,102,31,103,3,106,2,108,6,116,1,118,12,121,4,122,1,125,3,131,1,132,2,134,1,135,3,136,10","percentage,29,1,39,1,105,1,103,1,108,1,112,1,121,1","percentin,116,1","percentmastercard,103,1","percents,136,1","perception,73,1","perceptions,120,1","perfect,81,1,85,1,94,2,135,1","perfectly,111,1","perform,40,1,99,2,107,1","performa,40,1","performance,45,1,47,1,66,1,51,4,46,1,113,1","perhaps,29,1,89,2,94,1,88,2,111,2,118,1","perimeter,89,1,105,1","perimeters,10,2,67,1,81,1","period,10,5,36,1,46,1,92,1,52,1,37,10,105,1,106,1,113,1,116,1,124,1","periodical,105,1","periodically,89,2","periodicals,105,1","permanent,89,1","permanently,43,1,89,2,94,1","permission,1,1,39,1,93,1,70,1,100,2,106,1,107,1,120,2,134,1","permit,89,1","permits,107,1","permitted,105,1,103,1","pernicious,40,1,99,1","perpetrated,81,1,92,1","perpetrator,71,1","perpetrators,80,1,85,2,117,1,134,1","perpetually,40,1,99,1","perplexed,26,1","perplexing,81,1","perry,105,1","persistent,112,1,136,1","person,27,1,71,1,79,1,81,4,87,1,86,1,105,1,110,1,121,1,125,1,130,1,134,3,135,1","personal,31,1,24,3,26,6,27,3,39,3,45,2,47,2,57,1,58,4,72,5,74,2,46,1,79,2,89,8,80,1,81,8,83,1,30,1,87,1,90,4,91,1,92,4,6,2,86,3,2,2,70,1,28,6,98,3,105,12,100,4,102,1,103,1,104,3,107,1,109,1,110,1,111,3,114,5,116,1,118,3,119,1,120,1,123,1,129,1,131,2,132,2,134,7,133,2,135,7","personalinformation,17,1","personally,92,1,70,1","personaltech,17,1","personnel,81,1,101,1,112,1,114,5","perspective,51,1,105,1,116,1","persuade,90,1,137,1","persuaded,109,1,115,1","pertinent,134,1","pervasive,81,1,105,1,130,1","pervasively,100,1","perverse,100,1","perverting,36,1","pescatore,81,5,101,2,116,1","pesos,134,1","pest,118,1","pestpatrol,101,6","pests,128,1,131,1","pestware,89,1","peter,81,5,2,1,40,2,99,2,109,1,110,1","petersen,81,2","pew,39,2","phantom,81,1","pharmaceutical,81,1","pharmaceuticals,81,1","pharmers,81,1,109,4","pharming,29,2,109,11","phase,2,1","phenomenon,85,1,28,5,100,1","philip,98,1,133,2","phillip,36,1","philosophy,79,1","phish,13,9,82,4","phished,90,1,94,1","phisher,94,2","phishers,81,2,85,2,90,9,94,20,103,1,109,3,116,1,118,1,132,1,137,1","phishes,85,1","phishing,13,3,10,4,29,3,36,11,69,1,73,1,80,1,81,9,82,5,85,10,90,26,91,1,6,1,94,16,2,3,40,1,28,9,37,3,99,1,103,1,104,1,109,11,110,8,111,11,113,1,115,1,116,4,118,1,119,11,121,1,125,2,130,1,132,11,134,2,135,2","phishinge,116,1","phishingscams,116,1","phishnet,81,1,90,1","phone,1,1,24,3,27,2,39,2,45,1,57,1,67,1,72,1,51,4,89,4,81,5,82,2,90,1,86,2,2,1,70,2,52,1,88,1,105,1,103,3,111,2,112,1,115,1,124,12,134,1,133,1,135,4","phonecards,85,1","phones,57,3,124,2","phony,85,2,103,1,107,1,109,2,118,1,119,1,134,1,135,1","photo,12,10","photograph,81,1","photos,1,1,39,1,81,1,106,1","php,92,1,86,1,122,1","phrase,82,2","phrases,82,1","physical,89,1,81,1,82,2,2,1,106,2","physically,57,1,81,1","physician,72,1","pick,72,2,51,2,79,1,89,2,81,1,85,2,30,1,86,1,112,1,123,1","picking,71,1,51,1,30,1,123,1,131,1","picks,101,9","pics,12,1","picture,81,1,70,1,102,1,126,3","pictures,39,1","piece,43,1,92,1,98,1","pieced,81,1","piecemeal,85,1","pieces,13,1,43,1,46,3,89,1,91,1,111,1,113,1,116,1,130,2","pike,114,2","pikesaid,114,1","pilfered,7,8,2,1,103,3","pilfering,2,1","pilot,3,1,89,1,81,1,101,1","pin,24,1,57,1,82,1,28,1,103,2,134,1","pinball,111,1","piner,70,4","ping,100,1","pinging,30,1,92,1,123,1","pinhole,134,1","pinpointed,13,1","pinpointing,111,1","pins,89,1,28,1","piracy,80,1,81,1","pirated,107,1","pirates,84,1,105,4","pirates—or,81,1","pireland,133,1","pironti,81,2,2,1,111,1","pitch,81,1","pitched,2,1","pitcher,70,1","pitches,52,1,103,1","pitching,81,1","pitfalls,2,1","place,24,5,36,1,39,1,57,1,68,1,51,2,85,4,2,3,70,1,88,1,105,3,100,2","placed,10,1,69,1,81,3,2,2,28,1,130,1,134,2","places,79,1,85,1,107,1","placing,51,1,82,1,30,1,123,1,127,1","plagued,57,1,52,1","plainlyunfair,51,1","plains,74,1","plan,57,2,90,1,40,1,99,2,105,1,100,1,112,1,124,1","plane,100,1","planned,89,1,133,1","planner,81,2","planning,31,1,69,2,89,1,117,1","plans,43,1,2,2,98,1,131,1","plant,106,2,111,1","planted,116,1","planting,107,1,109,1,111,1","plants,106,2,109,1","plastic,81,1,28,1,103,2","platform,57,1,126,1","platforms,57,2,69,5","platinums,103,1","platt,118,2","play,5,1,87,4,93,1,101,1,104,1,128,1,116,1","playbook,90,1","player,67,2,77,1,81,2,88,1","players,67,1,46,1,83,1,84,1,94,1,103,1","playing,39,1,87,1,40,1,99,1","plays,87,1","pleaagreement,115,1","plead,81,1","pleaded,81,9,130,2","pleadedguilty,115,1","pleading,36,1","pleads,81,1","pleanegotiations,115,1","pleased,115,1","pledged,90,1","plenty,89,1,2,1,40,1,99,1,103,1","plesco,5,1","plethora,124,1","plod,111,1","plug,4,1,43,5,28,1,128,1","plugged,81,1","plugging,67,1","plus,29,1,51,1,92,1,37,1,100,1,134,1","pm,1,1,12,2,36,1,56,1,80,1,92,1,2,3,133,1","pocket,89,1,116,1,134,2","podrezov,95,3","point,5,2,57,1,74,1,77,1,46,1,85,3,87,1,28,2,105,2,100,1,103,1,107,1,108,1,111,3,132,1,135,1","pointed,5,1,81,1,85,1,103,1,112,1","points,29,1,57,2,81,2,94,1,106,1,107,1,109,2","poisoning,109,3","poland,85,2,103,1","polaris,81,1","police,15,1,12,6,24,1,39,3,68,2,81,1,83,1,85,1,84,14,90,3,70,2,88,1,105,4,103,1,116,1,130,1,134,4,135,1","policeman,12,1","police—some,81,1","policies,31,1,81,1,2,1,40,1,99,1,105,1","policy,1,1,4,1,29,1,27,1,36,2,39,1,71,1,93,1,90,2,92,1,86,1,2,1,37,1,105,1","policyexperts,29,1","politicians,74,1","politics,58,1","polk,82,1","poll,73,2","polled,56,4","pondering,132,2","pony,90,1","poohbear,87,2","poohbear105,87,5","pooling,90,1","poor,88,1,115,1","poorinternal,31,1","poorly,77,1,52,1,101,1","pop,1,11,43,10,45,4,47,8,66,1,46,2,89,2,81,2,93,1,90,1,37,1,109,1,120,2,125,1,130,1,132,3","popped,12,1","poppingup,85,1","popular,13,1,4,1,56,1,69,1,77,2,89,1,81,2,2,1,28,1,88,1,107,1,109,1,110,1,111,1,116,1","popularinternet,85,1","popularity,10,1,82,1,102,1,137,1","populated,106,1","population,39,2,89,1,111,1,134,2,133,1,136,2","porcelain,70,1","porn,12,4,39,15","pornographic,39,3,105,1,111,1","pornography,3,2,4,5,12,7,39,16,68,1,80,2,2,1,107,1","port,95,2,105,1,112,5,134,1","portable,4,1,39,1,100,1","portfolio,2,2,136,1","portfolios,121,1","portion,121,1","portions,126,1","portrayed,85,1","ports,137,1","portugal,107,1","pose,12,1,58,1,65,1,72,1,85,1,120,1,134,1","posed,69,1,81,1,83,1,2,1,107,1","poses,90,1","posing,12,1,77,1,81,1,103,1,137,1","position,87,1,94,2,106,2,111,1","positive,105,1","possession,81,1","possibility,57,1,93,4,100,1","possible,1,1,4,1,24,2,39,1,45,1,47,1,51,1,89,2,105,4,100,2,103,2,128,1","possibly,69,1,89,1,81,1,70,1","post,39,2,72,1,74,1,51,1,89,1,81,2,90,1,86,3,105,1,103,1,106,1,114,2,131,1,135,1","postal,72,1,89,1,90,1,6,4","posted,13,1,4,1,12,1,39,3,43,1,79,1,81,2,92,1,2,2,103,1,111,1,113,1,119,1,131,1,135,1","posting,81,3,90,1,113,1","postings,79,2","postini,52,1,107,2,111,1","posts,12,1","postulated,126,1","potential,57,2,73,1,51,1,81,2,85,1,70,2,100,1,111,2,116,1,129,5,134,3,137,2","potentialfraud,114,1","potentialhost,85,1","potentially,4,1,31,1,85,1,86,1,94,1,105,1","potentialto,57,1","poulsen,1,1,5,1,115,1","pounds,36,1","pouring,83,1","power,88,1,100,1,106,8,131,1","powered,71,1","powerful,13,1,57,4,111,2","powering,107,2","powers,65,8","powner,106,2","pr,72,1,68,1","practical,100,1","practically,111,1","practice,89,1,80,1,81,1,93,1,86,2,103,1","practiceamong,15,1","practices,31,1,24,1,43,3,45,1,47,1,57,1,67,1,69,2,77,1,81,1,6,2,86,1,105,1,100,3,111,1,115,1","practitioners,130,1","pranks,111,1","pre,27,1,58,2,51,1,89,5,82,1,111,1","precaution,81,1,70,1,118,1,130,1","precautions,40,1,99,2,120,1,127,1","preceded,111,1","precedents,89,1","precisely,2,1","precursor,124,1","predator,87,11,86,6","predators,4,1,12,21,39,2,87,1,86,1","predecessors,116,1","predefined,81,1","predesignated,105,1","predetermined,81,1","predicted,95,1,102,2","prediction,102,1","predictions,102,1","predicts,46,1","predictthe,31,1","predominantly,81,1","prefer,39,1,56,1,81,1,2,1","preferably,89,1","preferred,43,1,57,1,132,1","preferring,56,1","prefers,26,1","premier,81,1,136,1","premium,81,1,28,1,101,1,103,1","premiums,70,1","preoccupied,69,1,105,1","prepare,72,1,40,1,99,1","preparedhome,77,1","prescribes,90,1","prescriptive,82,1","presence,120,1","present,85,1,84,1,28,1,100,2","presentation,5,1,37,1","presented,107,1","preset,116,1","president,10,1,26,1,27,1,39,1,43,1,66,1,73,1,81,7,83,1,30,1,90,3,86,1,94,1,40,1,28,3,52,1,99,1,105,2,100,1,101,1,103,1,108,1,109,1,118,1,119,1,120,1,123,1,131,1,132,2,136,1","presiding,36,1","press,3,1,12,3,36,2,39,3,58,1,72,4,51,1,6,1,52,1,105,3,107,1,118,1,119,1","pressed,81,1","pressure,31,3,106,1","pressured,52,1","preston,36,2","presumably,86,1,88,1,107,1","preteen,12,1","pretend,89,1,134,1","pretended,39,1","pretending,36,1","pretense,81,1","pretty,51,1,79,1,81,1,93,2,88,1,105,1,110,1,119,1,131,1","prevails,2,1","prevalence,120,1","prevalent,29,1,85,2,110,1,115,1,134,1","prevent,15,1,24,1,45,2,47,1,71,1,72,1,89,1,82,1,90,1,91,1,52,1,105,2,101,1,106,1,108,1","prevented,39,1,88,1","preventing,112,1,132,1","prevention,12,1,39,2,56,1,72,1,81,2,6,1,28,2,130,1,134,1,135,1","prevents,112,1","preview,131,1","previous,3,1,10,5,84,1,95,1,37,4,101,1,116,1,125,1,132,1","previously,39,1,57,1,81,1,52,1,107,1,131,3","prey,12,1,79,2,80,1,2,1,134,1","price,56,2,81,2,105,1,102,4,103,2,107,1,112,1,113,11,116,2","priced,89,1","prices,81,3,103,1","pricewaterhousecoopers,81,1,103,1","pricing,81,2,103,1","primarily,5,1,2,1,121,2","primary,65,1,81,1,121,1","prime,101,1","princeton,90,1","principal,81,2,85,1,133,1","principe,107,2","print,65,2,73,2,74,2,89,1,87,1,119,4,134,5","printed,31,1,65,1,73,1,74,1","printing,81,1","printout,72,1","prior,36,1,79,1,80,1,81,1,37,1,115,1,125,1","prioritizing,57,1","priority,114,1","prison,12,1,89,1,90,1,104,1,115,3,132,1","privacy,1,1,4,1,5,1,31,1,27,1,36,1,39,1,43,1,45,1,47,1,58,8,71,1,89,5,81,3,93,1,90,2,92,1,86,4,37,1,105,4,100,1,109,2,110,5,115,1,131,1","private,13,1,4,1,5,1,57,1,77,1,81,5,30,4,90,3,92,1,6,1,2,2,40,1,99,1,106,2,114,1,125,1,130,2","privately,81,1,106,1","privileged,69,1,51,1","privileges,111,1","prng,126,3","prntfr,66,1","probable,57,1,105,1","probably,46,1,81,3,87,1,90,1,2,2,102,1,111,1,113,1,116,1,134,2","probe,109,1,127,1,132,1","probes,108,1","probing,65,1,113,1,132,1","problem,12,2,29,1,31,2,27,1,66,1,58,1,67,1,51,1,46,1,79,1,89,4,81,5,83,2,85,1,92,1,94,4,70,1,28,5,52,1,105,3,100,3,101,2,103,1,110,1,114,2,120,3,127,2,130,4,131,2,132,1,134,2,135,1","problematic,111,1","problems,31,2,56,1,66,1,57,1,74,1,77,1,89,2,81,6,93,2,94,2,28,6,52,1,100,1,107,1,114,1,116,1,130,1,134,1","procedure,81,1","procedures,24,2,46,1,2,1,40,2,98,1,99,2,114,1","proceed,51,1","proceeding,115,1","proceeds,80,2,2,1,129,1","process,1,1,13,1,24,1,27,1,39,1,77,1,46,1,89,1,81,1,82,1,85,2,86,1,52,1,105,3","processed,81,1","processes,46,1,81,1,93,1,109,1","processing,70,1,88,1,105,2,100,1,116,1","processor,103,1","procter,81,1","prodigious,100,1","produce,103,1","producer,27,1","product,51,1,81,4,82,1,30,1,52,1,101,6,103,1,107,1,122,1,123,1","production,106,1","productivity,40,1,99,1","products,5,1,56,1,57,1,67,1,77,2,89,2,81,7,82,2,85,2,86,2,40,1,28,10,52,1,99,1,105,4,110,1,116,2,120,1,126,2,130,2,132,1,136,1","prof,39,2","profession,51,1","professional,89,1,70,1,105,1,101,1,107,2,134,1","professionals,69,1,77,2,81,1,2,1,107,1","professor,5,1,2,1","profile,39,1,58,1,89,1,81,1,94,1,28,5,88,2,98,1,105,2,116,1,121,1","profiles,86,1","profit,31,1,56,1,46,1,81,1,90,1,86,1,40,1,99,1,111,3,116,2","profitable,111,2,116,1","profited,81,1","profits,1,1,43,1,56,1,85,1,107,1","program,1,2,12,2,43,1,45,2,47,2,69,1,51,1,89,3,81,2,83,2,85,1,30,1,93,2,92,1,94,1,28,4,52,1,105,3,103,1,118,1,123,1,131,1","programmed,81,2,83,1,93,1,52,1,137,1","programming,12,1,109,1,111,1,131,1","programs,1,1,4,1,10,4,43,7,45,4,47,4,66,4,57,1,58,2,67,2,69,2,71,1,77,5,46,2,79,2,89,1,81,1,83,13,85,2,84,1,30,5,94,1,95,2,2,2,40,3,28,4,52,3,37,6,88,3,99,3,101,2,107,1,128,1,111,7,112,1,116,3,118,1,120,5,123,1,125,1,129,1,131,3,137,1","programssuch,43,1","progress,77,1","progressively,81,1","prohibit,43,1","prohibited,79,1,80,1,93,1,107,1","prohibition,5,1","prohibits,132,1","project,81,6,82,1,105,1","projections,83,1","projects,100,1","proliferate,10,1,29,1,57,4","proliferation,77,1,81,1,52,1,109,1","prolific,2,1","promise,43,1,89,1,28,1,100,1,134,1","promised,43,1,115,1","promises,130,1","promising,2,1,105,1,135,1","promote,81,1,105,1","promoted,81,2","promoting,81,2","promotions,81,1","prompt,98,1","prompted,52,1,98,1,131,1","prompting,90,1,2,1,121,1","promptly,2,1","prompts,120,1","prone,110,1","prongs,74,1","proof,24,2,134,1","proofing,39,1","propagate,127,1,137,1","propagates,43,1,93,1,137,1","propagating,85,1,93,1,107,1","propellant,126,1","proper,132,1","properly,4,1,103,1,118,3","property,4,1,24,1,27,1,89,2,81,3,83,2,90,1,130,1","propogate,10,1","proportions,92,1","proposal,74,4","proposals,74,1,98,1","proposed,74,1,98,1","proposition,81,1","proprietary,2,1","prosecute,82,1,90,1,68,1,103,1,130,1","prosecuted,5,1,81,2","prosecuting,100,1","prosecution,1,1,4,1,94,1,115,1,134,1","prosecutor,12,1,81,1,90,1,104,1","prosecutors,1,1,36,1,81,1,104,2,115,3","prosecutorsclaimed,15,1","prospective,29,2","prostitution,3,1","protect,4,1,10,1,12,1,27,1,39,1,56,2,57,1,58,1,71,3,72,1,89,3,81,2,85,1,87,10,91,1,86,1,40,7,70,1,28,7,99,3,105,2,101,1,106,2,108,1,109,1,110,5,111,2,118,2,120,1,127,1,130,1","protected,81,3,92,3,2,2,40,1,52,1,99,1,101,1,115,1","protecting,31,1,17,1,45,1,47,1,56,2,57,1,72,1,77,1,90,1,94,2,86,2,70,1,105,2,106,1,110,1,114,1,116,1,120,1,134,1,135,1","protectingclassified,114,1","protection,29,1,31,1,24,1,43,1,45,1,47,1,56,2,58,3,67,1,71,1,73,4,74,2,89,1,81,2,30,1,86,1,2,1,40,3,98,1,99,3,101,1,106,1,109,1,111,1,116,1,118,4,119,1,123,1,130,1,135,1","protections,29,1,2,1,40,1,98,1,99,1","protective,27,1,81,1","protects,39,1,81,1","protocol,10,1,57,1,77,1,81,1,112,1,127,1,130,1","protocols,2,1,105,2","protx,116,1","prove,68,1","proved,2,1,111,1","proven,39,1,81,2","proves,94,1,88,1,132,1","provide,17,1,24,2,45,1,47,1,58,1,81,4,82,1,85,1,6,1,94,1,86,5,70,1,105,3,101,3,103,2,110,1,115,1,134,1,133,1","provided,27,1,43,1,45,4,74,1,89,1,81,1,86,1,37,1,105,1,128,1,110,1,118,1","provider,74,1,81,4,90,1,94,1,40,1,52,1,99,1,105,1,100,1,107,1,112,1,113,1,120,1,127,1,130,2","providercloudmark,116,1","providers,12,1,56,3,81,2,94,1,28,1,100,1,104,1,108,1,112,2,115,1","provides,27,1,89,1,81,1,82,2,30,1,6,2,40,2,70,1,37,4,99,3,105,1,123,1,127,1,130,1","providing,5,1,27,2,89,1,81,4,119,1,115,1,126,1,135,1","province,117,1","provision,83,1","provisions,58,1","prowl,135,1","proxies,81,1,52,4,107,2,130,1","proxy,29,1,81,6,52,3,130,4","prudent,82,1","prying,89,1","przybyslawski,114,2","ps80c,89,1","pseudo,126,1","pseudonymousvendors,103,1","pst,66,1,51,1,133,1","psycho,51,1","pt,1,1,51,4,115,1","public,39,2,71,1,74,3,89,4,81,1,90,1,92,1,6,1,105,6,100,2,101,1,104,1,110,1,120,1,130,1,134,1","publication,69,2,92,1","publications,3,1,4,1,31,1","publicity,130,1","publicized,105,1","publicly,81,3,94,1,114,1","publiclyavailable,57,1","publish,86,1","published,12,1,36,1,72,1,51,1,81,1,82,1,95,1,68,1,37,1,105,2,103,2,120,1,122,1,126,1,129,5","publisher,105,1","publishers,136,1","publishing,81,1,93,2","pull,1,1,81,1,111,1","pulled,43,1,94,1,115,1","pulling,110,1","pullingoff,103,1","pulls,43,4","pump,134,1","punched,134,1","punishable,74,1","punished,81,1,87,1","punishing,81,1","punishment,81,1","purchase,10,1,81,2,70,2,28,2,100,1,101,1,115,1,134,1","purchased,1,1,39,1,81,1,83,1,70,1,103,1,111,1,113,1","purchaser,28,1","purchases,26,6,27,1,89,1,28,1,103,1","purchasesonline,103,1","purchasing,81,1,92,1,100,1","pure,101,1","purely,111,1","purgatory,51,1","purportedly,36,1","purporting,137,1","purports,90,1,103,1","purpose,4,2,89,1,105,1,107,1,120,1","purposely,52,1,111,1","purposes,4,1,72,1,89,3,85,1,91,1,92,1,116,1","purse,24,21,27,1,72,4,89,1,134,1","purses,134,1","pursue,56,1","pursued,130,1","pursuing,94,1","pursuit,17,1","push,43,1,82,1,105,1,137,1","pushed,81,1,93,1","pushers,46,3","pushing,56,1,58,1,81,2,131,1","puts,93,1","putting,31,1,51,1,46,1,105,2,101,1,110,1,132,1","pwsteal,83,1","q8see,107,3","quadrillion,81,1","quadrupled,46,1","qualified,105,2","quality,77,1,81,6,103,3,136,1","qualys,67,2","quantitative,121,1","quantities,102,1","quarantined,91,2,127,1","quarter,72,1,46,1,105,1,102,7,108,1,111,1,132,2","quarters,37,1,102,2,118,1,125,1","quebec,1,1","question,51,1,81,1,82,1,83,1,94,3,28,1,105,1,135,1","questions,36,1,72,2,81,1,82,1,87,1,6,1,105,1,100,1,135,1","queue,51,1","quick,27,1,77,1,80,1,90,1,92,1,2,1,105,1,135,1","quickie,111,1","quickly,12,2,69,1,73,1,46,1,77,1,89,1,85,1,93,1,90,1,92,1,2,1,28,1,105,1,101,1,103,1,111,2,112,1,127,1,134,2","quietly,81,2,130,1","quilt,98,1","quite,36,2,82,2","quizzes,82,1","quota,112,1","quote,6,2","quoted,81,1","rabbit,70,4","racketeers,111,1","rackets,85,1","radar,105,1,116,1","radio,93,1,90,1,40,1,99,1","rafael,134,1","raft,57,1","raging,82,1","ragtag,85,1","raid,43,1,84,4,115,1","raided,43,1","rain,69,1,115,1","raindrops,81,1","rainy,81,1","raise,67,1,79,1,105,1,120,1","raised,93,1,105,1","raises,127,1","rampant,83,9,93,1,120,9","rampart,2,1","ran,89,1,81,4,115,1,130,3","randolph,114,1","random,29,1,45,1,47,1,87,1,88,1,126,1,137,1","randomly,81,1","range,39,1,46,1,131,1,134,1","ranged,89,1","ranges,107,1","ranging,36,1,98,1,131,1,134,1","ranked,71,1","ranking,81,1","rankings,102,1","ranks,81,1","ransom,108,1","rapid,28,1,109,1","rapidly,89,1,93,2,109,1,124,1","rapidlybecoming,57,1","rapids,79,1","rapidsatellite,115,4","rarely,117,1","rasch,81,1,90,1,103,2","raschsaid,103,1","rat,81,1","ratcheted,122,1","ratcheting,137,1","rate,39,2,46,2,81,3,85,1,100,2,102,5,113,1,126,1,132,1,134,2","rated,39,1","rates,95,1,70,1,137,1","rather,10,1,31,1,58,1,89,1,83,1,68,1,105,2,119,1,116,1,125,1","ratings,27,1,39,1,103,1","raton,105,1","rats,81,2","rauscher,81,1","ravage,70,1","ravine,10,1","raw,88,1,103,1","ray,124,2","rays,124,1","rbc,81,1","rbot,128,1","rd,10,1","reach,26,1,89,1,85,1,90,1,94,1,107,1,110,1,134,1","reached,24,1,56,1,78,2,79,1,115,1,116,1,136,2","reaching,39,1,120,1,134,1","reachingnearly,66,1","react,134,1","reactions,132,2","reactivated,105,1","read,43,2,45,1,47,1,57,2,58,2,69,1,72,1,71,1,89,1,81,2,83,2,84,1,30,2,93,1,92,1,94,1,101,1,106,1,123,2,126,1,130,1,131,1,132,1,137,1","reader,4,2","readers,89,1,28,1,124,1","readily,83,1,30,1,123,1","reads,5,1,79,1","ready,39,1,73,2,103,1","real,12,1,29,1,39,2,89,6,81,1,82,5,85,12,30,3,93,1,92,1,2,2,70,2,105,6,100,1,103,1,106,1,107,1,109,3,116,1,123,3,132,1","realistic,105,1","realistically,105,1","reality,51,1,89,1,2,5","realize,56,1,89,1,85,1,87,1,86,1,40,1,99,1,116,1","realized,51,1,85,1,116,2,134,1","really,12,2,29,1,43,1,57,1,46,1,81,3,83,1,84,1,87,1,93,1,90,1,94,1,105,1,102,1,106,1,110,2,112,1,115,1,116,2,130,1","reappearance,100,1","rearview,105,1","reason,4,1,69,1,86,1","reasonable,24,1","reasons,85,1,40,1,99,1,104,1","reavey,131,2","rebound,102,1","rebuilding,51,1","recalls,2,3,105,1","receipt,4,1,72,1","receipts,72,2,71,1,28,1","receive,51,1,89,3,81,1,85,1,92,1,120,1,137,1","received,3,4,10,1,12,1,39,3,46,1,89,1,91,1,92,3,94,1,2,1,37,1,105,1,111,1,118,2,122,1,127,1,131,1,132,2,134,1,135,1","receives,81,1,105,1","receiving,89,1,81,3,103,1,118,1,130,1","recent,3,1,5,1,39,1,67,4,74,1,89,1,85,1,84,1,93,1,92,1,6,1,94,4,95,1,28,6,37,1,99,1,100,1,107,2,109,1,113,1,116,1,120,1,121,1,135,1","recently,5,1,26,1,85,1,90,1,70,1,28,1,88,1,105,1,103,1,109,1,111,2,127,2","recess,58,1,133,1","recipe,93,1","recipient,37,2","recipients,36,1,89,1,81,1,90,1,86,1,119,1,137,1","recite,51,1","recklessly,81,2","recognize,4,1,45,1,47,5,72,1,110,1","recognized,12,2,137,1","recognizing,39,1","recommend,57,1,89,3","recommendations,82,5,86,1,99,1,134,1","recommended,72,1,82,1,134,1,135,1","recommends,72,1,81,1,127,1","reconcile,58,1","reconfigure,52,1,112,1","reconsider,67,1","reconstruction,89,1","record,45,1,47,1,66,1,81,1,85,1,84,1,37,6,100,1,114,1,129,9,130,1,134,3","recorded,10,1,69,1,81,1,37,1,105,1","recording,81,2,130,1","records,5,1,24,1,81,4,2,1,105,2,103,1,114,3,115,1,130,2,134,3,133,1","records—including,105,1","records—is,105,1","recounts,51,4","recoup,82,1","recouped,79,1","recover,17,1,24,1,99,1","recovering,70,1","recovery,3,2,39,2,77,1","recoverytimes,57,1","recreate,126,1","recreation,39,1","recreational,5,2,39,1","recruit,15,1,85,1","recruited,85,4,115,1","recruiting,115,1","recruitment,85,1","recycling,72,1","red,39,1,89,1,135,1","redirect,29,1,45,1,47,1,90,1","redirected,89,1,81,1","redirecting,90,1","redistributed,12,1,36,1,119,1","redistribution,79,1,80,1","redmond,110,1","redmonk,111,1","redo,2,1","redouble,90,1","redstone,117,1","reduce,82,1,70,1,28,6,99,1","reduced,85,1,70,1,115,1","reduceoperating,40,1","redwood,67,1,107,1","reed,17,1,58,1,74,1,105,2","refer,89,1","reference,81,1","referred,3,1,89,1,81,1,130,1","referrer,81,1,130,1","referring,107,1","refers,89,1,81,2","refineries,106,2","reflect,100,1","reformed,88,1","refrain,90,1,131,1","refresh,107,1","refund,81,1","refusal,80,1","refuses,81,1","refusing,2,1","regain,27,2,102,1","regard,100,1","regarded,81,1,132,1","regarding,27,1,72,2,136,1","region,85,2","regional,81,1","regions,39,1,103,1,106,1","register,74,2,81,1,86,1","registered,1,1,78,1,79,1,30,1,94,1,115,1,123,1","registrar,94,4","registration,81,1,82,1,86,1,103,1,107,1,130,1","registrations,81,1,28,1,108,1","regroup,81,1","regular,39,1,45,1,47,1,89,2,70,1,102,1","regularly,81,1,82,1,40,1,99,1,110,1,111,1","regulated,105,2","regulating,74,1","regulation,58,1,82,4,105,3,103,1","regulations,81,1,82,1,40,1,99,1","regulators,29,6,17,1,82,5,2,3,98,1,111,1","reid,82,1","reigel,6,1","reimburse,17,1,111,1","reimburses,27,1,111,1","reimbursing,81,1","reinforce,2,2","reinforced,73,1","reinforces,39,1","reinstall,116,1","reinvent,81,1","reissue,133,1","reitas,81,2","related,17,1,24,1,45,1,47,1,56,1,57,4,81,2,82,1,30,1,94,1,88,1,105,1,106,2,110,1,114,2,115,1,123,1,132,1","relations,105,1","relationship,28,1,103,1","relative,103,1","relatively,89,2,86,1,105,1,102,1,106,1,134,1","relatives,86,1","relay,12,1,13,3,66,1,85,1,81,2,93,1,90,1,52,5,104,1,107,1,128,1,116,1,130,1,132,1,137,1","relayed,52,1,125,1","relays,82,1,52,3","release,3,2,10,4,72,4,77,1,81,1,105,1,120,1,136,1","released,10,1,29,1,67,1,46,2,85,1,89,1,83,1,93,1,104,1,108,1,116,2,118,1,121,2,134,1","releases,72,1","releasing,46,1,137,1","relentlessly,2,1,103,1","reliability,43,1,106,1","reliable,81,1,103,1","reliance,72,1,80,1,127,1","reliant,40,1,99,1","relied,101,1","reluctant,81,2","rely,108,1,109,2,111,1,112,1,136,1","relying,90,1","remain,29,5,65,1,79,1,81,1,111,1,121,1","remains,58,1,51,1,46,1,90,1,107,1","remanded,84,1","remarkable,12,1","remarkably,90,1","remarkablywidespread,43,1","remediate,127,1","remediation,56,2","remedy,134,1","remember,24,1,87,1,105,1,132,1","reminder,12,5,89,1,107,1","reminders,87,1","remodel,134,1","remodeled,134,1","remote,67,2,85,2,89,3,81,1,83,1,30,3,93,1,92,2,95,1,88,2,111,2,112,1,123,3,137,1","remotelocations,85,1","remotely,85,1,81,2,91,1,52,1,37,1,108,1,109,1,130,1,131,1","removal,95,1,99,1,101,3","remove,15,1,43,1,69,1,46,1,79,1,89,1,86,1,107,1,131,1","removed,46,1,89,1,83,1,134,1","removing,46,1,105,1","renamedzangocash,1,1","renew,116,1","rent,10,1,116,2,125,1","rentable,85,1","rental,89,2","rented,81,1,104,1,128,1","renting,116,1","rep,98,1,105,1","repair,81,1","repeated,45,1,47,1,88,1,115,1","repel,88,1","repetition,90,1","repetitive,107,1","replace,24,1,81,1,28,1,132,1","replaced,81,1","replaces,109,1","replacing,102,1","replenished,30,1,123,1","replica,111,1","replicating,111,1","replies,137,2","reply,137,1","replying,6,1","report,4,2,10,11,17,1,24,11,36,1,39,5,43,1,46,10,77,4,85,2,81,1,89,6,90,1,94,1,2,2,70,13,37,8,96,8,88,2,105,2,103,1,108,14,109,2,111,1,114,1,116,2,118,1,121,1,125,14,126,14,129,10,134,7,136,3","reported,3,5,10,3,31,1,17,1,26,1,27,2,39,3,65,1,74,1,89,1,90,1,6,1,2,2,37,2,103,1,107,2,111,1,120,1,122,1,127,1,130,1,132,7,136,1","reportedly,94,1","reporter,131,1","reporting,3,1,10,4,17,5,24,5,27,1,58,1,81,2,89,1,90,1,6,1,70,2,37,2,130,1,134,1","reports,3,2,24,3,39,3,66,1,58,1,81,5,82,1,83,2,89,2,91,1,92,1,40,1,70,2,37,4,99,1,105,1,103,1,128,1,109,2,127,2,130,1,131,1,134,4","reportsclosely,114,1","reportstates,37,1","repository,30,1,123,1","represent,31,1,103,1,112,1","representative,72,1,94,1,128,2,120,1","representatives,69,1,72,1,74,1,79,1,2,1,98,2","represented,10,1,103,1","representing,46,1,2,1","represents,39,1,89,1,90,1,132,1,137,1","reprint,39,1,106,1","reprinted,89,1,120,1","reproduction,93,1,107,1","reprotected,77,1","republic,10,1,108,1","republican,98,1","republicans,58,1","republication,79,1,80,1","republish,106,1","repulsive,30,1,123,1","reputation,57,1,73,1,46,1,85,1,94,1,40,1,52,1,99,1,115,1","reputations,103,1,125,1","request,39,1,72,1,81,4,89,8,70,3,111,2,130,3,134,1","requested,81,1,132,1","requesting,89,2,86,1","requests,24,1,81,4,94,1,2,1,88,1,101,1,111,2,130,1,132,1,134,1","require,1,1,43,1,67,1,93,5,90,1,2,1,98,2,105,3,130,1","requireat,29,1","required,27,1,36,1,39,1,72,1,74,2,81,1,40,1,98,1,99,1,105,4,100,1,103,4,130,1,134,1","requirement,98,1,106,1","requirements,56,1,81,1,99,1,105,1,100,1","requires,24,1,57,1,58,2,81,1,89,1,88,1,105,1,100,1,120,1,124,1,130,1","requiring,12,1,39,1,74,1,81,1","resale,69,1","research,5,1,27,1,39,12,43,2,66,1,65,1,67,1,69,1,46,2,77,1,79,3,85,2,81,4,30,1,89,1,93,2,92,2,2,3,40,1,52,1,99,1,105,2,102,2,107,1,109,1,111,2,121,1,123,1,124,1,126,1,127,1,129,1,131,2,136,3","researchengineer,116,1","researcher,43,2,67,1,83,1,30,1,93,2,92,1,95,1,111,1,121,1,123,1","researchers,39,1,83,1,30,14,93,10,92,4,94,1,95,4,2,1,107,1,109,1,118,6,123,10,126,11,127,2,131,1,132,1,137,1","researchgroup,112,1","researching,67,1","researchorganisation,117,1","researchorganization,77,1","resellable,78,1","reseller,40,1,99,1","resellers,56,1","reserve,82,3","reserved,1,1,15,1,10,1,12,1,29,1,31,1,36,2,43,1,66,1,57,1,58,1,67,1,69,1,71,1,77,1,78,1,79,1,85,1,80,1,81,1,82,1,83,1,84,1,87,1,89,1,93,1,94,1,86,1,95,1,40,1,52,1,99,1,105,1,100,1,101,1,106,1,107,1,119,1,112,1,115,1,116,1,120,1,122,1,123,1,126,1,130,1,132,1,135,1,137,1","resets,82,2","resided,100,1","residence,89,1","resident,90,1,115,1,137,1","residents,106,1","resides,2,1,99,1","resist,99,1","resisting,81,1","resistremoval,40,1","resolution,81,4,130,4","resolve,51,2,89,1","resolving,29,1,134,1","resource,31,1,28,1,135,2","resources,90,2,40,1,99,1,105,1,103,1,114,1,115,1","respective,107,1","respond,46,1,89,1,101,1,106,2","responded,77,1,81,1,92,1,94,1,136,1","respondents,27,7,56,1,120,1","responding,3,1,81,1,94,1,70,1","responds,94,1","response,10,1,67,1,51,1,77,2,92,3,95,1,104,1,106,3,107,1,112,1,116,2,121,1,131,1,133,1","responses,118,1","responsibility,2,1,52,1,105,1,110,2,120,1","responsible,31,1,72,1,81,1,90,1,94,2,2,1,105,1,100,1,106,1,128,1,110,10,112,1,116,1","rest,89,1","restaurant,134,4","restaurants,81,1","restitution,2,1","reston,83,1,103,1","restore,27,1","restored,114,1","restrict,105,1","restricted,105,1,124,1","restricting,74,1","restriction,4,1,105,3","restrictions,105,2","result,10,1,12,4,85,2,81,1,40,2,37,1,99,2,105,2,102,3,107,1,109,1,114,1","resulted,12,1","resulting,3,1,40,1,99,1,114,1","results,73,1,51,1,81,2,93,1,90,1,2,1,105,2,100,1,102,1,118,2,120,1","resume,133,1","resumed,103,1","resurgence,79,1","retail,51,1,81,3,2,6,98,1,107,1","retailer,81,1,86,1,40,1,99,1,115,1","retailers,24,1,81,1,28,6","retain,89,1","retainingashley,115,1","retention,100,1","retirees,121,2","retirement,2,1","retrace,126,1","retrieve,51,1,89,2,135,1","retrieved,10,1,81,1","retrocoder,83,3","return,1,1,89,2,86,1,115,1,120,1","returned,89,1,134,1","returning,81,1,94,1,100,1,130,1,134,1","reusable,81,1,130,1","reuters,29,1,39,1,79,7,80,6,125,1","reveal,12,1,89,1","revealed,91,1,131,2","revealing,80,1,2,1,37,1,103,1,132,1","reveals,3,1,120,1","revenue,39,1,56,2,73,1,81,1,40,1,99,1,102,2,116,1","revenues,39,2","reverberate,105,1","reverse,126,1","reversed,134,1","reversing,89,1","review,24,2,67,1,86,1,70,1,114,1,116,1,134,1","reviewed,118,1","reviewer,81,8","reviewers,81,2,103,1,130,1","reviewing,81,1,70,1,114,1,118,1","reviews,43,1,57,1,67,1,69,1,83,1,84,1,30,1,93,1,94,1,86,2,101,1,123,1,126,1,132,1,137,1","revised,98,1","revolution,51,1","revolve,85,1","revolved,81,1","reward,100,1,134,1","rewards,10,1,100,1,125,1","rewritten,12,1,36,1,119,1","rhonda,90,1","rice,36,1,39,1,86,3","rich,69,1,81,1,134,1","richard,43,1,46,1,106,1,115,1,121,1,131,1","richer,103,1","richi,94,1","richmond,77,2","richwood,70,4","rick,134,1","rid,51,1","riess,82,1,111,1","rifle,81,1","riga,2,1","right,12,1,29,1,71,2,81,2,89,1,92,3,95,1,2,2,40,1,70,1,88,1,98,1,99,1,105,1,103,1,109,1,134,2","rights,1,1,3,1,15,1,10,1,12,1,29,1,31,1,36,2,43,1,66,1,57,1,58,1,67,2,69,1,71,1,77,1,78,1,79,1,85,1,80,1,81,1,82,1,83,1,84,1,87,1,89,1,93,1,94,1,86,1,95,1,40,1,52,1,99,1,105,1,100,1,101,1,106,1,107,2,119,1,111,1,112,1,115,1,116,1,120,1,122,1,123,1,126,1,130,1,132,1,135,1,137,1","rightsandpermissions,90,1","rigorous,77,1","rigoroussoftware,77,1","ring,26,1,43,11,81,1,30,15,92,6,128,12,123,11","ringleaders,103,1","rings,5,1,26,3,66,1,107,1,130,1","ringused,43,1","rip,81,1","ripe,93,1","ripped,17,1","rise,10,1,66,11,40,1,99,1,102,3,106,1,116,2,122,5,130,1,132,1,136,1","risein,116,1","risen,6,1","rises,27,1,105,1","rising,82,1,89,1,124,1","risk,31,1,26,1,47,1,66,1,58,1,65,1,69,1,73,1,81,2,82,1,30,1,6,2,95,1,2,6,40,3,70,1,72,1,99,3,105,3,100,2,103,1,106,1,107,1,111,1,123,1,131,1,132,1,134,1","riskof,31,1","risks,4,2,29,1,31,1,57,1,89,1,2,1,105,1","riskswith,57,1","risky,29,5,88,1,100,9,108,1","risotto,51,1","riva,77,2","rival,81,1,102,1,107,1,115,1","rivalry,102,1","riverside,133,1","riyadh,80,2","road,46,1,94,1,112,1","roadblock,94,1","roads,71,2,120,1","roam,81,1,87,1","rob,81,1","robberies,68,1","robbery,46,9,134,1","robert,12,1,31,1,39,2,81,1,37,1,105,1,108,1,127,1,135,1","roberts,56,1,67,1,69,1,83,1,28,1,101,1,120,1,126,1","robin,51,1","robot,125,1","robotic,130,1","robots,137,1","robust,40,1,99,2,114,1","robustnetwork,40,1","roby,115,7","rock,51,1,79,1,90,2","rocket,12,1,112,1","rocketed,126,1","rodrigues,81,5,130,1","rodriguez,2,12,135,1","roebuck,81,1","roger,65,1","rogerio,81,2","rogue,1,1,107,1","rohbani,43,2","rohhani,43,1","roi,56,1","role,90,1,104,1,108,1,115,1","roles,81,1,2,1","roll,105,1","rolled,105,1","rolling,85,1,81,1","rollout,28,1","roman,81,2","romance—and,81,1","romania,85,1,81,1","romanian,111,1","ron,105,1,118,1","ronald,5,1","room,12,2,81,1,87,1,115,1,132,1","rooms,3,1,12,7,39,3,85,1,90,1,88,1,113,1,116,1","root,77,1,2,1,124,1","rootkit,43,1,67,6,93,10","rootkitrevealer,43,1","rootkits,43,1,46,1,93,1,116,1","rose,37,1,102,1,109,2,110,1","rosenberg,5,2","ross,70,4","roster,81,1","rotating,113,1","rotenberg,105,2","rough,46,1","roughly,39,1,68,1,102,1,103,1,114,1","round,69,1,81,1,115,1","rounds,28,1","roundtable,89,2,90,1","route,56,1,89,1,106,1,109,1","routed,85,1","routedto,85,1","router,69,5","routers,69,1,77,2,40,1,99,1","routine,112,1,137,1","routinely,30,1,89,1,123,1,135,1","routing,81,1,90,1,130,1,134,1","royal,89,1","rsa,5,1,81,1,82,1,28,3,120,1","rss,1,1","ruffled,81,1","rug,51,1","ruin,27,1,65,1,71,1,107,1","rule,89,1","rules,39,1,57,1,51,1,46,1,81,1,86,1,98,3,110,1","rumored,92,1,112,1","run,12,1,69,1,79,1,81,3,83,9,89,1,90,1,70,2,52,1,100,1,103,1,106,3,111,1,112,1,115,1,124,2,130,1,131,2","runner,94,1,112,1","runners,85,3","running,15,1,5,1,13,1,57,1,58,1,69,2,85,1,81,2,89,1,90,1,94,1,52,1,88,2,105,1,106,1,107,1,128,1,111,1,124,1,126,1,131,1,132,1,133,1,137,1","runs,81,1,30,1,109,1,111,1,123,1,134,1","rural,90,1","ruse,109,1","russell,39,1","russia,39,1,85,1,81,2,90,1,128,1,109,1,111,1","russian,51,1,81,7,103,2,107,4","russians,81,1","rxbot,1,1","ryan,43,1,93,1,95,1,123,1,132,1,137,1","ryland,70,8","s70c,89,1","sa,17,1","saad,81,1","sabotage,3,1","sachs,81,1,90,3","sacramento,134,1","sadistic,39,1","safari,132,1","safe,31,1,26,1,77,1,87,1,89,2,6,2,86,2,2,4,40,9,72,6,37,1,99,9,103,2,115,1,118,14,120,2,131,1","safeguard,98,1","safeguards,12,1,2,1,40,1,99,1,106,1,119,1","safekeeping,134,1","safely,120,1","safer,2,1,118,1","saferlevel,85,1","safest,89,2","safety,45,3,81,1,87,1,89,6,86,2,111,1,118,2","safetyis,45,1","saffiliate,1,1","saga,46,1,105,1","saic,101,1","said,5,5,10,1,12,10,29,5,17,3,27,3,36,3,39,1,43,11,56,2,66,6,57,11,58,3,65,13,67,9,69,15,73,4,74,3,51,2,46,15,77,3,79,9,85,22,80,6,81,2,82,1,83,6,30,9,89,1,93,12,90,20,6,2,94,19,86,10,95,3,2,4,68,1,70,1,28,2,52,13,37,6,98,7,105,4,101,11,102,4,103,15,104,7,107,1,108,6,119,1,128,3,110,13,112,4,114,14,115,2,116,20,117,6,118,8,120,13,121,13,122,1,123,9,124,3,125,9,126,7,127,9,129,2,131,8,132,3,134,25,133,8,135,13,136,2,137,3","saidalperovitch,85,1","saidbabineau,57,1","saidits,77,1","saidjaquith,85,1","saidmichael,29,1","saidthat,85,1","saidthe,43,1","saidthiemann,57,1","sails,81,1","sake,94,1","sale,51,1,80,1,81,2,105,1,103,1,107,2,125,1,130,1","salem,105,1","sales,81,1,105,2,102,4,107,1,129,1","sally,135,1","salperovitch,116,1","same,1,1,3,1,5,1,56,1,57,2,46,2,81,4,82,1,87,1,89,3,90,1,2,1,40,1,28,1,99,1,105,2,102,3,106,1,128,1,111,1,116,1,120,1,121,2,124,1,129,1,130,1","sametechnologies,57,1","sameways,57,1","sample,26,1","samples,10,1","san,5,1,26,2,51,1,79,1,82,1,90,2,94,1,100,1,109,1,110,1,114,2,116,1,134,2,133,3,135,3","sana,116,1","sanctions,100,1","sanctum,81,2","sanders,15,1","sandiego,116,1","sandvine,113,1","sanford,105,5","sans,65,1,67,1,69,23,77,7,79,1,81,1,90,2,117,1,127,1,130,1,131,2","santa,12,16,67,1,81,1,82,1","sao,68,1,107,2","sarbanes,56,1,99,1","saskatchewan,90,1","sasser,88,1,116,2","sat,12,1,85,1","satellite,115,2","satisfying,136,1","saturate,111,1","saturated,58,1","saturday,37,1","save,51,1,112,1,118,1","saved,89,1","savenow,89,1","saving,45,1,47,1,109,1","savings,24,1,135,2","savvy,12,1,45,1,47,1,51,1,94,2,2,2,37,1,120,1,130,1","savvy—and,81,1,130,1","saw,67,1,71,1,46,1,102,7,106,1,107,2,116,1,125,1,129,6","say,29,1,31,1,39,9,43,1,58,1,65,1,51,1,46,1,79,3,81,5,82,1,93,9,90,1,86,1,2,8,52,2,88,1,105,3,103,1,106,3,107,1,119,2,128,1,109,1,110,1,111,3,112,1,116,1,121,1,126,1,127,1,130,1,131,1,134,3,133,2,135,4","saying,74,1,77,1,81,2,95,1,2,1,68,1,105,1,103,1,115,1,125,1,130,1","says,1,2,5,1,26,4,39,1,65,8,67,1,51,1,71,5,77,5,85,1,81,59,82,3,2,17,70,1,37,3,88,1,105,18,100,2,103,1,106,11,107,13,119,1,109,13,111,17,113,1,115,8,122,1,126,9,129,2,130,6","saysgerhard,77,1","sayshe,115,1","sayssundwall,1,1","sblogspot,43,1","sbusiness,85,1","scale,66,1,57,1,93,1,90,1,92,2,2,2,106,1,115,1,116,2","scam,26,10,85,4,81,5,83,1,84,9,90,2,2,1,28,1,88,1,109,4,110,1,111,1,118,1","scammed,81,1,109,1","scammers,85,1,90,2,2,1,119,2,132,1","scamming,81,1","scams,13,6,26,9,85,5,81,1,82,1,90,6,6,1,40,1,28,8,99,1,104,1,119,2,109,2,110,9,111,4,113,1,116,1,125,1,134,1,135,3","scamsbehind,85,1","scan,45,1,47,1,46,1,85,1,81,1,89,1,107,1,111,1,126,1,134,1","scanned,10,1,46,1,30,1,107,1,123,1","scanners,110,1","scanning,69,1,81,1,30,2,88,1,123,2","scans,67,1,69,1,81,2,115,1,127,1","scant,132,1","scarce,111,1","scares,29,5","scarface,81,2","scariest,89,1,111,1","scaring,81,1,111,1,121,1","scary,89,1","scathing,105,1","scattered,13,1","scenario,89,3,93,1,105,1,106,1","scenes,85,1,107,1","schedule,87,2","scheduled,77,1,81,1","scheme,1,2,81,1,94,1,124,1,134,1","schemeinvolves,85,1","schemers,94,1","schemes,17,1,36,1,85,1,81,3,90,1,94,3,104,1,107,1,110,1,111,3,134,1","schichtel,115,4","schief,17,1,51,1","schmidt,77,2,81,1","schneider,52,1","schneier,65,2,114,2","scholars,109,1","school,12,1,39,3,127,1,133,20","schools,39,1,85,1","schuler,81,2","schwab,81,1","schwartz,58,1","schwarzenegger,134,1","science,101,2,106,2,109,1,112,1,126,1","scientist,12,1,116,1,126,1","sco,107,1","scoffing,132,1","score,89,1,70,2","scores,81,1,94,1,70,2,111,1,112,1,130,1","scott,26,8,39,1,74,1,81,2,110,1,127,1","scottsdale,81,1,103,1","scour,111,1","scourges,6,1","scouted,103,1","scrambles,131,9","scrambling,81,2,130,1,131,1","scratch,71,1","screeching,134,1","screen,12,1,45,1,47,1,105,1,113,1","screening,28,2","screens,81,1","screenshots,43,1","screenwriter,111,1","screwed,2,1","scrilla,81,1","script,111,1,115,1","scripting,43,1,67,1","scripts,82,2,92,1,105,1","scrolling,12,1,86,1","scrutinized,81,1","sdbot,93,4","sdep,101,3","sealed,81,1","seamless,100,1","sean,1,1,112,1","search,1,1,12,1,39,1,43,2,90,2,86,3,40,1,99,1,105,2,113,1,120,1","searchable,86,1","searched,107,1","searchers,30,1,123,1","searches,15,1,105,2","searching,4,1,79,1,86,1,111,1","searchmiracle,43,2","searchsecurity,46,1,82,1","sears,81,1","seasons,135,1","seat,81,1,106,1","seatbelts,110,2","seats,101,1","seattle,26,2,81,2,2,1,111,1","seaworthy,81,1","sec,17,1,9,8","second,29,1,56,1,74,1,46,1,81,4,82,2,70,1,105,2,111,1,134,1","seconds,93,1,88,7","secret,5,2,39,1,78,1,79,2,81,61,82,1,90,1,92,1,2,1,105,3,103,3,130,9","secretariat,90,1","secretary,106,2,109,1","secretive,87,1","secretly,5,1,43,1,85,1,37,1,109,1,130,1","secrets,81,1,51,1","secretservice,103,1","section,5,1,81,3,90,1,2,1,130,1","sections,56,1","sector,80,1,81,1,90,1,106,2,121,1","sectorally,58,1","sectors,81,1","secure,29,1,17,1,24,1,43,1,45,1,47,1,69,1,80,1,81,5,82,1,89,3,93,1,95,3,40,6,70,1,28,2,52,2,72,2,98,1,99,7,105,5,107,4,108,1,119,1,109,5,116,1,120,1,124,2,132,1","secured,74,1,81,1,101,1,115,1","securely,89,1","securid,81,1,28,3","securing,81,2,88,1,105,2,111,1","securities,3,2,17,2","security,3,2,10,7,29,6,31,5,24,2,26,12,27,2,43,7,45,24,47,6,56,21,66,2,57,19,58,3,65,3,67,14,69,12,73,10,74,4,71,1,46,5,77,16,79,4,85,11,80,2,81,52,82,22,83,7,84,5,30,5,89,16,93,12,90,3,91,1,92,1,6,2,94,6,86,1,95,1,2,22,68,2,40,35,70,1,28,3,51,4,52,3,72,2,9,8,37,4,88,2,98,11,99,41,105,35,100,6,101,7,103,7,104,1,106,13,107,4,108,4,119,1,128,1,109,5,110,13,111,14,113,1,114,12,116,14,117,2,118,8,120,12,121,2,122,2,123,4,124,2,125,4,126,5,127,4,129,19,130,3,131,14,132,12,134,1,133,1,135,3,137,5","securitycenter,43,1","securityexperts,85,1","securityfar,40,1","securityfocus,5,2","securitynumber,114,1","securitynumbers,114,1","securityplan,40,1","securityprecautions,40,1","securityprocedures,29,1","securityspecialists,31,1","securitythreats,40,1","securityweaknesses,77,1","security—you,105,1","seduced,111,1","see,4,1,12,1,27,1,66,1,57,4,58,1,46,1,81,3,82,1,30,1,89,1,93,3,92,1,94,1,86,2,105,5,100,3,102,1,107,2,123,1,124,2,131,1,134,1,136,2,137,1","seed,95,1,109,1","seeded,113,1","seeding,95,4","seeing,5,1,39,1,71,1,85,2,30,1,93,4,90,1,109,1,116,2,123,1,125,3","seek,12,1,43,1,103,1,135,1","seeker,6,4","seeking,1,1,43,1,94,1,2,1,125,1,135,1","seekingentry,103,1","seeks,120,1,132,1","seem,87,1,2,1,40,1,99,1,111,1","seemed,85,1,86,1","seeming,85,1","seemingly,27,1,39,1,81,1,92,1,88,1","seems,105,1,100,1","seen,5,1,29,1,39,2,43,1,57,1,46,2,81,1,30,1,93,3,90,1,105,1,101,1,102,1,104,1,109,3,111,2,116,4,117,1,123,1,131,1,134,1","sees,5,4,24,1,81,1,94,2,132,1","segue,81,1","seibel,81,1","seisint,105,4","seize,43,1,112,1","seized,43,1,81,1","seizes,81,1","seizing,105,1","seizure,1,1","seizures,39,1","select,65,1,73,1,74,1,89,1,86,1","selected,82,1,103,1","sell,5,1,56,2,65,1,79,2,81,5,89,1,90,2,88,1,105,1,103,4,107,1,111,1,134,1","seller,81,2","sellers,100,1,103,1","selling,5,1,56,1,65,1,81,2,40,1,99,1,105,3,101,1,107,2,113,1,116,1","sellingcobs,103,1","sells,81,1,82,1,105,2,102,1,107,1,116,1","seltzer,43,1,67,1,69,1,83,1,84,1,30,1,93,1,94,1,101,1,123,1,126,1,132,2,137,1","semi,125,1","semiannual,10,1,37,1","semiconductor,81,3","sen,58,1,98,2","senate,58,18,98,2,105,1,132,2","senators,58,2,114,1","send,15,1,12,1,29,1,45,1,47,1,69,1,85,2,81,6,89,1,90,3,91,2,92,2,95,1,52,4,105,1,100,1,103,1,109,1,112,2,130,2,132,1","sender,81,2,130,2,133,1","senders,81,2,132,1","sending,45,1,47,1,77,1,85,1,81,2,91,2,6,1,52,1,107,1,108,1,109,3,112,1,122,1,126,1,130,1,134,1,137,1","sends,13,1,43,1,109,1,111,1,112,1,134,1,137,2","senior,66,1,85,2,81,3,83,1,93,2,2,2,28,1,105,2,103,1,106,1,107,1,111,1,116,2,118,1,131,1,135,1","seniors,134,2,135,4","sens,58,1","sense,57,1,89,2,86,1,2,1,40,1,99,1,115,1,118,1","sensitive,17,1,69,3,85,1,81,1,84,1,30,1,2,2,28,1,72,1,98,4,104,1,119,1,109,1,110,1,116,2,118,2,120,2,121,1,123,1,134,1,133,2","sensitiveinformation,31,1,116,1","sensor,106,1","sensors,28,1","sent,36,1,39,1,79,1,81,2,89,3,90,2,86,1,52,2,37,3,105,1,119,1,116,1,121,1,126,1,131,1,134,2,135,1,137,2","sentence,12,1,36,1,115,2,132,1","sentenced,36,13","sentencing,81,1,115,2","sentinel,24,1,45,1,47,1","sentthrough,91,1","sep,10,1,31,1,56,1,115,1","separate,12,1,74,1,105,1,111,1","sept,39,2,81,1,37,2,106,1","september,3,5,39,2,81,1,89,1,90,2,28,1,105,3,100,1,120,1,132,1,134,1,136,3","sequence,51,1","series,24,1,85,1,82,1,89,1,98,1,111,1,115,1","serious,4,1,5,1,31,2,39,1,43,1,57,1,65,1,69,1,77,2,93,2,94,5,52,1,37,1,100,2,104,1,106,1,130,1,131,1","seriously,4,1,39,1,105,1,100,1,114,1,132,2","serve,43,1,105,2","served,3,1,5,1,36,1,43,1,81,2,105,1,115,1,130,1","server,13,1,67,4,69,2,74,4,46,1,77,2,85,2,81,8,82,2,30,4,93,1,92,3,95,1,101,1,107,3,109,2,115,1,116,2,123,4,130,4","servers,1,1,29,1,67,6,69,2,85,4,81,8,82,1,30,1,90,1,95,1,52,2,102,1,107,2,128,1,109,5,112,6,123,1,130,3","servershave,112,1","serversin,103,1","servers—messages,130,1","serves,43,1,111,1","servesadult,1,1","service,1,1,3,3,15,1,5,2,10,1,13,11,24,1,27,1,36,1,39,3,43,6,56,14,69,1,74,1,71,1,78,1,79,2,85,2,81,72,82,3,89,3,90,5,92,1,6,3,94,1,86,3,2,1,68,4,40,2,70,2,28,3,52,2,72,3,88,1,99,2,105,6,100,1,103,8,104,4,107,3,108,2,110,1,111,2,113,1,114,1,115,5,116,3,120,3,127,2,130,10","serviceattacks,1,1","services,4,1,5,1,10,2,26,1,39,2,56,4,57,3,67,1,77,1,81,10,82,1,89,3,90,4,94,2,2,4,40,1,28,14,73,1,52,1,98,2,99,1,105,4,100,2,101,3,103,4,104,1,107,2,108,1,109,1,111,1,114,1,121,1,127,1,134,1,136,2","servicescommittee,29,1","servicesources,135,1","serving,12,1,36,1,81,1,134,1","session,81,1,130,1","sessions,81,1,30,1,123,1","set,12,1,45,1,66,1,46,1,79,2,85,4,80,1,81,4,82,1,89,1,93,1,86,2,2,1,40,1,47,1,52,1,88,3,99,1,104,1,106,1,109,2,115,1,118,1,126,1,127,1,130,2,134,1","setback,105,4","setpriorities,77,1","sets,30,1,123,1","setting,45,2,85,2,47,2,107,1","settings,43,1,30,1,120,1,123,1","settled,2,1","settlement,81,2","settling,2,1","setup,85,1","seven,10,1,27,3,39,3,6,1,102,1,119,1,118,1","sevenspam,112,1","seventh,39,1","seventy,27,1,39,1","several,43,1,66,1,58,1,46,2,77,4,79,1,85,2,89,1,90,2,91,1,6,1,95,1,2,1,40,1,88,1,99,1,105,1,102,1,103,1,128,1,111,1,118,1,122,1,131,2,135,1,137,1","severe,37,3,131,9","severely,105,1","severity,10,1,77,1","severityof,85,1","sex,3,1,12,8,39,8","sexual,4,1,39,13","sexually,39,3","sgetting,103,1","sgt,39,1,134,1","shadow,51,2","shadowcrew,5,2,78,2,81,72,103,1,130,11","shadowcrew—a,130,1","shadyinternet,115,1","shaking,2,1","shall,80,1","shamefully,100,1","shape,81,1,130,1","share,4,1,29,1,27,1,57,1,81,3,89,1,90,1,51,1,102,8,110,1,130,1","shared,39,1,103,1,120,1,134,1","shares,69,1,2,1,105,1","sharing,4,2,45,1,77,1,85,1,81,2,93,1,90,1,47,1,109,1,115,1,124,1,127,1,130,1","sharma,73,1","sharp,69,1,98,1,111,1","sharpening,26,1","shatter,81,1","she,29,2,43,2,79,1,80,2,81,2,87,4,89,2,90,8,86,4,70,6,52,1,105,1,101,2,103,1,110,2,111,15,112,1,126,1,134,12,133,1,135,7","sheep,46,1","sheer,5,1,12,1,111,1,112,1","sheet,3,1,46,1","shelf,103,1","shell,82,1,73,1,107,1,115,2","sheriff,39,1,133,2,135,1","shift,10,10,67,3,69,9,77,11,79,1,52,1,37,1,111,1,116,3,137,1","shifted,2,1","shifting,69,5,46,1","shifts,46,9","ship,28,1","shipman,110,2","shipment,102,1","shipments,102,22","shipped,81,1,101,1,109,1","shipping,86,1","shirley,2,1","shock,105,1","shocked,30,1,123,1","shocking,39,1","shoddy,81,1,100,1","shop,26,1,74,1,79,1,89,1,90,1,111,1","shoppers,121,1","shopping,10,1,12,1,13,1,26,1,39,1,67,1,89,2,90,2,94,1,86,1,2,1,134,1,135,1","shoppingbuddy,137,1","shops,26,1,57,1","shore,105,1","shores,67,1","shoring,67,1,105,1","short,81,2,89,1,2,4,103,2","shortly,105,1","shot,112,1","should,29,1,26,1,27,1,39,1,45,1,56,1,57,1,58,1,69,3,46,1,81,3,89,10,86,5,40,1,47,1,70,2,51,2,52,1,98,1,99,2,105,1,100,2,108,1,109,3,110,1,111,1,134,3","shouldbe,40,1","shouldenforce,57,1","shouldfurther,17,1","shouldn,86,1","show,1,1,3,1,39,1,43,1,93,1,86,1,2,1,88,1,111,1,132,1","showed,29,1,81,1,90,1,107,1,120,2,131,1","showing,5,1,89,1,105,1","shown,43,1,93,1,94,4,73,1,107,1","shownthat,57,1","shows,12,5,56,1,67,1,46,1,85,1,81,1,70,1,110,1,112,2,127,1","shred,71,2,89,1,72,1","shredded,71,1,89,3","shredder,89,4,72,1,135,1","shredders,89,5,72,1","shredding,27,1,71,1,72,1","shreds,135,1","shtick,51,1","shut,43,3,65,1,79,2,85,2,81,7,90,2,94,3,52,2,107,1,114,1,130,1,134,1,133,1","shuts,43,9,94,1","shuttered,94,1,115,1","shutting,111,1","sick,12,1,120,1","side,1,1,10,1,43,1,67,1,81,1,82,1,105,2,100,1,116,1,126,1","sidebar,2,4","sidebars,43,1","sidelines,80,1","sift,92,1","sights,77,10,79,1","sign,74,1,81,1,87,2,89,2,86,1,51,2,100,1,111,2,137,1","signal,135,1","signaled,107,1","signals,52,1,100,1","signalstrengths,57,1","signature,81,1","signatures,83,2,95,1,120,1","signed,90,1,28,1,111,1,132,1","significant,10,2,13,1,31,3,36,1,39,1,43,1,56,3,57,1,58,2,65,2,67,1,81,2,107,1,109,1,125,1","significantly,77,1,40,1,99,1,105,1,109,1","signing,81,1,105,1,111,1,132,1","signs,45,1,66,1,47,1","silent,91,1","silently,1,1,66,1","silly,51,1","silver,81,1,70,4,110,1,132,1","similar,12,2,43,1,79,1,81,2,2,2,101,1,109,1,112,1,115,1,118,1","simple,71,1,81,1,87,1,52,1,105,1,100,1,132,1","simplemail,112,1","simpler,5,1","simplify,111,1","simply,13,1,43,1,66,2,79,1,85,2,89,4,86,1,2,1,40,1,99,1,109,1,131,1","simulating,137,1","simulations,93,1","simultaneous,81,1,106,1,130,1","simultaneously,82,1,100,1,111,1","sin,105,1","since,31,1,17,1,66,1,74,1,46,2,81,3,83,1,84,1,90,1,2,1,37,1,98,1,105,1,109,2,111,3,122,2,125,1,131,1,132,2,136,2","singapore,134,1","single,39,1,85,1,81,2,89,2,91,1,52,1,37,1,100,1,104,1,121,2,126,1","singlebiggest,112,1","sinister,88,1,116,1","sinisterthan,116,1","sink,81,1,134,1","sinking,105,1","sioux,101,1","siphon,103,1","sir,51,1","sirota,103,1","sister,90,1,132,1","sisters,109,1","sit,79,1","site,4,3,12,1,13,2,27,1,36,2,39,4,43,1,66,1,67,1,71,1,78,1,79,3,85,4,81,39,82,1,30,1,89,8,93,1,90,6,92,1,6,7,94,15,86,4,28,1,52,1,72,3,88,1,100,1,103,5,104,1,107,3,109,16,110,3,111,3,120,2,123,1,125,1,130,8,131,1,134,1,133,4,136,1","sitehosting,85,1","sitekey,82,3","sites,10,1,13,3,29,2,36,1,39,11,43,3,45,2,69,2,74,1,46,2,79,18,85,4,80,1,81,17,82,1,83,1,89,1,93,1,90,11,91,1,92,1,94,9,68,1,47,2,28,5,103,5,107,9,109,8,110,3,111,9,113,2,116,3,121,1,130,2,131,8,132,2,133,1","sitesto,29,1","sits,81,1,130,1","sitting,65,1,74,1,81,1,92,1,107,2,111,2","situation,56,1,93,1,72,1,117,1","situations,58,1,89,2","six,10,5,27,1,36,3,39,3,56,1,77,1,81,7,93,1,68,1,40,1,52,1,37,6,99,1,103,1,104,1,109,1,110,1,112,3,116,1,122,1,125,3","sixth,130,1","sixty,27,2","size,57,1,85,1,30,2,105,1,101,1,108,1,123,2","sized,81,1,40,1,99,2","sizedbusinesses,40,1","skeleton,100,1","skeptical,89,1","skepticism,103,1","skewed,106,1","skibell,82,1","skill,81,1,88,1","skilled,71,1,81,3,89,1,72,9,135,1","skillful,130,1","skills,71,1,116,1","skimmed,111,1","skimming,134,2","skipped,115,1","skittish,103,1","sknowledge,15,1","skoudis,111,1","skype,67,2","skyrocket,111,1","slacke,107,2","slammer,126,2,132,1","slang,85,1","sleep,70,1","sleeping,85,1","sleight,93,1","slew,57,1,81,1,74,1","slices,13,1","slick,93,1","slightly,26,5,39,1,81,1,102,3,126,1","slip,87,1,94,9,102,1,103,1,109,1,111,1,132,1,137,1","slipped,2,1","slipping,66,1,121,1","sloppy,67,1,100,1","slow,45,1,66,1,57,1,47,1,101,1,102,2,111,3,116,1","slowdowns,113,1","slowed,111,1,125,1","slower,102,1","slowing,111,1,112,1","slowly,103,1","sluggers,87,1","sluggish,45,1,47,1","sluggishness,13,1","slurry,103,1","sly,13,9","smachines,1,1","small,10,1,58,1,85,1,30,1,89,1,90,1,2,6,40,16,28,5,99,13,105,2,103,1,107,1,111,3,113,1,123,1,126,1","smallbusinesses,40,1","smaller,10,1,56,1,2,1,108,1,116,1,127,1","smart,29,1,57,2,81,1,90,1,94,1,28,7,124,1","smarter,71,1,94,2","smash,15,9","smathers,113,1","smiles,12,1","smith,5,1,39,1,81,1,89,4,131,2","smulders,102,2","snag,26,9","snail,89,6","snapshot,78,9,89,1","snapshots,81,4","snare,12,1,111,1,132,1","snatch,69,1,82,1","snational,77,1","sneak,52,1","sneaky,111,1,116,1","sniffer,30,1,123,1","snooping,120,1","snoopware,89,1","snuff,115,1","snyder,105,1","soar,111,1","soared,83,1","soaring,39,1","sober,95,24,122,2","sobering,120,1","sobig,81,1,52,1","soccer,95,1","social,29,1,24,2,26,11,27,2,43,1,58,1,71,1,81,7,89,10,6,1,2,2,74,1,72,2,98,1,105,5,100,2,103,2,111,1,114,4,129,1,132,1,134,1,135,3,137,3","socially,111,1","society,39,2,100,1","sofa,51,1","soft,77,1,82,2,111,1","softball,87,1","softunderbelly,77,1","software,15,2,4,3,12,5,26,2,43,10,45,17,56,3,66,1,57,6,58,1,67,1,69,12,46,1,77,12,79,2,85,5,81,18,82,5,83,2,84,1,30,5,89,12,93,4,92,3,2,2,40,2,47,13,28,1,51,2,52,3,74,1,37,2,88,5,99,3,105,5,100,1,101,2,106,1,107,2,108,1,119,1,128,1,109,4,110,2,111,3,113,1,116,7,117,1,118,6,120,11,122,1,123,1,124,1,125,4,130,1,131,5,132,1,135,1","softwareapplications,77,1","softwarecan,85,1","softwarefirewall,40,1","softwareto,114,1","softwaretypically,66,1","sohas,116,1","soil,81,1","sojourn,79,1","sold,39,1,69,1,85,1,81,4,83,1,89,1,94,1,2,2,105,1,100,1,103,2,104,1,107,1,128,1,111,1,115,1,130,1","soldiers,85,2","sole,107,1","solely,81,1,100,1,116,1","solicit,12,1","solicitation,39,3","solicitations,27,1,39,1,101,1,111,1,135,1","soliciting,12,1","solicitors,135,1","solid,89,1","solidadvantage,85,1","solution,56,3,58,1,85,1,40,1,28,2,99,1,110,1","solutionary,81,1,103,1","solutions,10,1,56,5,57,1,85,2,82,2,89,1,40,5,73,1,99,5,105,1,103,1,134,2,136,1","solve,85,1,81,1,105,1,100,1,130,1","solved,81,1","somany,40,1","some400,1,1","somebody,1,1,74,1,72,1,105,1,107,1,109,1,126,1,133,1","someone,1,1,12,1,27,1,71,2,79,1,81,2,87,2,89,5,93,4,90,1,92,2,94,5,86,1,2,2,70,3,52,1,105,5,110,1,111,1,112,1,114,1,117,1,130,1,134,3,133,1,135,5","someplace,39,1,79,1","somesubscribers,112,1","something,31,1,57,1,46,1,79,1,85,1,81,2,87,1,89,1,93,1,92,1,94,1,86,1,70,1,88,1,107,1,117,1,126,1,131,1,135,1","sometime,114,1","sometimes,4,1,85,1,81,1,94,1,2,1,70,1,100,2,103,1,106,1,107,1,109,2,111,1,116,1,135,1","somewhat,39,2,85,1,102,1","somewhere,89,1,90,1,94,1","son,27,1","sony,67,10","soon,29,1,24,1,57,1,67,1,46,1,79,1,93,1,52,1,98,1,107,1,116,1,131,2","sooner,134,1","sophisticated,5,4,10,1,36,2,57,2,85,2,81,1,82,2,89,1,93,1,92,1,2,1,40,1,99,1,105,1,103,2,107,1,108,2,109,1,111,1,113,1,116,3,124,1,125,1,134,1,137,1","sophistication,5,1,57,1,30,1,93,4,90,1,123,1,125,1,132,1","sophos,81,1,128,2,111,1","soprano,85,2","sopranos,85,12,110,1","sorce,115,1","sorry,51,1","sort,81,1,92,1,100,1,134,1","sorts,85,1,90,1,107,1","sothis,114,1","sought,39,1,52,1,113,1","souhail,80,1","sound,71,1","sounding,39,1,81,1","sounds,100,1","source,13,1,81,1,83,2,89,2,92,1,2,1,105,1,100,1,107,1,108,1,109,1,111,1,112,4,117,1,130,1,136,4,137,1","sourced,108,1","sources,10,1,85,1,81,2,2,1,72,1","south,70,8,52,2,109,2","southern,111,1","southgate,70,4","soviet,103,1","sox,82,1","space,28,1,100,1,115,1,126,1","spam,1,1,15,1,10,3,45,2,56,2,85,3,81,3,30,2,90,1,91,6,92,1,6,1,94,1,13,20,40,1,47,6,28,1,52,21,37,5,99,1,104,1,107,7,108,3,128,1,110,1,111,18,112,5,113,5,116,2,122,12,123,2,125,1,130,2,131,1","spambots,112,1","spammed,95,1","spammer,52,3,112,2,113,1,132,3","spammers,5,1,85,1,89,1,91,1,52,9,107,2,111,1,112,1,113,2,116,1,132,1","spamming,3,1,81,1,83,1,13,1,52,1,107,1,115,1","spammingoperations,91,1","spamrelays,116,1","spamstarted,85,1","span,51,1","spangler,81,1","spano,74,1","spate,114,1","spawn,52,1","spawns,89,1","speaker,70,1","speaking,5,1,65,2,80,1,98,1,115,1,127,1","speaks,72,1","special,12,3,71,1,79,1,81,8,89,1,92,1,74,1,37,1,103,1,130,1,131,1,133,1","specialham,113,1","specialist,71,1,80,1,81,5,2,1,106,1","specialists,57,1,85,2,113,1","specialized,81,1,84,1","specializes,2,1","specializing,82,1,86,2,107,1","specialty,81,1","specific,58,1,83,2,30,1,87,1,105,1,101,1,111,1,123,1","specifically,4,1,79,1,28,1,52,1,105,1,126,1","specifying,2,1","specter,58,3,98,1","spectrum,82,1","speculate,92,1","speculation,133,1,136,1","speech,132,1","speed,12,1,17,1,26,5,80,1,82,1,52,2,111,1,112,2,127,1,136,2","speeds,12,1,57,2,136,1","spell,109,1","spelled,81,1","spells,116,2","spencer,93,1,88,1","spend,29,1,67,1,81,1,51,1,105,2,100,2,134,2,136,1","spending,56,1,81,1,105,1,116,1","spends,90,1,105,1","spent,39,1,56,1,89,1,90,1,2,2,51,1,132,1,134,2","spew,111,9","sphere,79,1","spherion,81,1","spi,67,1","spies,81,1,89,1,128,1,130,1","spiesrealdomain,89,1","spike,66,1,69,1","spilling,134,1","spinning,1,1","spivack,43,3","splattercasts,13,1","splits,82,1","spoils,111,1","spoke,5,1","spoken,111,1","spokesman,1,1,39,1,81,1,104,1,126,1","spokesmanpaul,116,1","spokesperson,43,1,82,2,94,1","spokeswoman,2,1,111,1","sponsored,27,2,69,2,107,1,120,1,134,1","spoof,57,1,81,2,89,1,94,1,110,1","spoofed,130,1","spoofing,81,1,89,8,109,1","spoofs,94,1","sports,37,12","sportscar,15,1","spot,24,1,45,1,69,1,81,1,2,1,47,1,28,3,101,1,112,1,126,1","spotlight,69,1","spots,57,1","spotted,95,1,2,2,128,1,116,1,131,1,137,1","spotting,28,1","spouse,89,2","spouses,83,1","spread,4,1,43,2,66,1,93,2,6,1,95,1,40,1,52,1,99,1,113,1,124,1,126,19,127,1","spreading,88,1,128,1,109,1,111,3,124,1,131,1,137,1","spreads,134,1","spreadsheet,81,1","spring,81,1,83,1,70,9","springs,70,4","sprosecuting,115,1","sprout,81,1","spur,116,1","spurred,58,1","spy,58,2,89,3,100,1,116,2","spyaudit,46,1","spybot,115,1","spying,66,10","spymon,83,2","spyware,1,1,15,1,10,2,29,2,43,35,45,20,56,2,66,1,58,8,67,1,46,38,85,2,81,1,82,1,83,3,30,21,89,28,93,4,92,13,94,1,2,8,40,11,47,32,37,4,88,1,99,7,101,26,104,1,119,1,109,1,110,1,111,1,118,3,120,9,123,17,131,7,132,11","spywareguide,89,2","spywareoperation,43,1","spywarethreats,43,1","sql,67,2,2,1,126,1","squads,113,1","square,5,9","squirming,93,1,137,1","ssa,89,1","ssn,24,3,89,1,92,1,72,1","staff,1,1,10,1,67,1,81,1,90,1,101,1,114,2,133,1","staffed,84,1","stage,51,1,133,1","staggering,91,1","stake,81,1","stakes,69,1,100,1,116,1","stalkers,91,1","stance,2,1","stand,101,1","standard,77,1,81,1,93,1,105,1,132,1,136,1","standardized,81,1","standards,29,1,57,1,81,1,98,1,106,1,111,1,116,1","standing,27,1,133,1","standpoint,52,1,100,1","stands,89,1,101,1","stanford,39,5","stanley,69,1","starbucks,57,1,2,1","stark,17,1","start,45,1,65,1,46,3,77,1,80,1,81,2,93,2,94,1,47,1,51,1,111,1,124,1","started,85,1,81,1,87,1,88,3,128,1","starters,85,1","starting,57,1,85,1,81,1,89,1,51,4,107,1,110,1","startling,107,1","starts,85,1,30,1,123,1","startup,82,1","state,12,3,24,1,58,1,69,1,71,1,90,4,86,1,2,3,74,1,98,2,105,1,111,1,126,1,134,1","stated,108,1,127,1,133,1","statement,5,1,66,2,89,4,73,1,74,1,72,1,101,1,103,1,111,1,120,1,122,1,127,1,131,1,134,2","statements,89,2,90,1,72,2","states,10,1,27,1,39,2,58,2,65,5,69,1,46,1,79,2,85,1,81,5,30,1,90,1,94,1,86,1,72,1,102,3,103,1,108,5,109,1,121,1,123,1,134,1","stating,102,1,133,1","station,12,10,134,1","statistics,3,2,39,3,46,1,83,1,91,1,68,1,103,1","statisticsfor,112,1","stats,39,1","status,103,1,108,1,114,1,127,1","stay,24,1,71,1,46,1,87,1,2,5,13,1,28,5,52,1,105,2,118,1,130,1","stayed,80,1,81,1","stays,46,1","staysafeonline,118,1","stct,106,1","steadily,28,5","steady,39,2,105,1","steal,5,1,46,1,85,1,81,2,83,1,89,2,90,2,91,1,92,1,94,1,68,1,74,1,72,1,103,1,104,3,107,1,110,1,111,10,114,1,116,1,134,2,135,1","stealing,69,1,46,1,81,2,89,1,90,1,88,1,113,1,134,1,135,1","steals,109,1,114,9","stealsensitive,66,1","stealth,83,1","stealthdivision,81,5,130,1","stealthier,10,1,125,1","stealthy,69,1,2,2,116,1","steep,113,1","steeply,82,1","stefan,81,1","stellar,89,1","stem,43,1","stemming,102,1","stempel,29,1","step,1,1,29,11,13,1,70,1,51,1,72,2,105,3,106,1,107,1,110,1,116,1,135,1,136,1","stephens,130,1","stepping,13,1,111,1","steps,29,1,45,2,77,1,2,1,47,3,134,2","steps—and,81,1","steve,81,1,52,1,111,1","steven,116,1","steward,81,1","stewart,83,2","stick,89,1,40,1,99,1,126,1","stiennon,43,2,46,5","stiff,90,1,111,1","stiffer,104,1","still,5,2,29,2,17,1,56,3,81,2,82,2,83,1,84,1,89,1,90,2,94,9,86,1,2,1,51,4,105,4,100,2,102,1,103,1,106,1,108,1,128,1,109,1,110,1,111,1,112,1,116,2,118,2,120,1,121,1,131,1,134,2","sting,79,1","stinger,95,1","stings—the,81,1","stink,51,13","stinks,51,1","stitched,81,1","stm,68,1","stock,78,1,80,1,2,2,105,2,118,1,134,1","stocks,2,1","stock—stolen,81,1","stole,3,1,36,2","stolen,5,3,31,1,17,1,24,8,26,11,57,1,78,1,79,6,85,3,81,18,84,1,30,1,89,2,90,3,92,3,6,1,2,1,13,1,72,3,105,5,100,1,103,12,111,3,114,1,115,1,123,1,130,2,134,4","stolenaccount,85,1","stomach,12,1","stone,13,1","stood,81,1","stop,29,1,31,1,24,2,45,2,66,1,58,1,46,1,85,1,81,6,83,1,89,1,90,1,2,2,47,2,28,1,52,1,105,1,103,1,111,1,120,1","stopped,2,1,112,1,115,1,116,1","stopping,94,1,2,1,132,1","stops,94,1,13,1","storage,92,3,100,2,111,1","store,26,5,85,1,81,1,89,3,92,1,86,1,70,2,28,2,134,2","stored,57,1,92,1,100,1","stores,71,1,89,2,2,1,74,1,111,1,134,1","stories,85,1","storing,100,1","storm,67,2,69,1,81,1,90,2,127,3,130,1,131,1","story,1,1,12,1,66,1,65,1,69,1,46,2,30,1,89,2,91,1,2,1,68,1,73,1,74,1,101,1,106,1,107,1,119,4,112,1,115,2,116,1,118,1,120,3,123,1","stow,81,1","strange,88,1","stranger,86,1,2,1","strangers,87,2,6,1,135,1","strapped,88,1","strategies,111,1,136,1","strategist,81,1,105,1,110,1","strategy,57,1,85,2,81,4,126,1,130,1,132,1","stream,56,1","streamline,2,1","streams,73,1","street,12,1,46,1,85,3,86,1,74,1,104,1","strength,102,2","strengthen,28,1","stress,81,1","stressed,65,1,127,1,134,1","strict,40,1,99,1","stricter,57,1","strictly,79,1","strike,90,1,94,1,134,1","strikeforce,82,2","strikes,89,1","striking,93,1","string,84,1,114,1,116,1","strings,95,1","strip,28,2,103,1","stripping,81,1,130,1","strips,71,1,89,1","strokes,81,1,89,1","strong,43,2,67,1,85,1,81,1,89,2,28,4,105,1,102,1,114,1,134,1","strongefforts,1,1","stronger,58,1,90,1,40,1,99,1,105,2","strongly,39,1","stroz,81,2","structure,81,1","structured,5,1,81,1,103,1","structures,81,1","struggle,39,1","struggled,28,5","struggles,39,1","struggling,101,1","stuart,72,2","student,81,2,126,1,130,1,133,1","students,81,1,133,2","studied,107,1","studies,126,1","studios,81,1","study,39,20,66,6,67,1,85,1,89,1,2,1,73,1,37,5,119,2,118,11,121,14,126,2,127,9,132,1,135,1","studying,132,1","stuff,2,2,51,1,103,1,105,4,123,1,131,1","stuff…chat,30,1","stumble,30,4","stumbled,39,1,81,1,30,1,90,1,123,1","stumbles,79,1","stupid,115,1","stymied,52,1","sub,105,1","subcommittee,58,1,98,1","subculture,107,1","subject,27,1,65,1,81,1,89,1,110,1,130,1","subjecting,129,5","submarine,105,1","submit,89,1,72,1","submitted,26,3","subpoena,81,1,130,1","subscribe,1,1,105,1","subscriber,112,2,113,1","subscribers,39,1,108,1,112,4,113,1","subscription,107,1","subscriptions,111,1","subsequent,40,1,99,1,107,1","subsequently,4,1,81,1","subsidiary,105,1","substantial,115,1,132,1,135,1","substantially,103,1","substitute,24,1","suburb,74,1","suburban,115,1","subversive,37,1","subvert,1,1","succeeded,84,1","success,26,1,52,1,114,1,126,1","successes,84,1","successful,81,1,6,1,94,1,103,1,107,1,134,2","successfully,7,8,56,1,46,1,85,1,81,1,94,2,130,1","succession,2,1","suchpersonal,114,1","sucked,26,1","sudden,45,1,93,1,47,1","suddenly,105,1","suddenlydisappear,85,1","sue,82,1,86,1,2,1","suffer,84,1,116,1","suffered,46,1,81,2","sufficient,31,1","suggest,45,1,2,1,47,1,120,1","suggested,90,1,103,1,110,1","suggesting,77,1,82,1","suggestions,70,1","suggests,24,1,30,1,70,1,104,1,108,1,123,1","suit,43,1,81,2","suitable,88,1","suite,40,1,99,1","suited,111,1","sullivan,118,1","sum,28,1","sumitomo,84,2,88,1","summer,58,1,89,1,126,1","summit,134,1","sums,2,1","sun,100,1,116,1","sunbelt,83,4,30,9,92,4,123,5,131,1","sunday,70,10,125,1","sundaychallenger,70,8","sundwall,1,3","sunk,105,1","sunner,116,1","suntrust,90,1","super,69,1","superintendent,39,1,133,2","supervision,12,1,29,1","supervisor,72,1,134,1","supplement,82,1","supplied,116,1","supplier,81,2,40,1,99,1","suppliers,100,1,111,2","supply,81,1,89,1,13,1,134,1","support,39,2,56,1,58,1,81,1,90,1,40,1,28,1,51,21,98,1,99,1,124,1","supported,81,2,68,1","supporters,106,1","supporting,94,1,116,1","supportinginformation,116,1","supports,4,1","suppose,40,1,99,1","supposed,51,2,100,1,131,1","supposedly,92,1,70,1","supposefew,51,1","sure,24,2,45,1,85,1,81,6,89,4,90,1,86,1,47,1,70,5,72,2,107,1,105,1,109,1,118,1","surf,39,1,89,2","surfacing,111,1","surfed,111,1","surfers,89,1,90,1,110,1,136,1","surfing,45,1,46,1,89,2,6,1,47,1,101,1,118,1,120,1,136,1","surge,29,1,2,1,113,1,125,1","surged,111,1","surpass,136,1","surprise,69,1,81,2","surprised,93,2,126,1","surprising,135,1","surprisingly,56,1","surrendering,111,1","surreptitiously,89,1,37,1,108,1,112,1,132,1","surrounding,106,1","surveillance,81,1","survey,3,3,29,4,27,5,39,7,56,3,81,1,89,2,2,4,73,1,100,1,119,1,118,2,120,18,121,2,126,2,130,1,134,2","surveyed,27,4,56,1,81,1,2,1,73,1,118,1,120,3,121,1","surveys,121,1","survival,40,1,99,1,127,3","susan,86,1","susannamontezemolo,29,1","susceptible,81,1","suspect,12,2,104,3,105,1,134,1","suspectactivity,116,1","suspected,12,1,81,1,104,1,128,1,112,1","suspectedthat,15,1","suspects,15,3,81,3,104,4,105,1,128,2,111,1,134,2","suspended,52,1","suspending,105,1","suspensions,105,1","suspicion,1,1,26,1,79,1,90,1,104,1,130,1","suspicious,85,1,81,2,83,1,52,1,70,1,28,1,134,1","suzy,136,1","swaggeringshorthand,103,1","swamp,13,1","swank,51,1","swarming,106,1","swartz,26,3,2,3,13,2,111,1,113,1","sweden,103,1,107,1","sweep,132,4","sweeping,98,1,118,1","sweepstakes,134,1","swelling,111,1","swindlers,2,1","swipes,134,1","switch,69,6,82,1","switches,69,1,77,1","switching,73,1","switzerland,94,1,88,1","sycamore,36,2","sydney,117,1","symantec,10,14,45,4,67,2,69,2,77,3,95,1,28,1,51,27,37,6,101,6,107,3,116,4,120,1,125,5,131,1","symbian,57,1,124,1","symbol,85,1,109,2","symc,77,4","symposium,103,1","symptoms,120,2","synched,124,1","syndicates,85,2,81,1,90,1,111,1","sys,67,1","system,1,1,10,4,26,1,43,1,45,4,57,2,69,2,77,1,46,1,81,8,30,1,89,1,93,2,94,1,86,1,95,1,47,4,52,1,74,1,100,6,106,2,107,1,105,4,128,1,109,2,114,3,116,1,123,1,124,3,127,3,131,2,132,1,133,4,137,2","systemiccomputer,31,1","systems,15,2,4,4,5,1,10,2,31,1,57,2,67,3,69,15,77,6,46,2,85,5,80,3,81,11,84,2,30,1,89,1,2,1,40,4,52,1,88,1,99,5,101,7,102,1,103,1,104,1,106,4,107,8,108,1,105,3,128,1,112,1,114,4,116,4,120,2,123,1,124,2,126,6,127,1,130,2,131,1,132,3,133,3,137,1","systemsand,57,1","tab,79,1,47,1,134,1","tabak,135,2","table,45,4,56,1,101,1,136,4","tabs,90,1","tackle,81,1,132,1","tacos,134,1","tactic,85,1,93,1","tactics,26,1,43,1","tag,66,1,112,1","tailored,111,1","tainted,2,1","taiwan,90,1","takashi,84,1","take,5,1,29,1,31,1,24,3,27,1,39,1,43,1,45,3,57,3,58,1,67,2,69,2,71,1,77,1,79,1,85,2,81,4,83,2,84,1,30,1,89,1,93,1,92,1,94,1,2,1,13,1,47,4,52,1,70,1,51,2,72,2,88,2,100,2,101,1,103,2,108,1,105,5,109,1,110,1,111,1,115,1,116,1,123,1,124,1,126,2,131,1,132,2,134,4,133,1,135,2,137,1","takecontrol,1,1","takedown,81,1,104,1","taken,12,1,24,1,78,1,85,1,80,1,81,2,30,1,89,2,92,1,40,1,52,1,72,1,99,1,103,1,105,2,109,1,111,2,117,1,118,1,123,1,132,1,134,1","takeover,112,1","takes,4,1,45,1,81,1,89,1,47,1,52,1,109,1,112,1,114,1,127,1","taking,29,1,39,1,85,1,83,1,84,1,89,1,90,2,94,2,2,1,52,1,88,1,99,1,102,1,119,1,109,1,110,1,114,1,116,1,127,1,131,1,132,2,134,1","takingadditional,40,1","talented,106,1","talk,12,1,67,1,81,2,87,3,106,1,110,1","talked,87,1,89,1","talking,43,1,46,2,81,4,30,1,101,1,105,1,110,2,123,1,135,1,137,11","tame,51,1","tammy,105,1","tampered,12,1,134,2","tampering,1,1,99,1","tangible,111,1","tank,106,1","tap,99,1,111,1","tapes,100,1,114,1","target,10,2,57,2,65,1,69,1,77,1,81,2,6,1,2,1,68,1,72,2,105,1,109,1,111,1,116,1,132,1,134,1","targeted,10,2,65,1,81,2,84,1,89,3,90,2,94,1,13,1,37,1,88,1,104,1,105,1,110,1,111,2,116,5,125,2,126,3,127,1,135,1","targetedsecurity,116,1","targeting,13,1,37,1,125,2,132,1,137,1","targets,69,1,77,1,46,1,81,1,89,1,90,1,94,1,40,1,99,1,113,1,132,1,135,1,137,1","tarnished,70,1,134,1","tarrant,45,4","task,12,2,81,1,40,1,99,1,101,2,105,1,112,1,132,1,134,2","tasks,39,1,111,1","taste,90,1","tatiana,118,1","taught,135,1","taunt,95,9","taunts,95,1","tax,2,1,70,1","taxes,89,1","taylor,39,2,70,4,130,1","taylorsport,70,4","td,2,4","teacher,12,1,133,2","teachers,133,1","teaches,110,1","teaching,130,1","team,12,4,77,1,46,1,81,5,87,2,95,1,52,1,88,1,104,1,106,1,133,2","teamed,46,1,85,1","teaming,90,1","tear,89,1,72,1","tearing,27,1","teaser,39,1","tech,17,1,71,1,46,1,84,3,2,4,40,1,51,4,37,1,98,1,99,1,111,4,126,1,129,5,130,1,134,1,133,1","teched,127,1","technews,90,1","technica,92,1","technical,69,2,81,3,100,1,120,1","technically,81,3,89,1,52,1,120,1,130,1","technician,81,1,51,1","technicians,85,1,112,1,118,1,120,2","technicianscan,112,1","technique,109,2,112,2,132,1","techniques,39,1,81,1,89,1,52,1,116,1,117,1,121,1,126,1,131,1,132,1,137,1","technological,81,1,91,1","technologically,105,1","technologies,4,1,10,1,56,1,57,7,67,1,77,1,81,3,90,2,40,1,28,3,99,1,100,1,105,2,111,1","technology,1,1,4,1,10,4,29,1,17,1,39,2,43,1,45,1,58,3,65,1,67,1,69,1,46,1,80,1,81,6,82,1,90,4,40,2,47,1,52,2,28,11,74,1,77,1,98,1,99,3,100,1,101,2,105,2,110,5,114,1,116,3,118,3,120,1,126,1,129,1,130,2,132,3,133,1,135,1,136,1,137,1","technologyrequirements,40,1","technologystandard,57,1","techtarget,82,1","teeing,58,1","teen,87,2,105,1,128,1","teenaged,115,1","teens,12,1,39,2","teixeira,118,3","tel,84,1","telecom,65,1","telecommunications,81,1,106,1","telegraph,39,2","telemarketing,24,1,45,1,47,1,134,1","telephone,27,1,87,1,51,1,105,1,109,1,115,1,134,1,135,1","telephones,39,1","telephonyand,77,1","telescope,126,1","telescopes,126,4","television,90,1","tell,31,1,82,5,87,2,89,1,2,2,100,1,110,1,133,1","telling,87,1,88,1","tells,82,1,110,1,134,1,135,1","temperature,127,1","template,46,1","templatesalso,43,1","temporarily,81,2","temporary,100,1","tempt,109,1","temptation,39,1","tenacious,115,1","tend,81,1,74,1,113,1,135,1","tended,125,1","tendency,1,1,100,1","tends,108,1","tennis,105,1","tens,111,1,114,1","tenth,107,1","ter0r,107,1","term,65,1,85,2,81,2,89,1,77,1,100,1,101,1,103,2,120,1","terminals,89,4,93,1","terms,1,1,29,1,36,2,71,1,93,1,90,1,6,1,112,1,115,1","teros,81,1","terrence,26,1","territorial,81,1","territory,77,1","terrorism,65,1,80,1,106,11","terrorist,106,2","terrorists,65,4","test,46,1,81,2,51,1,103,1,106,1,116,1","tested,51,1,106,1,105,1,127,1","testers,103,1","testify,105,1,115,1","testifying,105,1","testing,69,1,81,2,92,1,77,1","tests,81,1,6,1","tetherball,86,1","tetranet,81,1","tex,105,2","texas,29,1,45,5,30,1,123,1","text,81,1,93,1,95,1,130,1","textare,66,1","tget,91,1","thailand,134,1","than30,117,1","thanchoicepoint,114,1","thanjust,116,1","thanks,90,1,118,1,122,1","thanksgiving,58,3","thanother,17,1","thantraditional,116,1","thatare,103,1","thatbroadcast,57,1","thatcompanies,57,1","thatcontinue,77,1","thatexploit,116,1","thatgenerate,29,1","thathave,57,1","thatidentity,114,1","thatinformation,85,1","thatresides,40,1","thatservice,51,1","thatthe,87,1,112,1","thattheir,87,1","thatthey,117,1","thatthousands,103,1","theanti,1,1,29,1","theassociated,119,1","theattack,116,1","theblogspot,43,1","thebulletproof,115,1","thebureau,43,1","thecapability,57,1","thechief,116,1","thecompany,1,1,43,1,57,1,115,1","thecompromised,85,1","thecomputer,43,1","thecrew,115,1","thedestructive,40,1","thedirty,85,1","thefdic,29,1","thefederal,43,1","thefight,43,1","thefirm,66,1","thefoonet,115,1","theft,3,1,15,1,4,2,29,22,31,11,17,1,24,6,26,1,27,6,45,2,56,2,58,2,71,3,46,1,79,1,85,1,81,5,82,1,84,1,30,15,89,29,90,2,92,8,6,1,2,1,40,2,47,2,70,11,28,21,73,2,72,3,98,1,99,2,100,2,103,2,107,2,105,20,110,1,111,1,114,4,121,2,123,11,132,3,134,22,135,17","theftc,43,3","thefts,85,1,80,1,81,1,83,1,103,1","theftschemes,103,1","thegoods,103,1","thegraffiti,116,1","thehigher,103,1","thehobby,116,1","theimportance,31,1","theinformation,85,1,103,1","theinput,77,1","theinternet,85,1,91,1,40,1,77,1,112,1","theinvestigations,43,1","theirbusiness,116,1","theircomputers,40,1","theirgains,43,1","theirmachines,57,1","theironline,43,1","theirsystems,116,1","thejurisdiction,85,1","thelong,77,1","themed,94,1","themore,40,1","themost,43,1","themotivation,116,1","themselves,4,1,39,1,56,1,79,1,85,1,81,2,89,1,91,1,68,1,52,1,100,1,105,2,109,1,127,1,134,1","themto,40,1","thenastiest,43,1","thenbe,116,1","thenewest,85,1","theobservance,51,1","theonboard,57,1","theoperation,85,1","thepayment,103,1","theproblem,51,1","theprograms,77,1","thereare,85,1","thereby,137,1","therefore,86,1,70,1,116,1,135,1","theremaining,112,1","thereon,80,1","theresults,115,1","therewere,29,1","thermometer,6,1","thesarbanes,40,1","thesecurity,85,1","theseinternet,85,1","theselittle,87,1","thesethings,85,1","theseweb,103,1","thesheer,112,1","thesoftware,77,1","thestory,103,1","thesymbian,57,1","thesystem,114,1","thetechnological,91,1","thetechnology,57,1","thethree,43,1","thevendors,77,1","thevictim,103,1","thevulnerability,85,1","theweb,103,1","theworld,103,1","they’re,99,1","they—and,100,1","theyankee,85,1","theyare,29,1,103,1","theybreak,68,1","theyoung,115,1","thickness,81,1","thief,31,1,24,2,89,10,2,1,72,1,134,1,135,2","thiemann,57,4","thievery,46,1,90,1,2,1,111,1","thieves,17,2,24,1,26,14,66,1,71,12,85,1,81,1,84,2,89,4,90,1,2,7,70,1,28,1,72,11,100,1,103,2,107,1,105,7,109,12,111,1,134,6,135,6","thing,30,1,89,1,92,2,94,1,2,2,51,1,88,1,100,1,107,1,105,5,111,1,123,1","things,56,1,57,1,90,1,92,1,6,1,94,1,86,1,28,1,72,1,100,2,103,1,107,1,105,5,109,1,111,3,117,1,135,1","think,27,2,39,1,43,1,45,2,71,4,46,2,85,1,81,2,93,1,86,2,47,2,52,1,51,1,88,2,99,1,105,4,119,1,110,1,112,1,114,1,118,19,120,1,134,1,135,1","thinking,81,1,86,1,40,1,99,1,105,1,112,1,120,1,130,1","thinkof,40,1","third,1,1,39,2,43,1,46,1,93,1,52,1,102,4,104,1,108,1,105,1,109,1","thirdattack,115,1","thirdof,112,1","thirds,39,1,81,1,68,1,52,1,120,1,121,1","thisconfusion,85,1","thisis,29,1","thisstuff,51,1","thnkyoupleasedie,81,2","thomas,70,8","thompson,51,1","thorough,105,1,118,1","thoroughly,81,1","those,1,1,4,2,12,1,26,9,27,1,39,3,45,1,56,4,57,2,58,2,67,2,69,1,71,1,79,1,85,3,81,6,83,1,30,1,93,1,90,4,92,1,94,3,86,1,2,2,40,1,47,1,52,1,28,1,98,1,99,1,100,1,101,1,103,4,107,2,108,2,105,4,109,1,110,1,115,1,116,4,118,4,120,9,121,1,123,1,130,1,134,4,133,1,135,3,136,3","thosesystems,114,1","though,4,1,71,2,46,1,89,1,90,1,92,1,94,1,52,1,100,2,101,1,105,1,111,1,116,4,120,1,124,1","thought,45,1,81,1,86,1,2,1,47,1,52,1,70,1,51,1,74,1,88,1,104,2,105,1,128,3,111,2,118,2,132,1,135,1","thoughyou,87,1","thousand,89,1,90,1","thousandinfections,66,1","thousands,85,3,81,4,30,1,92,2,52,1,88,1,103,1,106,1,107,1,111,2,123,1,125,1,134,4","threat,10,9,27,1,43,2,57,11,58,1,65,5,67,4,69,1,46,1,79,1,85,1,81,3,83,3,84,1,89,7,91,2,95,2,2,4,13,1,52,1,28,5,37,4,103,1,106,2,107,1,105,1,109,1,111,1,120,2,124,2,125,1,132,3,137,2","threatdevelopment,103,1","threaten,81,1,104,1,105,1,111,1","threatened,57,1,81,3,83,2,108,1,113,1,115,1,116,1","threatens,81,1","threats,10,3,57,3,65,1,69,1,81,1,82,4,89,2,94,1,2,1,40,17,28,6,73,1,51,1,37,1,99,20,104,1,107,1,116,5,118,2,120,15,124,1,127,1,130,1,137,1","three,15,2,12,3,24,1,36,1,39,1,43,2,45,1,81,4,89,2,90,1,91,1,40,1,47,1,70,2,51,1,37,1,88,1,99,2,102,1,104,4,107,1,108,1,105,1,119,1,111,1,114,1,115,3,118,2,121,3,125,1,126,1,130,1,134,2","threecalifornia,43,1","threw,98,1","thrift,86,1","thrills,125,1","thrives,103,5","thriving,26,1,85,1,81,1,2,1,107,1","through,1,2,3,1,4,1,10,2,12,2,29,1,26,1,27,1,39,1,43,4,66,1,58,4,65,1,85,3,81,15,82,2,89,1,93,1,90,3,91,1,92,1,94,12,86,2,68,1,52,2,70,1,28,2,72,5,37,2,102,1,103,3,106,1,108,1,105,2,109,1,112,4,114,1,115,2,121,1,124,1,126,1,130,5,131,1,132,2,133,1,135,1,136,1,137,2","throughout,85,1,81,1,105,1","throw,27,1,67,1","throwing,89,1,88,1,134,1","thrust,82,1","thumb,89,1","thursday,1,2,5,1,12,1,43,1,84,1,98,1,104,2,128,1,110,1,117,1,121,2,129,5,133,1","thus,81,1,105,2,132,3","thwart,29,4,28,1,72,2,132,1","tick,103,1","ticker,81,1","ticket,100,1","tide,46,1,85,1,111,1","tied,94,1,114,1","tier,85,1,81,1,111,1","tifton,52,1","tight,105,1,133,1","tighten,29,1,105,2","tile,134,3","tim,5,1","time,5,1,10,2,29,1,31,1,26,1,39,3,45,2,56,2,58,1,85,3,81,11,82,1,30,2,87,3,89,6,93,4,90,7,92,1,94,3,95,1,2,4,13,1,47,2,52,8,70,2,28,1,51,3,37,1,88,1,100,2,101,1,102,1,103,3,106,1,105,8,111,2,112,1,114,1,115,4,116,2,123,2,126,1,127,8,129,1,130,3,132,1,134,5,135,1,136,3","time—an,81,1","timeframe,82,1","timeline,81,2","timely,70,1,105,1","times,39,3,85,1,81,1,87,1,6,1,2,1,103,5,104,1,105,3,110,1,111,1,116,1,132,1,134,1","timesmore,68,1","timing,127,1","timingtheir,91,1","tiny,89,1","tip,31,1","tipped,43,1,81,1,126,1","tipping,111,1","tips,17,2,81,2,6,1,2,1,118,2,120,1","titan,69,1","title,45,1,47,1,130,1","titled,85,1,37,1","titles,12,1,81,1,103,1","tknow,85,1","toaccess,17,1","toarticle,86,1,122,1","toattack,57,1","toattacks,57,1","tobe,57,1,85,1,112,1","tobias,111,1","tochange,103,1","tocomply,85,1","tocomputer,85,1","toconsumers,31,1","tocounterfeit,103,1","tocrack,103,1","tocritical,77,1","today,5,2,26,3,39,4,57,1,46,1,85,4,81,1,87,1,89,1,93,1,91,1,92,1,2,7,13,3,88,1,100,3,105,2,111,4,113,2,116,5,129,1,130,1,136,1","todd,57,1,81,1,94,1","toddlers,39,2","todefuse,51,1","todetect,15,1","todownload,57,1","toestablish,85,1","tofederal,68,1","togain,116,1","together,5,2,65,1,71,1,85,1,81,3,89,1,93,2,90,1,6,1,70,1,88,1","tohave,103,1","tohide,43,1","toidentity,114,1","toindia,51,1","toits,77,1","token,82,2,40,1,28,2,99,1","tokens,29,1,81,1,82,2,90,1,28,1,105,1,130,1","tokens—palm,81,1","tolaunch,116,1","told,17,1,39,1,80,1,81,1,87,2,89,1,90,1,2,3,51,1,98,1,103,1,105,5,112,1,118,1,130,1,132,1,133,2","toledo,115,1","tolerate,113,1","toll,24,1,45,1,89,1,47,1,72,1,115,1","tom,15,1,65,2,68,1","tome,107,2","tomlin,51,1","tomorrow,100,1,111,1","tomzeller,103,1","toner,2,1","tones,43,1","tony,85,2","too,12,1,29,6,39,1,67,1,81,3,82,1,87,2,90,2,92,1,94,1,86,1,2,1,40,1,70,1,99,2,100,9,103,2,105,2,116,1,118,1,132,3,134,3,135,2","tooa,40,1","toobtain,1,1","toohard,103,1","took,26,1,36,1,102,1,106,1,105,5,111,3,112,1,115,2,132,1,134,2","tool,43,2,66,1,85,1,81,2,82,1,30,3,87,1,93,1,6,1,94,1,105,1,111,1,123,3","toolbar,43,2,94,1,28,1,110,3","toolbars,45,2,81,1,47,2,28,1","tool—it,81,1","tools,29,1,57,2,69,1,46,1,81,5,83,3,93,1,90,1,6,1,2,1,13,1,40,1,28,3,99,1,101,2,110,8,116,1,125,1,130,2,132,2","toomuch,87,1","tooriginate,68,1","toothed,132,1","toother,85,1","toovercome,114,1","top,10,4,39,1,43,1,65,2,69,4,71,2,80,1,81,3,89,1,93,1,90,1,2,3,28,5,37,4,77,4,109,1,111,3,114,1,115,1,116,1,125,1,130,1","topic,81,1,91,1,105,1","topics,12,1,30,1,89,1,110,2","topoint,112,1","tops,122,9","topull,85,1","torecover,40,1","toreimburse,43,1","torn,134,1","toronto,39,1,82,1,2,4","torrid,102,1","torturous,39,1","tosend,112,1","total,3,2,39,1,66,1,103,1,108,1,122,3,134,1","totaled,81,1,89,1","totaling,6,1","totheir,85,1","tothwart,29,1","touching,88,1,105,1","tough,94,1,118,1,127,1","toughen,2,1","tougher,58,1,103,1,127,1","tourism,3,1","tournament,95,1","toward,10,11,40,2,99,2,111,1,120,1,137,1","towards,106,1,108,1,110,1","tower,70,4","towergroup,2,1","town,86,1,105,1","townshe,87,1","toxbot,15,1,104,1","toys,86,1","trace,85,1,81,4,103,1,108,1,111,1,130,4","traceable,2,1","traced,39,1,91,1,92,1","tracedto,117,1","traces,46,1","traci,81,1","tracing,108,1","track,79,2,81,1,89,1,90,1,92,1,101,1,103,1,118,1,120,1,132,2,134,1","tracked,81,1,91,1,115,1,116,1,130,1","tracking,43,1,67,1,85,1,81,2,92,1,37,1,107,1","tracks,43,1,66,1,81,2,93,1,90,1,94,1,52,1,103,1,107,1","tracy,136,1","trade,29,1,24,3,43,1,45,2,58,1,71,1,79,2,85,1,81,6,89,1,90,1,91,2,6,1,86,1,2,1,47,1,52,1,70,2,72,1,103,3,105,1,118,1,121,1,130,1,134,2,135,1","traded,81,1,100,1,116,1","trademark,1,1,115,1","trademarks,79,2,89,1,93,1,107,1","traders,103,4","trades,2,3,121,1","tradeshow,57,1","trading,5,1,71,1,100,1,103,1,118,1,134,1","tradingposts,103,1","traditional,29,1,85,1,28,1,107,1,109,1,116,1","traditionally,85,1,81,1,52,1,101,1,111,1,132,1","traffic,10,1,29,1,79,1,81,4,90,1,92,1,2,1,28,1,88,1,108,1,109,3,111,2,126,3,130,1","trafficked,81,7","trafficking,5,1,78,1,80,2,81,2,105,1","trail,81,1,90,1,88,1","trained,12,2","training,5,1,81,1,101,2,105,1,109,1","trains,12,1","transaction,82,2,28,1,100,4,108,1,105,1,134,1,136,1","transactions,85,1,81,3,82,1,89,1,90,1,2,7,70,2,28,2,73,1,100,1,103,1,107,1,108,4,105,3,119,1,109,3,118,2,130,1","transcript,30,1,123,1","transfer,81,3,84,2,93,1,2,4,100,1,103,1,124,1,130,1,134,1","transferred,81,1,124,1","transferring,2,1,130,1","transfers,66,1,81,2,90,1,107,1","transform,112,1","transgression,81,1","transient,111,1","transit,31,1","transition,85,1","transitory,134,1","translated,1,1","transmission,116,1","transmit,57,1,69,1","transmitted,81,1,2,2,40,1,99,1,130,1","transmitting,120,1","transport,65,1,106,1,112,1","transunion,24,2,70,3,134,1","trap,81,2,130,1","traps,113,1","trash,89,1,72,1,134,1","trashing,85,1","traumatic,81,1","travel,81,1,2,1","traveling,134,1","tray,45,1,47,1","treasure,89,1","treasury,80,1,129,1","treat,57,1,98,1,105,1","treatdevices,57,1","treated,89,1,2,1,52,1","treaties,81,1","treating,57,1","treatment,52,1,106,1","treats,6,1","tremendous,107,1","trend,5,1,71,1,30,2,93,1,2,1,52,1,108,1,116,1,123,2,136,1","trending,37,1","trends,10,1,85,1,40,1,99,1,122,2","treo,57,1","tretick,81,1","trial,81,1,2,1,100,1","tricipher,82,1","trick,43,4,90,1,95,1,2,1,13,1,109,1,111,2,116,1,124,1,125,1,137,1","tricked,43,1,91,1,94,1,111,1","trickery,91,1","trickier,81,1,130,1","tricking,80,1,2,1,37,1,111,1","trickmillions,43,1","tricks,43,1,81,1,89,1,6,1,134,1","tried,81,2,92,2,2,1,100,1,109,1","tries,12,1,81,1,112,1,124,9,130,1","trigger,57,1,58,1,6,1","triggered,43,1,93,4","triggering,116,1","trillian,81,2","trillion,17,1,2,1","trillions,2,1","trio,15,1","trivial,100,1","trojan,1,1,65,1,67,1,69,1,46,1,85,2,82,1,83,3,89,1,93,2,95,1,2,3,51,2,37,3,101,1,104,1,107,3,105,1,111,1,116,2,124,4,125,1","trojanhorses,116,1","trojanprograms,85,1","trojans,57,1,85,3,2,2,125,1,132,1","trooper,90,1","trouble,87,1,2,5,109,1,116,2,134,1","trouble—and,100,1","troubleshooting,51,1,111,1","troublesome,111,1","troublingbecause,77,1","trove,89,1","trower,90,5","truck,12,1","trucks,134,1","true,31,1,67,1,81,1,2,2,28,1,129,1,135,1","truly,39,1,86,1","truncated,89,1,105,1","truncheons,111,1","trust,12,1,45,2,58,1,85,1,81,1,87,1,89,1,86,1,2,1,47,2,100,2,105,1,111,1,132,1,134,1,135,1","truste,90,1,110,5","trusted,81,1,89,2,103,1,108,1,116,1,132,1","trustednetworks,57,1","trusting,135,5","trustworthy,85,1,110,1","truth,99,1","trying,12,1,24,1,43,1,65,1,81,2,30,1,87,2,90,2,94,1,86,1,52,1,100,1,108,1,105,3,111,2,112,1,117,1,123,1,125,1,134,2","tryinghard,85,1","tty,24,2,45,1,47,1","tue,36,1,66,1","tuesday,29,2,36,1,66,2,65,1,69,1,81,1,87,3,95,1,77,2,108,1,128,1,114,1,127,1,131,1","turf,31,1,58,1,85,1","turgid,102,1","turk,128,1","turkey,128,1","turkish,128,2","turn,43,1,45,1,85,1,81,1,47,1,37,1,88,1,102,1,107,1,111,3,116,1,118,1,127,1","turned,5,1,67,1,81,2,92,1,52,3,77,1,88,1,101,1,105,1,111,3,118,1,125,1,130,1,134,1","turner,37,6,131,1","turning,5,1,57,1,67,9,46,1,85,2,99,1,111,1,115,1","turningtheir,40,1","turnover,80,1,81,1","tutorialcollected,103,1","tutorials,103,1","tv,85,1,70,1,110,2,115,3","twenty,27,3,39,1,71,1,81,1,88,1","twentysomethings,81,1,130,1","twice,39,2,45,1,47,1,108,1,118,1,134,1","twist,109,1","two,1,2,5,1,12,5,29,1,24,1,26,1,39,4,43,1,56,1,58,2,67,1,71,1,79,1,81,8,89,3,90,2,92,2,2,2,68,1,52,1,70,1,36,2,51,3,74,1,88,1,98,1,100,1,101,1,103,1,104,1,107,2,105,5,128,3,109,1,112,2,113,1,114,1,115,2,120,1,121,1,124,2,126,1,127,1,130,2,131,1,134,1,136,9,137,2","tworeviewers,103,1","tx,45,4","tyler,45,1,93,1","type,45,1,85,2,81,3,82,1,83,1,89,6,94,2,86,1,47,1,103,1,105,2,109,4,111,1,113,1,118,1,121,1,130,1","typed,66,1,89,1,88,1,111,1","types,4,1,57,1,71,1,81,1,89,2,94,1,37,1,111,2,112,1,118,1","typical,39,2,85,2,30,2,89,1,105,1,123,2","typically,4,1,39,1,66,2,79,1,81,2,89,1,91,1,2,1,52,1,36,1,102,1,103,1,108,1,110,1,111,1,112,1,113,1,116,2","typing,87,2,13,1,119,1","tyukanov,103,1","ubiquitous,28,1,100,1","uk,39,2,65,1,69,1,94,1,68,5,111,1,127,1","ukraine,81,1","ukrainian,81,1,90,1","ukranian,81,1","ullrich,67,2,69,2,79,2,81,1,90,1,130,1,131,2","ultimate,100,1","ultimately,1,1,40,1,99,1,100,1,106,1,105,1,136,1","ultrafast,111,1","um,51,1","umbrella,82,1","unabashed,107,1","unable,114,1","unattended,12,1,134,1","unauthorized,24,1,45,2,81,5,47,2,105,1,111,1,134,2","unavailable,77,1","unaware,120,1,129,1","unbidden,1,1","uncertain,81,1","uncharacteristic,114,1","unchecked,81,1","uncollectible,2,1","uncomfortable,105,1","uncommon,86,1","unconcerned,111,1","unconscious,91,1","uncover,92,1,100,1","uncovered,46,1,92,7,107,1,120,1","under,31,1,39,1,81,5,89,1,90,1,51,4,88,1,104,2,105,1,109,1,111,2,115,2,118,1,131,1,134,1,136,1","underacknowledged,120,1","underbelly,77,1","undercover,5,6,12,2,79,1,81,1,130,1","undercutting,111,1,132,1","underdeveloped,81,1","underemployed,81,1","underfed,81,1","undergo,105,1","undergoes,77,1","underground,5,1,79,1,93,1,103,2,107,4,115,1,116,3","underlings,85,1","underlying,109,1","underscores,108,1,111,1","underscoring,89,1","understand,45,1,85,1,89,1,86,1,47,1,105,1,110,1,120,1","understanding,56,1,81,1,70,1,99,1","understood,84,1","undertaken,4,1","underthe,85,1","underway,90,1","underworld,81,1,125,1","underwritten,81,1","undetectable,93,1","undetected,66,1,2,1","unearths,94,1","unecessary,57,1","unemployed,81,1","unexpected,45,2,47,2","unfair,24,1,45,1,47,1","unfamiliar,131,1","unforeseen,39,1","unforgivable,105,1","unfortunate,57,1,100,1","unfortunately,4,1,81,1,90,1,94,1,105,2,110,1","unhappy,94,1","unidentified,104,1","unified,28,2","uniform,2,3,28,1","unimaginable,92,1","uninstall,43,1,58,1","unintentionally,39,1,81,2,40,1,99,1","uninterested,103,1","uninvited,45,1,47,1","union,29,2,85,2,81,2,83,1,90,1,2,1,70,4,103,1,107,1,133,1","unions,94,1","unique,39,1,46,1,81,2,83,1,86,1,107,1,111,1,126,1,132,1,136,2","uniqueidentification,57,1","uniquely,132,1","unisys,81,1,2,1,73,2,111,1","unit,12,9,79,1,84,3,102,2,103,1,111,1,134,1,133,1","united,10,1,39,1,79,2,81,3,30,1,90,1,94,1,77,1,102,3,108,5,109,1,111,1,115,1,121,1,123,1","unitedstates,77,1","unitsequivalent,103,1","universal,111,1","universe,109,1","universities,90,1,112,1,114,1","universities—and,81,1","university,1,1,5,1,81,2,89,1,111,3,115,1,126,2,127,2","unix,77,1","unknowingly,4,1,57,1,99,1","unknown,3,1,67,1,69,1,81,3,89,1,2,1,105,1,130,1,131,2,132,1","unlawful,4,1,39,1,94,2,130,2","unleash,125,1","unleashed,66,1","unleashes,124,1","unleashing,81,1,128,1","unless,81,1,83,1,89,1,116,2,132,1","unlike,57,1,69,1,81,1,91,1,94,1,88,1,109,1,131,1","unlikely,56,1,114,1,117,1","unload,81,1","unlocked,72,1","unmask,91,1","unnamedenterprise,15,1","unopened,135,1","unpaid,134,1","unpatched,67,1,81,1,93,1,127,12","unprecedented,39,1","unprepared,106,1","unprotected,31,1,57,1,90,1,2,1,40,1,88,2,99,3,129,1","unprotectedcomputers,40,1","unravel,24,1,2,1","unraveling,5,4","unresponsive,94,3,132,1","unsafe,85,1,6,1,86,1,118,1","unsavory,43,1,13,5","unscrupulous,1,1","unsecured,11,8,74,8,72,1","unseen,111,1","unsolicited,3,1,89,1","unsophisticated,120,1","unsuccessful,105,1,137,1","unsuspecting,85,1,81,3,89,1,134,1","until,3,1,12,1,81,4,89,2,94,2,52,1,103,2,111,2,115,1,127,1,134,1","untraceable,52,1,88,1","untrustworthy,81,1","unused,126,1","unusual,89,1,86,1,105,1","unusually,112,1","unwanted,43,1,52,1,118,1,135,1","unwary,81,1,109,1","unwitting,94,1,113,1","unwittingly,52,1,108,1,130,1","update,45,1,46,1,85,1,89,1,93,1,47,1,107,1,118,1,127,2,131,1,134,1","updated,3,1,12,1,45,1,79,1,30,1,92,3,2,2,40,4,52,1,47,1,99,4,119,1,111,1,113,1,118,3,123,1,131,1,134,1","updatedits,1,1","updates,111,1,118,1","updating,107,1","updevice,57,1","upfrom,116,1","upgrade,135,1","upgrades,43,1","upgradesand,43,1","uphold,106,1","upload,92,2","uploaded,30,2,92,1,123,2","upmessages,66,1","upnetworks,85,1","upon,12,1,58,1,79,1,85,1,30,5,92,1,95,1,105,1,123,1,137,1","upped,102,1","ups,43,5,81,1,89,1,93,1,108,1","upset,39,2","upshot,132,1","upsurge,85,2","upthere,115,1","uptick,111,1","uptime,126,1","upward,37,1","urge,89,1","urged,29,1","urgency,2,1","urgent,81,1,120,1","urges,4,1,9,8,77,1","urging,58,1,91,1,74,1","url,46,1,79,1,83,1,91,1,86,1,40,1,73,1,65,1,74,1,98,1,99,1,102,1,104,1,108,1,128,1,121,1,124,1,125,1,127,1,137,1","urls,46,1,93,1,92,1,28,1","us350,92,1","usa,26,4,79,1,81,1,2,7,13,3,70,1,111,3,113,2,129,1","usability,40,1,99,1","usable,103,1","usage,57,1,46,1,110,1","usat,31,1","usatoday,12,4,26,8","usdoj,4,1","use,1,2,4,3,12,2,29,2,31,1,24,1,39,5,43,3,45,1,57,6,58,1,71,1,85,2,80,1,81,12,30,1,89,20,93,3,90,4,91,2,6,1,95,7,2,4,40,3,52,1,70,2,28,6,36,1,73,1,47,1,65,1,74,2,88,1,98,1,99,3,101,1,103,2,107,2,105,2,128,1,109,1,110,2,111,5,113,1,116,2,118,2,120,3,121,10,123,1,126,2,130,3,131,1,134,7,135,1,136,1,137,2","used,1,3,15,2,4,1,29,1,26,1,27,1,39,2,43,7,45,1,56,1,66,2,57,2,67,2,80,1,81,17,83,1,30,3,89,7,93,3,90,3,91,1,92,1,95,2,2,2,70,2,28,1,47,1,51,1,74,2,37,2,77,2,88,1,101,1,103,1,104,2,107,5,108,3,105,1,128,2,110,1,111,2,112,1,113,1,114,3,116,5,121,1,123,3,125,1,126,6,127,1,130,5,131,1,132,3,134,7","useencryption,57,1","user,1,1,4,1,29,1,45,1,66,1,67,2,81,8,82,6,83,1,89,4,93,7,90,1,94,1,2,3,13,1,28,1,47,1,37,6,100,1,103,3,108,1,105,9,109,1,110,2,111,2,114,1,118,2,120,3,124,4,127,2,130,2,131,2,132,3,136,2,137,8","useragreement,90,1","username,82,1,89,1","usernames,30,2,89,1,92,1,123,2","users,4,6,10,1,29,1,17,2,39,5,43,7,45,3,57,4,58,2,79,3,85,2,80,1,81,3,82,1,30,2,89,4,93,1,90,1,91,10,92,1,94,2,86,4,95,2,2,1,52,1,28,2,36,1,47,3,37,2,77,3,107,3,108,1,105,6,119,1,128,1,109,6,110,7,111,3,112,5,116,1,118,3,120,18,123,2,124,2,125,1,127,4,131,7,132,1,134,1,136,10,137,6","usersface,116,1","users—think,81,1","uses,24,1,71,1,81,4,82,3,89,3,93,1,90,2,13,5,70,1,105,2,114,1,132,1,135,1,137,1","usewindows,57,1","usgovernment,117,1","using,10,1,12,1,24,1,26,6,43,2,57,3,67,1,69,1,46,3,85,1,81,12,82,2,83,1,84,1,30,4,89,11,90,2,92,2,94,1,2,4,13,2,52,1,70,1,28,1,72,1,37,1,77,1,100,1,101,1,107,2,105,4,109,1,111,12,117,1,118,1,120,1,125,1,127,1,130,2,131,2,135,1,136,3","usss,81,1","usual,82,4","usually,12,1,56,1,46,2,85,1,81,1,89,1,90,1,94,1,28,1,111,1,112,1,115,1","usurped,111,1","utah,72,1,132,1","utilities,81,1,111,1","utility,51,1,106,1","v1,79,1","va,81,1,83,1,90,1,94,1,103,1,107,1","vaas,43,1","vacant,127,1","vacation,89,2,2,1,72,1","vaguely,105,1","vain,92,1","valentine,81,1","valerie,80,1","valid,81,2,103,2,113,3","validation,81,1","vallejo,134,2","valley,135,1","valuable,27,1,85,1,2,1,65,1,98,1,105,2","value,56,1,81,1,28,1,100,1,102,2,103,2,105,1,135,1","valuing,105,1","valve,106,1","vancko,106,1","vandalism,3,1","vandals,107,1,125,9","vanished,116,1","variable,65,1","variant,66,1,93,1,95,1,107,1,115,1","variants,10,2,81,1,83,1,92,2,95,3,107,2,128,2,125,1","variation,26,1","variations,57,1","varied,134,2","variety,27,1,43,2,66,1,6,1,28,1,100,1,129,1,133,1","various,1,1,85,2,81,1,89,1,90,1,100,1,104,1,107,3,111,1,120,1,132,1,134,1","vars,56,4","vary,29,1,85,1,13,1,127,1","vasilakis,107,1","vast,86,1,2,1,111,1","vealso,43,1","vector,77,1","veered,77,1","vega,81,3","vendor,10,1,45,1,67,1,81,7,30,1,95,1,47,1,37,2,99,1,103,2,116,2,123,1","vendorcan,40,1","vendors,69,1,81,4,82,8,95,13,28,1,101,3,105,3,110,3,130,1,132,1,134,1","vendorselling,103,1","venerable,112,1","venture,81,2,111,1,118,1,131,1","verid,82,1","verification,24,2,39,1,85,1,81,1,105,4","verified,100,1","verifies,82,1","verify,24,2,26,1,81,1,82,1,28,2,105,1","verifying,82,1","verifypersonal,29,1","verisign,66,2,79,1,85,1,83,1,28,4,108,5","veritas,67,1,69,1","vernacular,103,1","verona,70,4","versatile,52,1","version,95,1,98,1,101,1,106,1,107,3,109,1,116,1,126,1","versions,24,1,67,2,93,1,95,1,105,1,128,1,124,1,131,3,132,2","versus,39,1,89,1,105,1","vertically,89,1","verton,2,2,107,1","veryprevalent,85,1","vests—showed,81,1","veterans,132,2","vetted,81,1,103,2","vetting,105,1","via,39,1,57,1,85,1,81,1,89,3,93,1,90,1,105,1,128,1,110,1,124,1,131,1,135,1,136,4","viability,81,1","viable,100,1","viagra,52,1,111,1","vice,10,1,26,1,27,1,43,1,66,1,81,3,94,1,40,1,28,3,99,1,100,1,101,1,103,1,108,1,105,2,119,1,118,1,131,1,136,1","victim,5,1,24,1,26,2,27,9,89,2,90,1,2,5,70,3,72,2,88,2,105,1,111,3,116,1,134,3,135,1,137,2","victimization,3,9,39,3","victimized,3,1,85,1,2,7,47,4,99,1,130,1","victimizedby,40,1","victimreceives,103,1","victims,3,6,12,1,29,5,27,1,39,1,66,1,79,1,81,2,82,1,83,1,89,5,90,2,36,1,103,1,105,2,109,1,111,2,116,3,131,1,132,1,134,10,135,13,137,2","video,43,1,77,1,88,1","videos,39,1","vietnam,108,1","view,4,1,5,1,52,1,70,4,108,1,110,2,116,1,134,1","viewed,39,2","viewing,39,2,131,1","viewings,105,1","viewpoint,106,1","views,58,1,6,1","vigilance,29,1","vigilant,57,2,65,1,105,1,132,1","vignette,81,1","vigorous,39,1","vigorously,39,2,52,1","viii,37,1","villa,70,4","vincent,125,1","violated,89,1","violating,4,1,89,1,74,1","violation,4,1","violations,3,1,81,1,74,1","viral,2,1","virgin,2,1","virginia,71,2,81,2,90,2,132,1","virtual,57,2,80,1,81,3,6,1,40,1,77,1,99,1,111,2,130,1","virtually,52,1","virulent,131,1","virus,3,2,10,1,31,1,45,16,67,6,71,1,81,1,83,3,30,1,89,1,90,1,94,1,95,31,2,4,40,1,52,3,88,4,99,1,101,6,107,7,128,1,111,4,118,1,120,5,122,4,123,1,124,13,127,2,131,3,132,2,137,2","viruses,3,1,4,1,10,1,57,1,69,1,85,3,81,1,82,1,90,1,2,1,40,7,52,3,37,2,99,3,101,1,104,1,106,1,107,9,105,1,128,1,111,2,113,2,120,2,124,3,125,15,131,2,132,1","vis,132,2","visa,81,2,2,2,98,2,103,2,105,1","visalia,70,4","visible,74,1,100,1","visit,4,1,24,1,39,2,43,1,45,2,66,1,93,1,94,1,47,2,109,2,120,2,136,1,137,1","visited,39,3,43,1,30,1,123,1","visiting,10,1,2,1,40,1,52,1,99,1,131,2","visitor,81,1,87,1","visitors,39,1,81,2,86,1,88,1","visits,2,1,118,1","visual,39,1","visually,89,1","vital,89,1,103,1,106,1","vitally,46,1","vmware,92,1","vnu,31,2","vnunet,15,1,31,2","vogt,2,1","voice,10,2","void,52,1","voip,10,1,93,1,40,1,99,1","voleur,81,2","volume,10,2,12,1,57,1,37,2,111,1,112,1,124,1,125,1","volumes,12,1","voluminous,105,1","voluminouspop,43,1","voluntary,105,1","vomit,2,1","voodoo,111,1","voracious,111,1","vote,58,1,98,1","voted,58,1","voting,81,1","vouch,81,1","vp,46,1,92,1","vpn,81,3,40,1,99,1,130,3","vs,89,2,40,1,99,1,105,5,136,1","vt,58,1","vulnerabilities,10,3,67,9,69,6,85,1,81,2,93,1,37,6,77,6,105,1,111,2,115,1,131,1","vulnerabilitiesor,116,1","vulnerabilitiesused,114,1","vulnerability,10,2,67,4,69,1,85,1,81,1,93,1,65,1,77,1,119,1,131,5","vulnerable,1,2,10,1,17,1,67,1,85,1,89,1,93,1,40,2,74,1,37,1,88,1,99,2,107,1,114,1,126,5,131,2,132,1,134,1,135,1","w32,15,1,93,1,95,4,137,1","wachovia,2,1","waco,45,1","wage,134,1","waging,31,1","wagner,6,1","wait,87,1,103,2,137,1","waited,51,2,101,1","waiter,70,1,134,2","waiting,81,1,106,1","waits,90,1","wake,31,1,74,1,131,1","waking,69,1","wal,26,1","walk,105,1,134,1","walker,115,2","walks,105,1","wall,46,1,114,2","wallet,24,11,27,1,71,2,89,1,72,4","wallets,134,1","walls,85,1,105,1","walt,52,1","walter,133,2","waltham,81,2","walton,70,4","wandering,51,1","wane,82,1","wanted,12,1,81,10,88,1,111,1","wantedto,103,1","wants,82,1,89,1,94,1,86,3,103,1,130,1,134,1,135,1","war,31,1,67,1,46,1,90,1,107,1,105,5,134,1","wardwell,82,1","wares,46,1,79,1,81,2,101,1,103,2","warn,4,1,67,9,85,1,83,1,91,10,86,1,28,1,131,1,135,1","warned,5,1,31,2,69,1,85,1,95,1,70,1,77,1,111,1,114,1,116,1,127,1,131,1,132,1,137,2","warner,94,1,112,1,114,1","warning,39,2,43,2,66,1,69,1,71,1,81,2,90,1,28,1,109,1,130,1,131,1","warnings,43,1,69,2,83,1,112,1","warningsigns,66,1","warns,31,1,69,9,81,1,94,1,86,1,109,1,117,1","warrants,12,1,105,1","warren,27,1","wary,81,1","washes,89,1","washington,3,1,5,1,24,1,27,1,39,3,58,1,81,1,90,2,2,1,98,1,105,2,119,1,110,1,111,2,112,1,114,1,118,1,131,1,135,1","washingtonpost,90,5,114,1,131,1","waslosing,103,1","wasmade,116,1","wasn,81,1,86,1,88,1,100,1,107,1,113,1,132,1","wassent,116,1","waste,89,1,116,1","wastes,88,1","watch,39,1,89,5,88,1","watchdog,43,4","watched,91,1,2,2,77,1","watchers,93,1","watches,134,1","watchfire,81,14","watching,81,1,30,1,123,1","water,106,1,111,2","waters,12,36","watershed,85,2","watertight—as,81,1","watson,120,3","watters,81,1,103,5","wave,69,6,83,1,111,3,115,9","waves,40,1,99,1,105,1,113,1","way,1,1,12,1,24,1,26,10,43,1,56,1,58,5,69,1,71,2,85,2,81,8,89,3,93,2,90,2,94,2,86,2,2,1,40,3,51,1,99,3,100,4,101,1,103,2,106,1,105,4,109,9,116,1,121,1,125,1,127,1,130,2,132,1,134,1","ways,66,1,71,1,81,3,6,1,94,2,2,2,40,2,70,1,28,1,65,1,72,1,99,2,100,1,103,1,109,1,110,1,111,2,112,1,113,1,116,1,118,1,134,1","wayward,81,1","weafer,125,3","weak,57,1,58,1,68,1,106,1,105,1,109,1,114,1","weaken,105,1","weaknees,115,1","weakness,135,1","weaknesses,17,1,105,1","wealth,103,1","weapon,132,1","weaponry,114,1","wear,51,2","wearing,81,1,51,2,105,2","weather,37,12","weave,46,1","weaver,126,4,134,6","web,1,1,4,2,10,5,12,1,29,3,17,1,39,4,43,2,45,4,66,1,67,10,69,5,46,3,78,2,79,14,85,7,80,1,81,58,82,3,83,4,84,2,30,2,89,3,93,3,90,14,91,1,6,4,94,17,2,3,13,4,52,1,70,2,28,6,36,1,47,4,37,9,77,2,100,2,101,1,103,2,104,1,107,9,105,2,109,10,110,6,111,21,113,1,115,1,116,3,118,1,120,4,121,2,123,2,125,2,126,1,130,15,131,5,132,5,134,1,133,1,136,1,137,2","we—be,100,1","weblog,43,2,67,1,69,1,83,1,84,1,30,1,93,1,94,1,101,1,123,1,126,1,132,1,137,1","weblogs,100,1","webmoney,103,1,107,1","webpage,92,1","webroot,43,1,46,4,101,2","websense,90,1,116,2","webservers,39,1,85,1","website,1,1,3,1,5,1,39,2,92,4,40,1,70,1,72,1,88,4,99,2,115,1","websites,15,1,39,1,45,1,91,1,2,3,68,1,47,1,88,2,115,1","websurfers,85,1","webxm,81,5","wed,116,1","wednesday,57,1,101,1,119,1,118,1,124,1","week,1,1,3,1,15,1,10,2,29,1,17,1,27,1,39,3,45,1,58,1,71,1,46,1,84,1,90,1,52,1,47,1,74,1,72,1,98,1,128,3,110,1,112,2,116,1,118,2,131,1","weekend,103,1,132,1,134,1","weeks,1,1,39,1,46,1,85,1,90,1,91,1,104,1,105,2,128,2,112,1","weideman,70,6","weider,81,1","weinberg,115,3","weirder,51,1","weiss,39,2","welcometo,85,1","wells,81,1,93,3,2,1","weneed,29,1","went,43,1,81,1,89,1,92,1,107,1,109,1,113,1,115,2,116,1,136,1","were,3,9,15,1,4,1,5,1,10,8,12,1,24,1,39,10,43,3,45,1,56,1,58,2,69,2,85,1,80,1,81,30,84,1,89,3,93,1,90,2,91,1,2,3,68,2,52,2,70,1,28,1,36,2,73,1,47,1,51,2,37,9,77,1,88,3,100,1,101,1,103,2,104,4,107,10,105,7,109,1,110,3,111,3,113,1,114,4,115,3,116,1,117,1,118,3,120,7,121,2,124,1,126,6,127,1,129,1,130,4,131,2,132,2,134,3,133,2,135,1,136,2,137,1","weren,88,1,107,1,105,1,115,1","wererelatively,85,1","wereteenagers,116,1","wesley,81,1,130,1","west,79,1","westby,81,1,103,2","westchester,74,2","western,85,2,81,2,90,1,107,1","westvirginia,103,1","whack,79,2","what’s,56,1","whatever,57,1,81,2,89,1,105,2,134,1","whatlaw,85,1","whatteam,87,1","wheel,26,1","wheeler,67,2","whenever,89,1,111,1","whenone,85,1","whentheir,51,1","whenu,89,2","whereininformation,85,1","whereusers,43,1","wherever,105,1","wherewithal,100,1","whether,29,1,27,1,81,2,93,1,6,1,86,3,51,1,100,3,103,2,107,1,105,3,135,1","whetherdoors,43,1","whichever,57,1","while,4,1,12,1,31,2,27,1,39,2,57,1,46,1,85,1,81,6,82,1,30,2,89,2,93,1,90,1,91,1,92,2,94,1,86,1,2,2,40,1,52,1,70,2,28,1,73,1,51,1,99,1,102,1,104,1,107,2,105,1,109,1,110,2,112,1,114,2,118,2,120,2,121,4,123,2,127,1,130,1,134,1,133,1","whistle,43,1","white,4,1,46,1,81,2,90,1,6,1,70,4,74,1,77,1,116,1","whitfield,100,1","who,4,1,12,4,29,1,26,9,39,10,43,3,57,2,58,1,67,5,46,1,79,4,85,5,80,2,81,19,82,1,89,4,93,3,90,5,91,1,92,4,94,1,86,5,2,8,40,2,52,2,70,4,36,1,73,2,51,2,65,3,72,3,88,2,99,2,100,3,103,7,105,10,119,1,128,1,109,5,110,1,111,6,112,3,113,1,114,3,115,7,116,3,120,1,121,4,126,1,130,10,131,2,132,2,134,8,133,2,135,6,136,2","whoa,3,3","whoare,116,1","whoever,107,1","whois,81,1,130,1","whole,57,1,71,1,46,1,93,1,92,1,2,1,65,1,102,1,103,2,107,1,105,1,134,1","wholeoperation,43,1","wholesale,46,1,2,1,105,1","whom,27,1,81,3,90,1,105,1,130,2,135,1","whopicked,115,1","whopping,120,1","whosay,68,1","whose,4,1,17,1,58,1,85,1,81,1,52,1,28,5,65,1,88,1,98,1,104,1,105,4,116,1,120,1,130,1,134,1","whowant,116,1","whydoes,51,1","wide,4,1,39,1,71,1,81,1,28,1,98,1","widely,57,2,58,1,2,1,111,1,120,1,127,1","widening,102,1","wider,80,1,37,5","widespread,69,1,93,1,28,1,116,1,120,1,121,9,122,1,126,1,134,1,136,1","width,2,4","wife,51,4","wiggle,132,1","wild,79,2,107,1","wildcats,87,1","wilder,70,4","willbe,103,1","willdraw,57,1","willeventually,103,1","willget,116,1","william,81,1","williams,82,1,51,1","willinclude,116,1","willing,29,1,73,10,103,1,111,1,134,1","willingness,81,1,73,1","willoften,57,1","willrobinson,51,1","willsupport,112,1","wim,104,1","win,100,1,101,1","win32,10,2,124,2","window,43,1,81,1,104,1,132,2","windows,1,1,43,2,45,3,57,2,69,2,81,2,30,4,93,2,92,1,95,2,52,3,28,3,47,3,77,1,88,2,99,1,128,2,111,4,112,1,115,3,116,3,118,1,120,1,123,4,124,5,125,1,127,4,131,8,132,1","windowsor,40,1","windowsupdate,52,1","wine,27,1","wing,95,1","wins,57,1,51,1","winston,105,1","winter,81,1,133,1","wiped,115,1","wire,1,1,81,3,2,1,135,1","wired,1,8,90,1,40,1,99,1,115,6","wireless,10,1,57,23,71,3,81,2,40,2,74,5,99,4,118,3","wirelessconnection,40,1","wirelessconnections,17,1","wirelessdevice,57,1","wirelessly,99,1","wirelesslytap,40,1","wiretap,81,4,130,1","wiretaps,81,1","wirthlin,39,2","wisconsin,86,1","wisdom,103,1","wise,45,1,52,1,47,1,100,1","wised,1,1","wisely,120,1","wiser,100,1","wish,24,1,86,28,51,1,100,1","wishing,103,1","withany,103,1","withdraw,85,1","withdrawal,2,1,111,1","withdrawals,103,1,111,1","withdrew,2,1","withechouafni,115,1","withlegitimate,85,1","withnumerous,43,1","without,15,1,4,1,12,1,29,1,27,1,45,2,67,1,46,1,79,1,80,1,81,1,87,1,89,2,93,3,90,1,94,1,2,1,40,1,52,1,70,1,36,1,47,2,74,2,99,2,100,1,103,1,107,1,105,1,109,1,115,1,118,1,120,2,130,1,132,1,134,1,137,1","withouta,116,1","withoutauthorization,114,1","withserious,43,1","withspammers,103,1","withu,85,1","witnessed,81,1","witte,114,1","witty,126,24","wjactv,119,5","wmz,103,1","wolf,46,1","woman,39,2","women,3,1,39,8,101,1","won,58,1,46,1,81,3,30,1,87,1,94,1,86,2,40,1,51,1,99,1,105,2,112,1,116,1,123,1,124,1,130,1,132,1","wonder,94,1,51,1,100,1,134,1","wonderful,87,1,51,1","wondering,2,1","wong,10,1","woodlawn,70,4","word,39,1,85,1,83,1,89,3,52,1,107,1,109,2,110,1,134,1","worden,36,1","wording,132,1","words,89,2","work,5,1,12,11,29,1,26,1,45,2,67,1,46,2,85,4,81,4,83,1,84,1,30,1,87,1,93,1,90,2,94,1,2,2,68,1,70,1,47,2,65,1,72,1,106,1,107,1,105,2,110,1,112,1,113,1,115,1,118,1,123,1,134,1","workaround,112,1","workarounds,10,1","worked,81,2,111,2,114,1","worker,111,1,134,1","workers,57,2,85,3,40,1,99,1,106,1,134,1","workforce,105,1","working,3,2,5,1,29,1,57,1,46,1,85,3,81,6,82,1,84,1,90,2,92,2,94,1,65,1,98,1,100,1,103,1,105,2,109,3,115,1,126,2,130,2,132,1,134,1,135,1","workinggroup,112,1","workingto,116,1","workplace,26,1","works,4,1,24,1,45,1,81,2,90,1,94,1,13,1,47,1,98,9,109,2,120,1,121,1,134,1","workthousands,85,1","world,15,1,4,2,5,1,10,1,39,2,57,1,69,1,46,1,79,1,85,2,80,1,81,3,89,4,6,1,95,2,2,6,68,15,98,1,100,1,102,1,105,5,111,1,116,1,125,1,126,1,134,4","worldnow,71,1","worldwide,10,1,27,2,39,2,81,1,6,5,40,1,52,1,99,1,102,3,104,1,106,1,128,3,121,1,125,1,130,1","worm,15,2,10,2,45,4,81,5,93,26,95,4,40,1,88,1,99,1,106,1,107,6,105,1,128,16,115,1,116,5,120,2,124,5,125,1,126,25,127,1,131,1,137,20","wormoutbreaks,116,1","worms,15,1,4,2,45,4,67,1,69,1,81,1,82,1,90,1,40,2,37,2,88,2,99,2,106,1,107,7,105,1,128,5,111,2,116,6,124,1,125,1,126,4,127,2,131,1,132,1,137,1","worried,93,1,73,2,100,1,111,1,131,1,134,1","worries,121,1","worrisome,10,1,121,1,127,1","worry,29,5,105,1","worrying,94,1,105,1","worse,39,1,81,2,52,1,51,1,103,1,111,1","worsens,29,9","worst,43,1,93,1,2,1,100,1,105,1,112,1,122,1,135,1","worth,17,1,45,5,57,1,82,1,2,2,100,2,105,1,116,1","worthiness,70,1","worthy,5,1,89,1","would,5,1,11,8,12,4,31,1,27,5,39,2,43,1,57,2,58,2,71,1,85,1,81,20,82,1,84,2,89,4,93,1,90,4,92,2,86,3,95,1,2,1,40,2,52,1,28,1,73,1,51,6,65,1,74,15,77,1,88,3,98,6,99,2,100,8,101,1,102,1,104,1,105,3,111,3,112,2,113,2,116,1,121,1,124,1,126,1,127,2,130,2,131,3,134,4,133,4,135,1,136,1","wouldn,12,1,57,1,81,1,2,1,51,1,100,2,106,1","wrap,1,1","wrapping,105,1","wreaking,81,1","wreck,120,1","wright,70,8,105,4","write,85,1,81,1,82,1,89,1,2,1,52,1,77,1,88,1,105,1,116,1,125,9,134,1,135,1","writer,46,1,90,1,100,1,107,1,114,2,133,1","writers,67,1,46,1,93,2,90,1,95,2,52,1,65,1,103,1,107,5,111,1,137,2","writing,57,1,40,2,99,2,104,1,107,2,116,1,134,1,135,1","written,4,1,12,1,24,1,27,1,79,1,85,1,80,1,81,1,82,4,89,2,93,1,40,1,52,2,36,1,99,1,107,1,111,1,126,1","wrong,66,1,106,2,105,1","wrongdoing,2,1","wrongful,89,1","wrongfully,112,1","wrote,83,1,86,1,52,1,103,2,128,2,114,2,134,2","wtkr,71,1","www,1,1,3,4,4,4,31,1,24,5,39,1,43,1,45,2,56,1,66,1,71,1,78,1,79,1,81,2,89,1,91,2,86,1,40,1,70,5,47,1,72,2,99,1,106,2,107,3,109,3,115,1,118,1,122,1,135,1,136,1","wyeth,81,1","wyndroski,52,1","wynn,71,3","wyo,12,2","wyoming,12,18","x86,102,1","xcp,67,2","xp,30,1,88,1,111,1,116,1,118,1,120,1,123,1,124,1,127,1,131,1","yabb,81,1","yachts,27,1","yahoo,12,1,95,1,36,4,112,1,121,3","yankee,85,1","yanson,2,1","year,1,2,15,1,5,1,12,3,29,2,17,1,26,1,27,1,39,9,43,1,66,2,58,5,67,2,69,2,71,2,46,4,79,2,85,5,80,2,81,10,82,6,83,3,87,1,89,3,93,1,90,1,94,1,95,1,2,6,68,2,70,1,36,1,73,1,74,1,37,2,77,2,98,1,102,8,104,3,106,1,108,2,105,3,128,2,111,5,113,1,114,1,115,7,116,7,118,4,122,1,126,1,129,9,130,3,132,17,134,2,133,1,135,1,136,6","yearly,108,1","years,3,1,5,1,31,1,39,3,67,2,69,2,71,1,79,1,85,1,81,6,83,2,89,4,2,1,40,1,36,4,77,2,88,1,99,1,101,1,102,1,103,2,104,1,107,1,105,1,109,1,110,1,111,1,114,1,115,1,116,1,121,1,132,2,134,2,135,1,137,1","yearsinvolving,114,1","yelled,51,1","yen,136,1","yeron,84,1","yes,85,1,6,1,70,1,51,1","yesterday,10,1,131,1","yesteryear,134,1","yet,46,2,81,3,87,1,93,2,2,1,98,1,104,1,106,1,107,1,105,3,111,3,113,1,115,1,116,1,130,1,132,2,134,1","yield,134,1","yielded,90,1","yields,80,9","york,29,2,17,1,39,1,81,2,82,1,87,1,89,1,52,1,74,1,77,1,103,5,105,1,116,1,129,1,136,1","you’re,24,2,72,1","you’ve,24,1,47,4","youdon,57,1","you—in,81,1","youmight,51,1","young,4,1,12,1,39,8,81,1,105,1,115,1","youngblood,52,1","youngcomputer,85,1","younger,39,1","youngimpressionable,87,1","yourbusiness,40,1","yourstruly,51,1","youth,39,3","youths,80,1,111,1","youwish,39,1","yugoslav,108,1","zdnet,73,2,65,3,74,2,98,1,102,1,104,1,108,1,128,1,121,1,124,1,125,1,127,2","zer0,103,2","zero,105,9","zielinski,130,1","ziff,29,1,43,3,57,2,58,1,67,1,69,1,78,1,81,1,83,1,84,1,30,1,93,5,94,1,95,1,100,1,101,1,105,1,123,2,126,1,130,1,132,1,137,1","zip,51,1","zipped,92,1","zitz,87,1","zo0mer,103,1","zogby,39,1","zombie,15,2,85,1,30,1,91,15,92,1,13,20,52,11,88,2,104,1,111,14,112,7,113,15,122,1,123,1","zombienetworks,116,1","zombies,91,4,13,9,111,5,112,13,113,2,116,1,122,6","zombiesthat,112,1","zombieware,112,1","zone—but,81,1","zones,13,1","zotob,128,19","zug,94,1"); arrFiles=new Array();arrFiles[0]=new Array(1,"cybercrime/Alleged Pop-Up Hacker Busted.html","2005-11-07","Wired News: Alleged Pop-Up Hacker Busted","","","Search: Wired News Wire service news & photos Wired Magazine HotBot (the Web) Alleged Pop-Up Hacker Busted By Kevin Poulsen Story location: http://www.wired.com/news/technology/0,1282,69480,00.html 04:25 PM Nov. 03, 2005 PT In the first U.S. prosecution of its kind, FBI agents arrested a20-year-old Los Angeles man Thursday on charges that he cracked some400,000 Windows machines and covertly installed pop-up-generatingadware on them, in a scheme that allegedly brought in 60,000 inill-gotten profits. Jeanson Ancheta faces a 17-count federal indictment charging himwith two counts of conspiracy and various forms of computer intrusionand money laundering. The government is also seeking the seizure ofmore than 60,000 in cash, a used BMW and some computer equipment fromthe alleged hacker.	According to prosecutors, in 2004 and early 2005 Ancheta used acustomized form of the rxbot Trojan horse program to find and takecontrol of large collections of vulnerable PCs, spinning them intobotnets capable of being directed as one. He then installedad-delivery programs from two adware firms: Quebec-based Gammacash andLOUDcash, which was purchased by adware giant 180solutions and renamedZangoCash earlier this year. Gammacash and 180solutions get their pop-up delivery code ontousers \' machines through third-party affiliates, which are paid forevery fresh install. Adware firms officially require their partners toobtain the user \'s permission first -- a step unscrupulous affiliateshave been known to dispense with. Ancheta \'s caper allegedly began in November 2004, when he used abotnet of 26,975 computers to make about 4,000 through Gammacash \'saffiliate program, and another 8,744 compromised hosts to pull in1,300 from LOUDcash. He continued cashing checks in the low fourfigures every few weeks, ultimately earning 58,357.86 from the scheme,according to the indictment. 180solutions spokesman Sean Sundwall confirms that Ancheta was anaffiliate. His installations fell off the cliff in January, saysSundwall. I don \'t know if he wised up, or somebody was on to him, orwhat. Gammacash did not immediately return a phone call Thursday. Thecompany operates in much the same way as 180solutions, but servesadult-oriented advertising. As a side business, Ancheta allegedly made nearly 3,000 peddlinghis botnets to other black hats, for use in launching denial-of-serviceattacks or laundering spam. The tendency for 180solutions \' adware to show up on people \'smachines unbidden has long made it a focus of suspicion from theanti-spyware community. But Sundwall says the company has made strongefforts to harden its system against bad actors. This week, 180solutions announced it had helped Dutch officialscrack down on a rogue distributor, and last month the company updatedits adware so that the installation click-wrap notification process ispresented from the company \'s own servers, instead of inside the codewhere it \'s vulnerable to tampering. It was possible for someone to hack the notification-and-consentdialog boxes, which apparently this guy did, and subvert those so itwould be installed silently, says Sundwall. Wired News: Staff | Contact Us | Advertising | RSS | Blogs | Subscribe We are translated daily into Korean and Japanese © Copyright 2005, Lycos, Inc. All Rights Reserved. Lycos® is a registered trademark of Carnegie Mellon University. Your use of this website constitutes acceptance of the Lycos Privacy Policy and Terms & Conditions",8);arrFiles[1]=new Array(2,"cybercrime/Cyber crooks break into online accounts.htm","2005-12-07","Cyber crooks break into online accounts with ease","td, Toronto-Dominion Bank, border, width, banks, notch, Joe Lopez, height, banking, Bofa, George Rodriguez, cybercrime, sidebar, accounts, Bank of America, CDATA, spyware, gif, consumer, security, 2005, crime","It s the reality of the digital world we live in: Everyone is at risk of becoming the victim of an Internet-based crime even folks who stay offline. And, once victimized, you can face more trouble than you might imagine. All crooks need is your name...","Classifieds: Cars | Jobs | Dating | Shopping Posted 11/2/2005 11:16 PM Updated 11/2/2005 11:28 PM Cyber crooks break into online accounts with ease By Byron Acohido and Jon Swartz, USA TODAY GASTONIA, N.C. — When he logged on to his Ameritrade account earlier this year, George Rodriguez caught a cybercrook in the act of cleaning out his retirement nest egg. He watched, horrified, as the intruder in quick succession dumped 60,000 worth of shares in Disney, American Express, Starbucks and 11 other blue-chip stocks, then directed a deposit into the online account of a stranger in Austin. My entire portfolio was being sold out right before my eyes, recalls Rodriguez, 41, a commercial real estate broker who alerted Ameritrade in time to stop the trades. Rodriguez had just experienced a tech-savvy consumer \'s worst nightmare. But it \'s the reality of the digital world we live in: Everyone is now at risk of becoming the victim of an Internet-based crime — even folks who stay offline. And, once victimized, you can face more trouble than you might imagine. Many consumers and small-business owners naively believe online transactions are safe if they use a firewall, keep anti-virus software updated and follow security tips posted on banking websites. Not so, Internet security experts and federal regulators say. What banks don \'t tell you is how easy it is to bypass those protections, and how prolific the threat is, because then you wouldn \'t do online banking, says Peter Vogt, a board member of Information Systems Security Association, an international group of tech security professionals. Over the past two years, banks, credit card companies and credit agencies have made everything from changing a billing address to extending credit and transferring large sums easy to do online. That has created fresh opportunities for swindlers and hackers, say dozens of banking and Internet-security executives, analysts, consultants, researchers and regulators interviewed by USA TODAY over the past four months. Exploiting accounts Federal regulators are cognizant of the biggest blind spot: To gain access to most online bank accounts, you need nothing more than a user name and a password. Bank of America told USA TODAY that it plans to require extra log-on steps for all Internet customers by early next year. It will become the first major U.S. bank to add another level of authentication, as banking and tech-security experts debate how to best balance convenience and security. The Federal Financial Institutions Examinations Council last month called on all banks to toughen log-on procedures by the end of 2006. But the council, a consortium of five federal banking agencies, stopped short of specifying how to do that. No one knows what the right answer is yet, says Unisys banking security consultant John Pironti. \'They said it was safe \' The case of small-businessman Joe Lopez, closely watched in banking and legal circles, has emerged as a microcosm of e-commerce at a crossroads. The bootstrap founder of Ahlo, a thriving Miami-based ink and toner cartridge wholesale business, Lopez says he opened a Bank of America online business account in October 2003 after being cajoled by bank representatives on more than 20 different visits to his local branch. They said it was safe, Lopez, 42, recalls from his office in a gritty industrial neighborhood. In April 2004, moments after logging on to his online account at work, Lopez spotted an entry revealing that someone had executed an electronic transfer of 90,348.65 to Parex Bank in Riga, Latvia. Lopez knew no one in Latvia. I thought I was going to vomit, he recalls. The next day, according to bank records, a mysterious figure named Yanson Arnold withdrew 20,000 in cash from Parex Bank, leaving 70,348.65 behind. Arnold has not been heard from since. Secret Service investigators later discovered someone had slipped a Trojan — a small bit of malicious code — past the firewall and anti-virus software Lopez assumed kept his computer protected. The Trojan, called Coreflood, had captured and transmitted Lopez \'s user name and password to a data thief, who probably sold it to Arnold or his associates. Bank of America disavowed responsibility, prompting Lopez to sue the bank in federal court in Miami to get his money back. We fully investigated his claims and determined that all of our internal protocols and security measures were in place, says Shirley Norton, a Bank of America spokeswoman. In its defense, the bank has invoked an obscure section of the Uniform Commercial Code, state laws governing commercial contracts, which banks helped draft. It limits liability in delivering online services to businesses if certain safeguards are in place. Norton says the bank considers Lopez a business customer doing commercial transactions, not a consumer doing household banking. Consumers are protected by federal laws that limit their fraud losses in most cases to 50. They must report discrepancies promptly and generally be able to show wrongdoing. It \'s a bank \'s way of saying, \'It \'s the customers \' fault, \' says Gail Hillebrand, a senior attorney at Consumers Union. Legal experts say BofA \'s stance makes sense. It is refusing to expose itself to liability arising from the countless malicious programs that infest PCs used by small companies, over which the bank has no control. Such exposure could force financial institutions to curtail online services being pitched to small firms, a promising growth area. No trial date has been set for the case. If BofA prevails, it will reinforce the Uniform Commercial Code as a legal rampart financial institutions can use to fend off similar lawsuits. Making Lopez whole could open BofA to settling lots of other breaches, and that adds up to a lot of money, says Mark Budnitz, a law professor at Georgia State. Meanwhile, Lopez, now a First Bank of Miami customer, faxes wire-transfer requests to the bank using a form letter. He follows up with a phone call. No more online transactions for me, man, he says. Stealthy exploits While financial industry executives acknowledge the Internet \'s security pitfalls, they say they have been mindful of minimizing risks to consumers and small businesses. Of the 1.3 trillion in transactions done with Visa credit cards in 2004, only 0.05%were fraudulent, the same level as 2003, and down from 0.07%in 2002. Visa does not break out online transactions. Online banking is safe and getting safer, says Doug Johnson, senior policy analyst at the American Bankers Association. Indeed, consumer financial fraud has been around as long as checking accounts and credit cards, and banks already do plenty to stop fraud. But e-commerce has opened virgin criminal frontiers. In the past, everything was much more traceable, says Gartner banking analyst Avivah Litan. Now you can open 10,000 (bogus) accounts in the time it used to take to open one, all in a faceless Internet. Top online banks More than half of Bank of America \'s retail banking customers also bank online. A look at the top five online banks by estimated number of customers (in millions): Bank of America Online: 13.2 Retail: 25.3 Wells Fargo Online: 6.5 Retail: 12.7 JPMorgan Chase Online: 3.2 Retail: 9.0 Wachovia Online: 2.6 Retail: 12.8 Washington Mutual Online: 2.1 Retail: 8.2 Source: TowerGroup, data as of June Stopping mailbox thieves and check kiters in the physical world is one thing. But modeling the threat posed by crime groups using the Internet to commit fraud electronically, on a global scale, has proved to be much more complex. For one thing, electronic thievery is difficult to measure. When crooks get away with an online scam, banks often misclassify the pilfered funds as uncollectible debt. That masks the level of online fraud, says Litan, while making it easier for the criminals to escape the law. What \'s more, there is little urgency for banks to measure cybercrime precisely. Online banking services are still in a nascent phase, representing less than 200 billion of the trillions of dollars of transactions banks handle each year. Coreflood could have gotten on Lopez \'s PC several different ways. It is one of many tried-and-true tools ID thieves use to harvest user names, passwords, Social Security numbers, account numbers and other personal data. Anti-virus, anti-spyware and firewall defenses offer limited protection, primarily blocking the known malicious programs relentlessly blasting across the Internet, seeking unprotected PCs. But elite identity data thieves have shifted to smaller-scale, more stealthy exploits, often aimed at compromising 1,000 or so PCs a day, says Joe Hartmann, director of anti-virus research at Trend Micro. Over time they can infect millions of machines but go completely undetected. Some specialist hackers focus on finding new ways to attach Trojans to free, downloadable music, pornography and gambling files found across the Internet. Others hide Trojans on popular websites or in e-mail attachments. Downloading a tainted file, visiting a contagious Web page or opening a viral attachment can load a Trojan. Meanwhile, phishing scammers seem to have endless creativity when it comes to crafting e-mail to trick even computer-savvy individuals into divulging sensitive account information at counterfeit websites. The best and brightest coders can make good money deploying SQL Injection attacks. These are aimed at tricking a Web page linked to a company database into giving up sensitive employee and customer data. Low-tech heists work, too. Larcenous company insiders can get paid top dollar to assist in pilfering directly from company databases. For his new book, The Insider, A True Story: Sometimes Security is About Keeping An Eye On Those We Trust Most , Dan Verton examined network traffic at 50 large companies and government agencies. In two days spent at each organization, he found 6,000 instances of names, Social Security numbers, credit card numbers, tax ID numbers, private health care information, payroll data and bank account information being transmitted, without authorization, to unknown locations on the Internet or to private e-mail accounts. Verton says his findings suggest similar breaches may be taking place at an epidemic level across e-commerce, with insiders diverting vast amounts of valuable data to criminal circles. In short, if your personal information resides in any database anywhere, it can become a target, even if you prefer to write checks and patronize bricks-and-mortar banks and stores. \'This stuff happens \' Apart from data thieves, another kind of crook specializes in converting the stolen ID data into goods and cash, using the Internet as a communications and distribution network. Surge in attacks Phishing: 73 million adults say they \'ve received at least 50 phishing e-mails in the last 12 months. Spyware: 80% of consumer PCs are infected with spyware. Blended attacks: 63% of large companies say their main security concern is the increasing complexity of cyberattacks. Corporate losses: 639 of 700 companies and government agencies surveyed lost 31 million worth of proprietary data and spent 43 million to clean up computer viruses. Consumer risk: 13% of all Internet users have had a member of their household victimized by identity thieves, and 41% say they are buying less online due to security threats. Sources: Gartner Research, June 2005; Web root, 2005 State of Spyware report; Deloitte 2005 Global Security Survey; CSI/FBI 2005 Computer Crime and Security Survey; Conference Board Research Center, 2005. The market is becoming more sophisticated, says Jim Melnick, former analyst for the Defense Intelligence Agency, now director of threat intelligence at security firm iDefense. There \'s more differentiating of roles and services to streamline and accelerate cybercriminal activity. The most widely cited measure of cybercrime activity comes from a 2-year-old Federal Trade Commission consumer survey, the first of its kind, which placed the number of Americans victimized by identity thieves at 10 million in 2003, with consumers losing 5 billion and businesses 48 billion. The FTC plans to redo its identity theft survey early next year, and the results are expected to reinforce anecdotal evidence that cybercrime has intensified. George Rodriguez, the North Carolina commercial real estate broker, doesn \'t need a government study to tell him the threat is increasing. When Rodriguez spotted a cybercrook attempting to transfer proceeds from his Ameritrade portfolio to a consumer account at Bank of America, he quickly called authorities to cut short the stock trades before they were settled. But the experience left him wondering what might have happened if he had been on vacation or simply not using his computer that day. A local detective identified the BofA account owner as Kevin Maguire, a 53-year-old corporate travel manager from Austin. Contacted by USA TODAY, Maguire said he has no idea what happened to his bank account. He says BofA informed him of the incident, but said little else. They just told me this stuff happens, Maguire says. Investigators say cyberthieves probably intended to use Maguire \'s compromised account to launder Rodriguez \'s cash. To misdirect authorities, thieves typically transfer funds a number of times culminating in a cash withdrawal. Dealing with the fallout of a cybercrime can be frustrating. Most banks espouse policies of making restitution to consumers who fall prey to online fraud, if the crime is reported within 60 days. But that is not uniform. Ameritrade, which declined comment to USA TODAY, told Rodriguez in a short letter that it would unravel the bogus stock trades as a one-time courtesy to you. ... Going forward, you are responsible for any transactions placed in your account. They treated me as if I screwed up, Rodriguez says, looking at the letter, shaking his head. Contributing: Acohido reported from Seattle, Swartz from Gastonia, N.C. Online accounts insecure 11/2/2005 11:28 PM By Byron Acohido and Jon Swartz, USA TODAY GASTONIA, N.C. -- -- © Copyright 2005 USA TODAY, a division of Gannett Co. Inc.",36);arrFiles[2]=new Array(3,"cybercrime/Cybercrime Victimization.htm","2005-11-03","Cybercrime Victimization","","","Cybercrime Victimization A pilot Computer Security Survey of U.S. businesses found that nearly 75 percent of responding companies had detected at least one incident of cybercrime in 2001. Over half of the victimized businesses experienced multiple incidents of computer virus, denial of service, and fraud. (Bureau of Justice Statistics. 2004. Cybercrime Against Businesses . Washington, D.C.: U.S. Department of Justice.) In the same survey, 68 percent of the companies reported financial effects due to cybercrime, resulting in 61 million in losses and recovery costs. Estimated recovery costs for computer viruses were nearly 22 million. Costs from computer fraud were an estimated 18 million and denial of service caused losses of approximately 14 million. (Ibid.) The most common forms of cybercrime detected by companies in 2001 were computer virus infections (64.1 percent), denial of service attacks (25.3 percent), and vandalism or sabotage (18.7 percent). Hacking and spamming are other common breaches of computer security that occur with frequency. (Ibid.) Between March 1998 and October 2003, the CyberTipline operated by the National Center for Missing and Exploited Children received a total of 140,593 reports of child pornography, and 2,048 reported cases of child prostitution. There were 908 cases of child sex tourism, and 5,522 cases of child molestation (not in the family). Also, there were 9,377 reported cases of online enticement. (National Center for Missing and Exploited Children,  Cybertipline Fact Sheet. http://www.ncmec.org/en_US/publications/NC13.pdf . Accessed September 21, 2004.) Working to Halt Online Abuse (WHOA) received 198 reports of cyberstalking in 2003: 35 percent began as e-mail communications, 16.5 percent from a message board conversation, 17 percent from instant messaging, 7.5 percent from a website, and eight percent from chat rooms. (Working to Halt Online Abuse.  Online Harassment Statistics. http://www.haltabuse.org/ . Accessed September 23, 2004.) A survey of the cyberstalked victims reporting to WHOA between 2000 and 2003 reveals that over 75 percent are Caucasian; 78 percent are women, and 39 percent are between the ages of 18 and 30 years old. (Ibid.) In 2003, 52.5 percent of the cyberstalkers reported to WHOA were male, 38 percent were female and in 9.5 percent of the cases, the gender was unknown. (Ibid.) According to the North American Securities Administrators Association (NASAA), the most recent figures show cybercriminals stole 122 million from victims through Internet fraud in 2002. (North American Securities Administrators Association.  January 14, 2004, Press release. http://www.nasaa.org/NASAA_Newsroom/News_Release_Archive/392.cfm . Accessed September 21, 2004.) The FBI \'s Internet Fraud Complaint Center received 48,252 complaints in 2002 that were referred to enforcement agencies. The Center also received an additional 37,000 complaints that did not constitute fraud, but were cases of unsolicited e-mail, illegal child pornography, computer intrusions, as well as many other violations of the law. (Federal Bureau of Investigation \'s Internet Fraud Complaint Center. http://www.ifccfbi.gov/ . Accessed September 28, 2004.) The total costs of Internet fraud cases reported to the FBI \'s Fraud Complaint Center was 54 million in 2002. The victims of the Nigerian Letter fraud averaged 3,864, Internet identity theft averaged a 2,000 loss, and victims of check fraud averaged a 1,100 loss. (Ibid.) Previous Contents Next National Crime Victims \' Rights Week: Justice Isn \'t Served Until Crime Victims Are April 10 16, 2005 This document was last updated on September 07,2005",7);arrFiles[3]=new Array(4,"cybercrime/FBI - Cyber Investigations.htm","2005-11-03","Federal Bureau of Investigation - Cyber Investigations","","","Investigative Programs Cyber Investigations Cyber Education Letter To Users of Peer-to-Peer Systems: The FBI has undertaken a new initiative to educate and warn citizens about certain risks and dangers associated with the use of Peer-to-Peer systems on the Internet. While the FBI supports and encourages the development of new technologies, we also recognize that technology can be misused for illicit and, in some cases, criminal purposes. In an effort to help citizens learn how to protect themselves, this letter is being distributed and is posted on the FBI \'s web site. Peer-to-Peer networks allow users connected to the Internet to link their computers with other computers around the world. These networks are established for the purpose of sharing files. Typically, users of Peer-to-Peer networks install free software on their computers which allows them (1) to find and download files located on another Peer-to-Peer user \'s hard drive, and (2) to share with those other users files located on their own computer. Unfortunately sometimes these information-sharing systems have been used to engage in illegal activity. Some of the most common crimes associated with Peer-to-Peer networks are the following: Copyright Infringement: It is a violation of Federal law to distribute copyrighted music, movies, software, games, and other works without authorization. There are important national economic consequences associated with such theft. The FBI has asked industry associations and companies that are particularly concerned with intellectual property theft to report to the FBI -- for possible criminal investigation and prosecution -- anyone that they have reason to believe is violating Federal copyright law. Child Exploitation and Obscenity : The receipt or distribution of child pornography and unlawful obscenity over the Internet also is a serious Federal crime. The FBI cautions parents and guardians that, because there is no age restriction for the use of Peer-to-Peer services, pornography of all types is easily accessible by the many young children whose parents mistakenly believe they are only accessing music or movies. In fact, children may be exposed to pornography -- and subsequently lured by sexual predators -- even though they were not searching for pornography, as some network users deliberately mislabel the names of files for this purpose. Computer Hacking: Peer-to-Peer networks also have been abused by hackers. Because these systems potentially expose your computer and files to millions of other users on the network, they also expose your computer to worms and viruses. In fact, some worms have been specifically written to spread by popular Peer-to-Peer networks. Also, if Peer-to-Peer software is not properly configured, you may be unknowingly opening up the contents of your entire hard drive for others to see and download your private information. The FBI urges you to learn about the risks and dangers of Peer-to-Peer networks, as well as the legal consequences of copyright infringement, illegal pornography, and computer hacking. For more information about the law, visit http://www.fbi.gov/cgi-bin/outside.cgi?http://www.usdoj.gov/criminal . The FBI takes seriously its mission to enforce the laws against those who use the Internet to commit crime. To report cyber crime, please contact your local FBI Field Office , or file a complaint through the Internet Crime Complaint Center at http://www.fbi.gov/cgi-bin/outside.cgi?http://www.IC3.gov . Accessibility | Department of Justice | eRulemaking | FirstGov | FOIA | Links | Privacy Policy | White House FBI.gov is an official site of the U.S. Federal Government, U.S. Department of Justice. Some of these publications are in PDF (Portable Document Format). To view them you will need to have the Adobe Acrobat Reader plug-in installed on your computer. The Reader can be downloaded at no cost from Adobe \'s site on the World Wide Web.",16);arrFiles[4]=new Array(5,"cybercrime/Feds square off with organized cyber crime.htm","2005-11-03","Feds square off with organized cyber crime","","Law enforcement sees undercover operations as a key to unraveling sophisticated alliances between computer intruders and fraud artists.","Feds square off with organized cyber crime Kevin Poulsen , SecurityFocus 2005-02-17 SAN FRANCISCO--Computer intruders are learning to play well with others, and that \'s bad news for the Internet, according to a panel of law enforcement officials and legal experts speaking at the RSA Conference here Thursday. Christopher Painter, deputy director of the Justice Department \'s computer crime section, spoke almost nostalgically of the days when hackers acted primarily out of intellectual curiosity. Today, he says, cyber outlaws and serious fraud artists are increasingly working in concert, or are one and the same. What we \'ve seen recently is a coming together of these two groups, said Painter.	Ronald Plesco, counsel to the National Cyber-Forensics and Training Alliance, a computer forensics organization established by the FBI and private industry, agreed, and pointed to the trend in recent years of spammers building networks of compromised computers to launder their fraudulent e-mail offerings. Tim Rosenberg, a research professor at the George Washington University, warned of multinational groups of hackers backed by organized crime and showing the sophistication of prohibition-era mobsters.	This is not about little Jimmy Smith breaking into his ex-employer \'s website and selling information to competitors, said Rosenberg. What we \'re seeing is just sheer, monstrous levels of crime.	Painter acknowledged that recreational hackers are still out there, but he believes they \'re a minority. He reads the future of cyber crime and investigation in the joint Secret Service and Justice Department Operation Firewall crackdown on Internet fraud rings last October, in which 19 men were indicted for allegedly trafficking in stolen identity information and documents, and stolen credit and debit card numbers.	At the center of Operation Firewall was an online forum called Shadowcrew, which served as the trading floor for an underground economy capable of providing a dizzying array of illicit products and services, from credit card numbers to details on consumers worthy of having their identities \' stolen. Individuals all over the world would work together to hack into systems, steal information and then sell information, said Painter. [It was] a very, very highly structured, organized network.	Faced with that kind of organization, law enforcement agencies are turning to undercover operations, said Painter. To take down Shadowcrew, the Secret Service secretly busted a high level member of the group, turned him into an informant, and operated him undercover for more than a year, according to court records. Law enforcement was essentially running that group at one point, said Painter.	Painter prosecuted Kevin Mitnick in the 1990s, and he still insists that, from the victim \'s point of view, old-fashioned recreational hackers are as bad as today \'s multi-disciplined cyber criminals. But it was a simpler time, he admitted after the presentation. Privacy Statement Copyright 2005, SecurityFocus",5);arrFiles[5]=new Array(6,"cybercrime/Fraud Meets Its Match on Internet.htm","2005-12-06","Fraud Meets Its Match on Internet","fraud","The FBI and online job seeker giant Monster Worldwide lead an anti-Internet fraud initiative.","October 31, 2005 Fraud Meets Its Match on Internet By Jim Wagner Several public and private organizations banded together to launch a new anti-Internet fraud initiative for consumers, officials announced Monday. The FBI, Monster Worldwide ( Quote , Chart ), the National White Collar Crime Center (NW3C), the U.S. Postal Inspection Service, Target Corp. ( Quote , Chart ) and the Merchant Risk Council established LooksTooGoodToBeTrue.com , a Web site containing a variety of educational tools to keep consumers safe from fraudsters. The site is part of a larger initiative by the group to educate consumers of the dangers that come when personal information or unsafe surfing practices lead to identity theft and stolen credit cards and identities. In this virtual world, every day is Halloween, said Lee Heath, chief postal inspector at the U.S. Postal Inspection Service, at a press conference. Cyber-criminals hide behind their masks concealing their identities, holding out an ample bag of tricks and very few treats for legitimate consumers. In many ways, the site is a conglomeration of educational materials already found on the Internet, notably the Federal Trade Commission \'s (FTC) OnGuardOnline.gov Web site. Both feature glossaries with definitions of the latest Internet scourges, consumer tips for safe online practices and methods for reporting cases of Internet fraud. LooksTooGoodToBeTrue.com has a Web page to file a complaint by either sending them to the FTC \'s complaint site or to the U.S. Postal Inspection Service or NW3C \'s Internet Crime Complaint Center (I3C). The glossary of terms provides an overview of the latest scams and provides links to more information at other government agencies. What the new site does provide, however, are seven interactive online tests to help you determine whether you \'re getting bilked by a fraudster. The yes/no questions, depending on the answer, trigger a thermometer that displays how much of a risk factor is involved with such things as replying to e-mails from strangers listing Social Security numbers on personal checks or not backing up your computer. According to Louis Reigel, assistant director of the FBI \'s cyber division, the number of reported fraud incidents has risen dramatically in recent times; consumers have lodged more than 207,000 complaints to the I3C in 2004 -- a 66 percent jump from 2003 -- totaling 68 million in estimated losses. He views the new Web site as another tool in fighting the spread of phishing attacks, spam and the like. If we fall behind or come behind as a law enforcement agency, we \'re never going to catch up, he said. If we can get out front and use prevention as a means to do this, we will -- with our partners in industry -- be very, very successful. Security Archives",6);arrFiles[6]=new Array(7,"cybercrime/Fraudsters have successfully pilfered money.html","2005-11-07","Fraudsters have successfully pilfered money.html","","","",4);arrFiles[7]=new Array(9,"cybercrime/SEC urges security.html","2005-12-07","SEC urges security.html","","","",4);arrFiles[8]=new Array(10,"cybercrime/Shift Toward Focused to Desktops.htm","2005-11-04","Threat Report Identifies Shift Toward Focused Cyber Attacks on Desktops - Government Technology","symantec corp., ,","","Threat Report Identifies Shift Toward Focused Cyber Attacks on Desktops Sep 20, 2005 By News Staff	Yesterday, Symantec Corp. released its eighth volume of the Internet Security Threat Report , one of the most comprehensive sources of Internet threat data in the world. The semiannual report, covering the six-month period from January 1 to June 30, 2005, identified new methods of using malicious code for financial gain with increasing frequency to target desktops rather than enterprise perimeters.	The report also found a rise in the exposure of confidential information. Such threats can result in significant financial loss, particularly if credit card information or banking details are exposed. Moreover, these concerns are more worrisome as online shopping and Internet banking continue to increase in popularity. During the first half of 2005, malicious code that exposed confidential information represented 74 percent of the top 50 malicious code samples reported to Symantec, up from 54 percent in the previous six months.	Attackers are moving away from large, multipurpose attacks on network perimeters and toward smaller, more targeted attacks directed at Web and client-side applications, said Arthur Wong, vice president of Symantec Security Response and Managed Security Services. As the threat landscape continues to change, users need to be diligent in keeping systems up-to-date with security patches and security solutions.	Additionally, bot networks and custom bot code were available for purchase or rent; Symantec observed an average of 10,352 active bot network computers per day, an increase of more than 140 percent from the previous reporting period \'s 4,348 bot computers. As the financial rewards increase, attackers will likely develop more sophisticated and stealthier malicious code that will be implemented in bot features and bot networks, some of which could attempt to disable antivirus, firewalls, and other security measures.	Modular malicious code -- malicious code that has limited functionality initially but then downloads additional functionality once a system has been infected -- is also increasing. The shift toward modular malicious code is significant as it indicates that attackers may be attempting to avoid detection and attempting to compromise a system further by opening back doors on an infected system or visiting Web sites where further malicious code can be retrieved and placed on the target system.	The report also found that phishing attacks continue to proliferate. The volume of phishing messages grew from an average of 2.99 million messages a day to 5.70 million. One out of every 125 e-mail messages scanned by Symantec Brightmail AntiSpam was a phishing attempt, an increase of 100 percent from the last half of 2004. Symantec Brightmail AntiSpam antifraud filters were blocking more than 40 million phishing attempts per week on average, up from approximately 21 million per week at the beginning of January.	Additional key findings include the following: Symantec observed that denial-of-service attacks grew from an average of 119 per day to 927 per day during the first half of 2005 -- a 680 percent increase over the previous reporting period. The most frequently targeted industry was education, followed by small business and financial services. The time between the disclosure of a vulnerability and the release of associated exploit code decreased from 6.4 days to 6.0 days. In addition, an average of 54 days elapsed between the appearance of a vulnerability and the release of an associated patch by the affected vendor. This means that, on average, 48 days elapsed between the release of an exploit and the release of an associated patch; during this time, systems are either vulnerable or administrators are forced to create their own workarounds to protect against exploitation. During the first half of 2005, Symantec documented 1,862 new vulnerabilities -- the highest number ever recorded in the Internet Security Threat Report. Ninety-seven percent of these vulnerabilities were classified as moderate or high in severity, and 59 percent of all vulnerabilities were found in Web application technologies, marking an increase of 59 percent over the previous reporting period and a 109 percent increase over the first six months of 2004. A growing number of Win32 viruses and worm variants were also reported during the first half of 2005. Symantec documented 10,866 new Win32 virus and worm variants, an increase of 48 percent over the previous reporting period and 142 percent over the first half of 2004. Adware, spyware, and spam continue to propogate, according to the report. Eight of the top 10 adware programs were installed through Web browsers. Of the top 10 adware programs reported, five hijacked browsers. Six of the top 10 spyware programs were bundled with other programs and six were installed through Web browsers. Symantec also observed that spam made up 61 percent of all e-mail traffic and that 51 percent of all spam received worldwide originated in the United States. An analysis of future and emerging trends concluded that an increase in the number of attacks and threats directed at wireless networks is likely. In addition, Voice over Internet protocol (VoIP) threats are expected to emerge as more enterprises merge their data and voice networks.	Copyright® 2005 e.Republic , Inc. All rights reserved. eRepublic , Inc. 100 Blue Ravine Rd., Folsom, CA 95630",7);arrFiles[9]=new Array(11,"cybercrime/Unsecured Wi-Fi would be outlawed.html","2005-11-16","Unsecured Wi-Fi would be outlawed.html","","","",5);arrFiles[10]=new Array(12,"cybercrime/Wyoming crime unit busts Internet child predators.htm","2005-11-07","USATODAY.com - Wyoming crime unit busts Internet child predators","child pornography, predators, children, crime, child sex, investigators, Waters, work station, chat rooms, Wyoming, Santa, Police, distributors","A framed photo over Flint Waters  work station shows two of his children embraced in the lap of a bespectacled Santa Claus. The photo is a constant reminder to Waters on why he does his job; that Santa is now behind bars as a result of Waters ...","Classifieds: Cars | Jobs | Dating | Shopping Posted 3/7/2005 4:51 AM Updated 3/8/2005 2:18 PM Wyoming crime unit busts Internet child predators By Bob Moen, Associated Press CHEYENNE, Wyo. — A framed photo over Flint Waters \' work station shows two of his children embraced in the lap of a bespectacled Santa Claus. Big smiles grace the 2- and 3-year-old children \'s faces while Santa \'s expression is hidden behind a fake beard. The photo, taken in December 2001, is a constant reminder to Waters on why he does his job — conversing with and trying to snare child sex predators who seek out victims over the Internet. That Santa Claus is now behind bars at the Wyoming State Penitentiary, serving a three-to-five year prison sentence after being convicted of attempted indecent liberties with a child. The man was arrested after Waters and other undercover agents posing as a young girl on the Internet arranged to meet him in the mall. This gets close to my family, Waters said. If it \'s getting close to mine, it \'s getting close to a lot of people \'s. A special agent with the Wyoming Division of Criminal Investigation, Waters oversees a team of three state agents, a U.S. Customs agent and a forensics investigator inside a one-story, nondescript office just off downtown. One of 45 nationwide set up by the U.S. Justice Department, Wyoming \'s team has been recognized as an international leader in combating child pornography over the Internet and nabbing child sex predators. Besides Santa, Waters and the special task force he oversees have helped bust a nuclear engineer, a prosecutor, a firefighter, a NASA rocket scientist, a teacher, and a truck driver. In January, Waters conducted the Internet undercover work that resulted in the arrest of 37 people in New Jersey, including a high school hockey coach and a pediatric neurosurgeon, on child pornography charges. In 2004, the International Association of Chiefs of Police recognized the Wyoming team for developing software that identified more than 3,600 computers investigated for distributing child pornography. A separate computer program helps investigators organize volumes of data generated by computerized child porn investigations. The Wyoming Internet Crimes Against Children task force has made remarkable contributions nationwide with its development of software to help law enforcement apprehend criminals who would prey upon our children through the Internet, said Robert Flores, administrator of the Justice Department \'s Office of Juvenile Justice and Delinquency Prevention. A former Army military policeman and street cop, Waters mostly trained himself on computer programming. Now, he trains and advises local, state, federal and international law enforcement agencies how to use the software he \'s developed to catch — and convict — child porn distributors. A bobby hat on display in his office was a gift from a team in England he trained. Digital investigations have their own complexities. A suspect \'s hard drive has to be copied before its contents can be examined, otherwise the suspect can claim the device was tampered with. And then there \'s the sheer volume of evidence, requiring special software to keep investigators from being overwhelmed. When you get in here and identify 1,000 guys a day, it \'s really a headache to document all that, Waters said. His latest program speeds up the identification and location of suspected child porn distributors so local police can more quickly obtain search warrants. So far, it has documented more than 225,000 instances of people offering to send child porn. We \'re maxing it out right now, identifying the distributors, Waters said. Investigators who pose as teens in chat rooms have no problem finding would-be predators. In fact, the predators usually find them. We could have 25 guys on a chat room soliciting sex in a matter of 10 minutes, Waters said. On a Thursday morning in February, Waters sat down at one of the three computers at his work station, logged onto Yahoo with one of his hundreds of chat names — one he wouldn \'t reveal so as not to blow his cover. He said similar chat rooms run day and night on Microsoft MSN, America Online, Internet Relay Chat and other providers, all of which have cooperated with investigators. On his screen popped up a list of 100 topics that included such titles as PAC \'S PRETEEN PICS and POSTS, and INCEST IS BEST. Within minutes, someone using the name brutal childbeater wanted to talk with Waters about abusing a baby — one of 17 contacts he received in less than 20 minutes. This job can really make you sick to your stomach, Waters said, scrolling through the written conversation in disgust. Other similar chat rooms on the site were already so full that Waters couldn \'t get into them. Officers often find real children online with predators, but they can \'t intervene until a crime has been committed, Waters said. Investigators also must be careful not to appear to entrap anyone — We don \'t solicit sex, don \'t initiate contact, Waters said — but some child predators are so bold, entrapment isn \'t a problem. These guys contact us very quickly, Waters said. Waters, who doesn \'t allow his children to use the family \'s home computer without parental supervision, tries to educate parents about the dangers of leaving their children unattended on the Internet, especially those kids with high-speed Internet access and a Web camera in their own bedrooms. He knows of no software package that he would trust to protect children from Internet predators, mainly because children are too computer savvy and can easily bypass such safeguards. If the bearded, 42-year-old Waters had his way, chat room predators would see every girl and boy as looking like me. Copyright 2005 The Associated Press. All rights reserved. This material may not be published, broadcast, rewritten or redistributed. A dirty, necessary job 3/8/2005 2:18 PM By Bob Moen, Associated Press CHEYENNE, Wyo. --",16);arrFiles[11]=new Array(13,"cybercrime/Zombie PCs spam, phish, harass on the sly.htm","2005-12-07","Zombie PCs spam, phish, harass on the sly","spam, Zombie, Zombies, Crooks, PC, intro, Denial-of service attacks, hundreds, instant-messaging service, buddy list, scams","Zombie PCs have many unsavory uses.","Classifieds: Cars | Jobs | Dating | Shopping Posted 9/8/2004 4:59 AM Zombie PCs spam, phish, harass on the sly By Byron Acohido and Jon Swartz, USA TODAY Criminals deploy zombies herded into netwoks of a few hundred to more than half a million compromised PCs. Uses vary from the simply annoying (spam attacks) to the unsavory and criminal. Denial-of service attacks. Zombie networks can be directed to swamp a targeted Web site with junk data, crippling the site. Crooks are increasingly using the threat of a denial-of-service attack to extort cash from online businesses keen to stay up and running. Phishing scams. These scams trick people into typing account information on counterfeit Web sites. Zombies broadcast phishing spam; they also host the bogus Web sites that collect the stolen data. Do-it-yourself phishing kits now supply free spamming tools and bogus Web sites targeting popular online merchants and banks. Spam splattercasts. Each zombie can broadcast hundreds of pieces of spam per hour. Generally this is a four-step process: 1. The attacker sends instructions for the attack to stepping-stone zombies scattered in different countries and time zones. 2. More powerful server zombies pass along the instructions over an IRC (Internet Relay Channel) that works like a private instant-messaging service. 3. Spam-relay zombies take the instructions, using the equivalent of a buddy list. 4. Each spam-relay zombie blasts out spam to hundreds of e-mail addresses, and then stops; this method keeps the source from being pinpointed and the end user from noticing significant Net or PC sluggishness. Slices, dices, juliennes 9/8/2004 4:59 AM By Byron Acohido and Jon Swartz, USA TODAY -- © Copyright 2005 USA TODAY, a division of Gannett Co. Inc.",10);arrFiles[12]=new Array(15,"hacking/Cops smash 100.html","2005-10-31","Cops smash 100,000 node botnet","","","Cops smash 100,000node botnet Largest zombie armyever detected Tom Sanders in California, vnunet.com 10 Oct 2005 Dutch authoritiesarrested three individuals last week accused of running one of the largest ever hacker botnets comprisingover 100,000 zombie PCs . The three men, aged19, 22 and 27, were not named. Police confiscated computers, cash and a sportscar during searches of the suspects \' homes. A botnet is acollection of hacked computers at the disposal of a hacker without the owner \'sknowledge. Botnets are commonly used to launch distributed denial of service(DDoS) attacks or to send spam. With over 100,000infected systems, the network is one of the largest ever detected, prosecutorsclaimed. The suspects will becharged with computer hacking, destructing automated networks, and installingadware and spyware . The trio used the W32.toxbot internet worm to recruit systems fortheir botnet army. The worm was first detected early this year and infectedsystems all over the world. Antivirus software todetect and remove the software is available, but the suspects kept changingtheir malware to avoid detection. The authorities arealso investigating the group \'s involvement in a blackmail attempt on an unnamedenterprise in the US. It is common practiceamong online crime gangs to extort the owners of websites, forcing them to payto prevent a DDoS attack on their networks. It is also suspectedthat the group was involved in crafting internet worms with keystroke loggingsoftware to gather login names to commit credit card fraud and identity theft. © 1995-2005 All rights reserved part of",5);arrFiles[13]=new Array(17,"hacking/Hackers emptying online accounts.htm","2005-12-07","Your online brokerage account be looted?","","More and more computer hackers are lifting passwords from home PCs and emptying online brokerage accounts, a business news magazine is reporting.","\') Report: Hackers emptying online accounts Business Week: Cyber thieves can clean out your online brokerage account in minutes. November 7, 2005: 9:25 AM EST NEW YORK (CNN/Money) - More and more computer hackers are liftingpasswords from home PCs and emptying online brokerage accounts, abusiness news magazine is reporting. In the latest cyberscam, hackers exploit the weaknesses of investors \' home computers toaccess e-mail accounts and liquidate online holdings, BusinessWeek reported, citing regulators and people whose accounts have been ripped off. HomePC users are particularly vulnerable since high-speed and wirelessconnections have made it easier for hackers to get in, the magazinesaid, noting that 84 percent of computer users keep sensitive personalinformation, including financial data, on their home PC. Securities & Exchange Commission investigators said they are investigating dozens of such schemes at the moment. It \'sa new and growing area that is more intricate and more complicated thanother Internet-related securities frauds, John Reed Stark, the SEC \'schief of Internet enforcement, told BusinessWeek . And it is still evolving. So far, 20 million has been stolen from online brokerage accounts in the last year, the magazine said. But with 1.7 trillion worth of assets in online brokerages, Web investing is a lucrative pursuit for thieves. Brokerages often help customers recover their money, or reimburse them for their loss, BusinessWeek said. Butmany experts believe that brokerage and high-tech industries shouldfurther educate consumers and provide them with the information andsoftware they need to make their accounts secure. ----------------------------- Click here for tips to avoiding identity theft. Click here for tips to protecting your PC. Find this article at:	http://money.cnn.com/2005/11/07/technology/personaltech/hackers/index.htm",8);arrFiles[14]=new Array(24,"idtheft/Getting Purse-onal.htm","2005-11-15","Getting Purse-onal: What To Do If Your Wallet or Purse Is Stolen","","","From CommunityDispatch.com Community Alerts Getting Purse-onal: What To Do If Your Wallet or Purse Is Stolen By U.S. Federal Trade Commission ( FTC) Nov 11, 2005, 20:48 Getting Purse-onal: What To Do If Your Wallet or Purse Is Stolen A lost or stolen wallet or purse is a gold mine of information for an identity thief. Identity thieves can use information found in your wallet or purse – from credit cards, checks, your Social Security card, or even health insurance cards – to establish new accounts in your name, creating an identity crisis that can take months for you to detect, and even longer to unravel. If your wallet or purse is lost or stolen, the Federal Trade Commission, the nation’s consumer protection agency, suggests that you take the following actions as soon as possible, and keep records of your conversations and copies of all correspondence. File a report with the police immediately. Get a copy of the report or at the very least, the number of the report, in case your bank, credit card company or insurance company needs proof of the crime. Cancel each credit and charge card that was in your wallet or purse. When you open new accounts, place passwords on them. Avoid using your mother’s maiden name, your birth date, the last four digits of your Social Security number (SSN) or your phone number, or a series of consecutive numbers. Call any one of the nationwide consumer reporting companies to place an “initial fraud alert” on your credit report. The alert requires creditors to follow reasonable procedures before granting credit in your name; it will stay on your credit report for at least 90 days. To place an alert on your credit report, you must provide appropriate proof of your identity: that may include your SSN, name, address, and other personal information the consumer reporting company requests. The consumer reporting company you call will contact the other two, which then will place an alert on their versions of your report. Equifax: 1-800-525-6285; http://www.equifax.com/ Experian: 1-888-EXPERIAN (397-3742); http://www.experian.com/ TransUnion: 1-800-680-7289; http://www.transunion.com/ When a business sees the alert on your credit report, they must verify your identity before issuing you credit. As part of this verification process, the business may try to contact you directly. This may cause some delays if you’re trying to obtain credit. To compensate for possible delays, you may wish to include a cell phone number, where you can be reached easily, in your alert. Remember to keep all contact information in your alert current. Ask the consumer reporting companies for copies of your credit reports. When you place an initial fraud alert on your credit report, you’re entitled to one free copy of your credit report from each of the three nationwide consumer reporting companies. Review your reports carefully to make sure no additional fraudulent accounts have been opened in your name or unauthorized changes made to your existing accounts. In a few months, review new copies of your reports to verify any corrections and changes, and to make sure no fraudulent activity has occurred. Report the loss or theft to your bank if your wallet or purse contained bank account information, including account numbers, ATM cards, or checks. Cancel checking and savings accounts, and open new ones. Stop payments on outstanding checks, and ask your bank to notify the check verification service with which it does business. That way, retailers can be notified not to accept checks written on your old account. Get a new ATM card, account number, and Personal Identification Number (PIN) or password. Contact the agency that issued your driver’s license or other identification document. Follow its procedures to cancel the document and replace it. Ask the agency to flag your file so that no one else can get a license or any other identification document from them in your name. If your state uses your SSN as your driver’s license number, ask to substitute another number. Change the locks on your home and car if your keys were taken. Don’t give a thief access to even more personal property and information. If you’ve been a victim of identity theft, file a complaint with the FTC online at http://www.consumer.gov/idtheft/ , by phone at 1-877-IDTHEFT (438-4338); TTY: 1-866-653-4261; or by mail: Identity Theft Clearinghouse, Federal Trade Commission, 600 Pennsylvania Avenue, NW, Washington, DC 20580. Ask for a copy of Take Charge: Fighting Back Against Identity Theft , the FTC’s free comprehensive consumer guide to help you recover from identity theft. The FTC works for the consumer to prevent fraudulent, deceptive and unfair business practices in the marketplace and to provide information to help consumers spot, stop, and avoid them. To file a complaint or to get free information on consumer issues , visit http://www.ftc.gov/ or call toll-free, 1-877-FTC-HELP (1-877-382-4357); TTY: 1-866-653-4261. The FTC enters Internet, telemarketing, identity theft, and other fraud-related complaints into Consumer Sentinel , a secure, online database available to hundreds of civil and criminal law enforcement agencies in the U.S. and abroad. © Copyright 2004 by Community Dispatch.com",10);arrFiles[15]=new Array(26,"idtheft/Net scams can snag those who bank old-fashioned way.htm","2005-11-04","USATODAY.com -   \\'Net scams can snag those who bank old-fashioned way","Scott Cummins, personal data, Social Security number, scam, Mike Cook, fraud, loan, collection agencies, lender, credit cards, byline, Thieves, store credit card, loan applications, anonymity, crime, front, intro, usatoday","Thieves make online purchases with stolen credit cards or go online to create new accounts by associating a slightly altered name with a stolen Social Security number. Data thieves and scam artists have begun using the speed and anonymity of the...","Classifieds: Cars | Jobs | Dating | Shopping \'Net scams can snag those who bank old-fashioned way By Byron Acohido and Jon Swartz, USA TODAY SEATTLE — Scott Cummins prefers to bank and shop the old-fashioned way. The 45-year-old insurance company manager from Columbus, Ohio, has never used online banking services and only occasionally shops on the Internet. So Cummins was perplexed when collection agencies began demanding payment for online purchases made on a Wal-Mart MasterCard and a Gap store credit card issued to one C. Scott Cummins. It took Cummins a month and a half to establish that he identifies himself as Scott Cummins — not any other variation of his legal name, Charles Scott Cummins — and that he was a victim of personal data theft and online fraud. The biggest hassle I \'ve ever been a part of in my life, Cummins says. Cummins \' Social Security number was sucked into a thriving online market where crime rings wheel and deal in personal data for millions of individuals. Thieves make online purchases with stolen credit cards, or, as in Cummins \' case, go online to create new accounts by associating a slightly altered name with a stolen Social Security number. The basic scam is not new. But data thieves and scam artists have begun using the speed and anonymity of the Internet to dramatically extend their reach. Criminals find gaps in the system and exploit them by intentionally manipulating identities, says Terrence DeFranco, CEO of security software firm Edentify. ID Analytics of San Diego recently analyzed a sample of 300 million applications for credit, debit and new loan accounts submitted to companies using its identity risk-management software from 2002 through 2004. It found evidence of dozens of fraud rings operating across the USA. One ring submitted 100 loan applications for 50 stolen Social Security numbers, two per number, in an attempt to avoid suspicion. In each instance, the victim \'s name was submitted along with a new billing address, a cellphone as a home number and the main line to a Los Angeles-area hospital as a work number. Listing a large organization as a workplace increases the odds of the loan being approved, should the lender make an effort to verify employment, says Mike Cook, ID Analytics co-founder and vice president. Fraud rings are adept at changing tactics and sharpening their focus, which leads to greater success over time, Cook says. Swartz reported from San Francisco Old-fashioned not safe 11/3/2005 2:36 AM By Byron Acohido and Jon Swartz, USA TODAY SEATTLE -- -- © Copyright 2005 USA TODAY, a division of Gannett Co. Inc.",10);arrFiles[16]=new Array(27,"idtheft/one_in_5_idfraud_victim.htm","2005-10-31","One in Five Americans Has Been a Victim of Identity Fraud","","","One in Five Americans Has Been a Victim of Identity Fraud WARREN, NJ, July 7, 2005 - With companies reporting data breaches seemingly every week, more people are becoming victims of identity theft, even as awareness rises. A survey of more than 1,850 Americans sponsored by Chubb Group of Insurance Companies found that 20% of respondents have beenvictims of identity fraud or theft. Ninety-five percent of respondents said they are concerned that someone might fraudulently impersonate them to ruin their credit standing and put them in debt, up almost 20% from 2000. Twenty-seven percent of respondents reported that their or a family member \'s credit card was fraudulently used to charge purchases, up from 19% in 2000. Twenty-seven percent reported that they or a family member experienced the theft of a purse or wallet, while 8% experienced fraudulent checks written on their or a family member \'s checking account. Consumers Want Accountability Eighty-seven percent of respondents think that companies that fail to adequately protect the confidential information they have on customers and others should be required by law to pay to restore consumers \' credit ratings. Sixty-five percent of those surveyed would like to see these companies fined, and 63% want these companies charged with a crime. Giving Away Your Identity Seventy-eight percent of respondents would give their Social Security number to a credit card company when applying for an account. Fifty-four percent of people surveyed would give their Social Security number to an auto dealer when establishing credit, 37% to a phone company when establishing service, and 53% to a college or other educational institution. Sixty-four percent of respondents have disclosed confidential information online or by telephone in the past six months. People need to be more protective of their personal information, particularly with whom and how they share it, whether online, over the phone or in person, said Dan McCabe, vice president of Chubb & Son and marketing manager for Chubb Personal Insurance. Regarding pre-approved credit card solicitations, 28% of people surveyed throw them away without shredding them or tearing them up. A Quick Fix? Or a Long, Costly Process? Twenty-eight percent of people surveyed believe it would take more than a year to regain their identity and clear their credit. Forty percent of respondents think it would cost 1,000 or more to regain their identity and clear their credit. The survey demonstrates not only the increased threat of identity theft but also the increased concern felt by consumers, said McCabe. Impulse Research of Los Angeles conducted the survey in May 2005 for Chubb. The survey provided a more extensive look at the identity theft problem than a survey Chubb sponsored in 2000. Chubb provides free identity theft coverage to its homeowners insurance customers in nearly all 50 states, as well as in Washington, DC. The coverage reimburses customers for a variety of identity fraud expenses, up to a maximum of 25,000 for each occurrence, subject to a 500 deductible. The member insurers of the Chubb Group of Insurance Companies form a multi-billion dollar organization providing property and casualty insurance for personal and commercial customers worldwide through 8,000 independent agents and brokers. Chubb \'s global network includes branches and affiliates in North America, Europe, Latin America, Asia and Australia. In addition to insuring valuable articles, Chubb is a worldwide leader in providing insurance coverage for fine homes, automobiles, yachts and wine collections and other collectibles. Contact Us | Site Map Copyright © 1995-2005 The Chubb Corporation| Legal Notices | Privacy Policy | Producer Compensation",9);arrFiles[17]=new Array(28,"idtheft/Online identity theft Many medicines, no cure.htm","2005-12-07","Online identity theft: Many medicines, no cure","","As the incidence of online identity theft has steadily climbed in recent months, banks and online retailers have struggled to stay on top of the problem and to protect their customers, whose personal financial information and online account details are c","Online identity theft: Many medicines, no cure Technologies emerge to address growing problems By Paul Roberts, IDG News Service November 01, 2004 As the incidence of online identity theft has steadily climbed in recent months, banks and online retailers have struggled to stay on top of the problem and to protect their customers, whose personal financial information and online account details are coveted by criminals. But as problems like phishing scams change from e-crime phenomenon to endemic online threats, technology companies -- both large and small -- are bringing products and services to market that they claim can end, or greatly reduce, the threat of online identity theft. These are some of the technologies aimed at curbing online identity theft: -- Antiphishing toolbars: These lightweight applications, or applets, were some of the first tools specifically created to stop online scams like phishing. These free programs have been offered to customers by eBay Inc., Internet service providers (ISPs) EarthLink Inc. and America Online ( Profile , Products , Articles ) Inc. (AOL), and other companies, including GeoTrust Inc. and CoreStreet Ltd. The programs are usually plug-ins adding an extra toolbar to a user \'s Web browser interface. The programs verify Web site URLs (uniform resource locators) and warn about Web sites that hide their true addresses. Antiphishing tools are effective against phishing scams that use spam to direct Internet users to Web sites controlled by thieves, but designed to look like legitimate e-commerce sites. However, such tools do nothing to secure sensitive financial information online. -- Antiphishing services: Phishing prevention services are designed to spot and thwart new threats, including brand monitoring services such as FraudProtect by MarkMonitor Inc., Symantec ( Profile , Products , Articles ) Corp. \'s Online Fraud Management Solution, VeriSign ( Profile , Products , Articles ) Inc. \'s AntiPhishing Solution and services by NameProtect Inc. Most of these services use a distributed network of sensors to monitor e-mail traffic, news groups and Web domain registrations, spotting new scams, such as phishing attacks. The services promise to enable companies to move quickly to crack down on fraudulent Web sites that use their names and also give customers advanced warning about scam e-mail messages making the rounds. -- Payer authentication and smart cards: Online security advocates often cite smart cards as a cure-all for online fraud. The cards combine traditional plastic credit cards with microprocessor chips that can store far more information about the cardholder than older, magnetic-strip cards. Among other things, smart cards can store PINs (personal identification numbers) or biometric identifiers that could be used at the point of purchase to verify the purchaser \'s identity, making theft of an account number or credit card inconsequential. Smart cards are ubiquitous in Europe, and the U.K. banking industry has recently launched a major, nation-wide rollout of smart card technology through its Chip and PIN program, which will replace magnetic-strip cards and do away with signed receipts for card present purchases. But banking officials in the U.S. cite a number of obstacles to widespread smart card use, including an existing infrastructure of millions of card readers that do not support the new cards. -- Fraud screening and prevention: Lacking strong authentication at the point of purchase, most credit card companies and merchants in the U.S. name fraud screening technology as their first and best defense against fraud. Companies in this space, including VeriSign, ClearCommerce Corp. and CyberSource Corp., use a variety of filters to analyze transaction patterns for individual consumers or groups of consumers, and to spot suspicious activity. For example, companies might flag a pattern of rapid, high-value transactions and spot discrepancies between the geographical location from which the order was placed and the billing address, or look askance at transactions with different billing and ship-to addresses, according to Julie Ferguson, co-founder and vice president of emerging technologies at ClearCommerce. -- Consumer authentication services: Recent deals between security technology companies and major ISPs and consumer software vendors could bring multifactor authentication technology into the mainstream. In September, RSA Security ( Profile , Products , Articles ) Inc. and AOL announced a new program called AOL PassCode that will encourage AOL customers to use RSA SecurID tokens to protect account information. On the same day, VeriSign announced its Unified Authentication program, which it said will reduce the cost of strong authentication, such as one-time passwords or hardware smart cards. In October, RSA announced the availability of SecurID for Windows, a secure token that will make it easier for users to log on and off to Windows machines using multifactor authentication, while VeriSign and AOL said they would investigate ways to extend the Unified Authentication program to AOL members. Experts agree that the sum of those announcements is more and less expensive access to strong authentication technology -- AOL \'s Passcode token costs only 9.95. Consumer strong authentication programs could also create an infrastructure that banks and online retailers build on to strengthen interactions with their own sites, according to Gil Danieli, vice president of technology at EverBank National Banking Group, an online bank. For now, Passcode and SecurID for Windows haven \'t been expanded to protect access to online banking or e-commerce services, such as Apple Computer ( Profile , Products , Articles ) Inc. \'s popular iTunes, with which AOL has a relationship through its AOL Music service. But such applications aren \'t out of the question in the future, according to Ned Brody, senior vice president of premium services at AOL.",15);arrFiles[18]=new Array(29,"idtheft/online_id_theft_worsens.htm","2005-11-15","Online ID Theft Worsens, Scares US Bank Customers","News","Even as banks and regulators step up efforts to thwart identity theft over the Internet, the worry that fraudsters remain one step ahead is convincing many Americans that banking online is too risky.","Online ID Theft Worsens, Scares US Bank Customers November 8, 2005	ByJonathan Stempel NEW YORK (Reuters)—Even as banks and regulators step up efforts tothwart identity theft over the Internet, the worry that fraudstersremain one step ahead is convincing many Americans that banking onlineis too risky. Atan identity theft forum in New York on Tuesday, security and policyexperts said banks are taking appropriate steps to stop onlinecriminals, but that their best efforts—and consumers \' own vigilance—maynot be enough. Consumers can do everything right—not give out passwords orfinancial information—and still become victims, said SusannaMontezemolo, a policy analyst at Consumers Union, in an interview. An October survey commissioned by Internet security companyEntrust Inc. and released at the forum found that 18 percent ofAmericans who have banked online now do so less, or not at all, becauseof security concerns. Ninety-four percent say they \'re willing to acceptextra online security protections. The survey was conducted around the time the Federal FinancialInstitutions Examination Council ordered banks to tighten online accessby late 2006. The council, composed of U.S. regulators including the FederalReserve and Federal Deposit Insurance Corp., expects banks to requireat least two forms of authentication when the risks of online breachesare too high. The second form can include smart cards, tokens thatgenerate random passwords, or biometrics that identify fingerprints orhandwriting. Some 10 million Americans are ID theft victims each year, the Federal Trade Commission estimates. Congress is considering national standards to fight ID theft.Michael Oxley (R-Ohio), chairman of the House Financial ServicesCommittee, said victims of ID theft spend an average 90 hours and1,700 resolving the problem. ID THEFT METHODS PROLIFERATE Perhaps the best known form of online theft is phishing. Thisis where criminals send e-mails asking prospective victims to verifypersonal information through links to real-looking Web sites. Therewere 13,776 distinct phishing attacks in August, according to theAnti-Phishing Working Group. Fraudsters soon graduated to spyware and keylogging, where they monitor prospective victims \' Web use and keystrokes. This year, security experts have seen a surge in pharming.This is where criminals redirect user traffic at legitimate Web sitesto fraudulent sites or proxy servers, without any overt indication theyare doing so. Spyware, keyloggers and pharming are really growing, saidMichael Jackson, associate director of technology supervision at theFDIC, in an interview. Banks could step it up a notch in terms ofsecurity, which is why we have the guidance. Still, in banking, traditional forms of theft such as check fraud remain more prevalent than online theft. Consumers, moreover, complain about cumbersome securityprocedures. Tuesday \'s survey showed 81 percent don \'t want to pay forextra online banking protection. Consumers Union \'s Montezemolo said computer users should makesure their online connections are secure, vary the identifyinginformation they use on accounts, and not work with their accounts onshared computers. She also urged banks not to share client information amongaffiliates, and not assign such obvious data as Social Security numbersas default log-ins. They \'ll never have 100 percent control, she said. But weneed to empower consumers to opt out on whether information is used,and give them tools to take more control. InfoSurv Inc. conducted the online survey of 710 people forAddison, Texas-based Entrust during the week of October 17. The marginof error is plus or minus 3 percentage points. Copyright (c) 2005 Ziff Davis Media Inc. All Rights Reserved.",5);arrFiles[19]=new Array(30,"idtheft/Spyware Researchers Discover ID Theft Ring.htm","2005-12-01","Spyware Researchers Discover ID Theft Ring","News","Researchers at Sunbelt Software stumble upon a massive identity theft ring using spyware programs to hijack private data.","Home > Topics > Security > News > Spyware Researchers Discover ID Theft Ring Spyware researchers picking apart one of the more notorious spyware programs have stumbled upon what appears to be a massive identity theft ring hijacking confidential data from millions of infected computers. Sunbelt Software Inc., makers of the enterprise-grade CounterSpy spyware protection product, made the discovery during an audit of CoolWebSearch, a program that routinely hijacks Web searchers, browser home pages and other Internet Explorer settings. During the research, Sunbelt researcher Patrick Jordan deliberately installed the CoolWebSearch application on a machine and immediately noticed that the infected system became a spam zombie that was placing callbacks to a remote server. When Jordan visited the remote server, he was shocked to find that it was being used to distribute sensitive personal information from millions of PC users infected by the spyware application. We found the keylogger transcript files that are being uploaded to the servers. We \'re talking real spyware stuff…chat sessions, usernames, passwords, bank account information, full names, addresses, said Sunbelt president Alex Eckelberry. Read more here about the many faces of spyware. In an interview with Ziff Davis Internet News, Eckelberry said the sophistication of the operation suggests it \'s the work of a massive identity theft ring that used keystroke loggers to grab confidential information that could be used to create fake online identities. I \'m not being dramatic. This is the most repulsive thing I \'ve ever seen. It \'s very painful to see what \'s in these log files that are being uploaded in real time. We \'re seeing a lot of bank information and usernames and passwords to get in, Eckelberry said. He said the log files included logins to one business bank account with more than 350,000 and another small company in California with over 11,000, readily accessible. There are lots of eBay account information and names and addresses of the people owning those accounts. Names, passwords, all matched up, Eckelberry added. Read more here about Sunbelt \'s acquisition of a Google-like spyware sniffer. He said the server, which is hosted out of a data center in Texas, was effectively a massive repository of stolen data that was being replenished in real time. As the [log] file gets to a certain size, it gets taken down and a new file starts generating. This goes on nonstop. We \'ve been watching it for a few days while trying to get to the FBI, and it just keeps growing and growing. While the site is being hosted in the United States, Eckelberry said the domain name is registered to an offshore company. Eckelberry said the huge size of the log files is a clear indication that thousands of machines are pinging back daily. In some cases, where users appeared to be at immediate risk of losing a considerable amount of money, Sunbelt has contacted the affected individuals. Eckelberry said the CoolWebSearch payload included a typical adware download that immediately scanned the infected machine for e-mails to use for spam runs. It then sets up a very intelligent keylogger that looks for very specific information. This won \'t get caught by a typical anti-spyware application, he said, noting that the keystroke logger was able to pick up identity-related data for delivery to the remote server. Anti-virus vendor Trend Micro Inc. provides a free online scanning tool that detects and deletes the CoolWebSearch application. The tool is available for the Microsoft Windows XP, Windows 2000, Windows Millenium Edition and Windows 98 operating systems. Editor \'s Note: This story was updated to include information on Trend Micro \'s scanning tool. Check out eWEEK.com \'s Security Center for the latest security news, reviews and analysis. And for insights on security coverage around the Web, take a look at eWEEK.com Security Center Editor Larry Seltzer \'s Weblog.",15);arrFiles[20]=new Array(31,"idtheft/US losing battle against identity theft.htm","2005-11-16","US losing battle against identity theft","","","US losing battle against identity theft Existing laws not offering sufficient protection, warns pressure group Robert Jaques, vnunet.com 07 Sep 2005 There have been at least 104 serious data incidents in the US since 1January which represent just the tip of an iceberg in serious systemiccomputer security problems. The incidents potentially affect more than 56.2 million individuals,according to the US-based non-profit IdentityTheft Resource Center (ITRC). Congressional committees are waging a turf war over a security breachnotification law, while companies, governmental agencies and educationalfacilities are mishandling information on a daily basis and putting all of usat risk of identity theft. We have been given a loud wake-up call. Is anyone planning to pay attentionto the true problem, or will companies be allowed to continue to disregard theimportance of your future and your financial identity? warned the ITRC. How many breaches don \'t make the front page or are even reported toconsumers because a company has deemed the breach not to \'cause significant riskof harm \' to the individual or has buried it to avoid additional problems? We will never know. What we do know is that security breaches are not new -they have been occurring for years. What is different is that now you arehearing about them. However, the pressure group admitted that any notification law is only abandage to cover the more significant problem of personal information leakage, asubject that the ITRC believes industry would rather Congress did not address. The ITRC noted that security breaches fall into a number of easilyrecognisable categories, including lost or stolen computers, unprotected backuptapes lost in transit, hackers breaking into systems and virus attacks. The pressure group also identified additional risks including employeesstealing information or allowing access to confidential information, poorinternal corporate security policies and improper disposal of sensitiveinformation. While it may be impossible to stop some hackers, most of these breaches couldhave been avoided by following safe information handling practices, the ITRCclaimed. Something has to change or we might as well give up the battle againstidentity theft and protecting the privacy of our information, the group warned. Congress needs to take action, not at the expense of consumers but increating laws and assisting companies to better control their information. Under pending [US] legislation, the only time you will hear of a breach iswhen a company believes there is significant harm that may occur. Responsible corporate lawyers, fraud investigators, computer securityspecialists and members of law enforcement will tell you that no-one can predictthe future or say how a thief might use illegally obtained information. www.vnunet.com/2141968 This article was printed from the VNU Network VNU Business Publications © 2005 All rights reserved",4);arrFiles[21]=new Array(36,"phishing/Man Is Sentenced in Phishing Fraud.htm","2005-12-07","Man Is Sentenced in Phishing Fraud","","","Yahoo! My Yahoo! Mail Make Yahoo! your home page News Home - Help	Man Is Sentenced in Phishing Fraud Tue Nov 1,12:33 PM ET PRESTON, England - A British man was sentenced to four years in jail Tuesday for masterminding a phishing fraud that stole identities and bank details from users of the eBay auction site.	Prosecutors said David Levi, 29, of Lytham, England, led a six-man gang that stole nearly 200,000 pounds (360,000) from more than 160 people. They sent e-mails to eBay customers, pretending to be from eBay, asking for bank details. Other gang members were sentenced to jail terms ranging from six months to two years. This was a coordinated and sophisticated fraud which took place over a 12-month period which required a determined and calculated approach, said Judge Phillip Sycamore, presiding in Preston Crown Court. A large number of people lost a significant amount of money, and it is quite apparent that the use of a fraudulent eBay site was quite sophisticated, Sycamore said. In phishing schemes, fraudsters typically bait victims with e-mails purportedly from legitimate online businesses. The e-mails direct recipients to bogus Web sites, where they are asked to re-input information such as credit card numbers and passwords. Levi, who was already serving a sentence for drug offenses, was sentenced to three years for fraud and one year for perverting the course of justice, to be served consecutively. His brother Guy Levi, 22, was jailed for 21 months after pleading guilty to conspiracy to defraud. Daniel Lett, 22, was sentenced to two years for conspiracy to defraud. Derek Anderson, 59, Chris Worden, 23, Craig Jameson, 31, and Gareth Rice, 22, were each jailed for six months on money laundering charges. Copyright © 2005 The Associated Press. All rights reserved. The information contained in the AP News report may not be published, broadcast, rewritten or redistributed without the prior written authority of The Associated Press. Copyright © 2005 Yahoo! Inc. All rights reserved. Questions or Comments Privacy Policy - Terms of Service - Copyright/IP Policy - Ad Feedback",9);arrFiles[22]=new Array(37,"safety/hackers are attacking.htm","2005-12-07","Hackers are attacking across a wider front","new jersey news, new jersey obituaries, new jersey classifieds, new jersey sports, news, local news, bergen county, essex county, hudson county, morris county, passaic county, northern new jersey, sports, obituaries, new jersey weather, weather, classifi","northjersey.com provides local news, news, classifieds, sports, entertainment news, obituaries and weather information for northern new jersey as reports by the record and herald news.","E-LIVING HEADLINES Hackers are attacking across a wider front Saturday, October 29, 2005	By ROBERT E. CALEM	SPECIAL TO THE RECORD	Beware: You are even less safe online now than you were a year ago. Computer-savvy con artists are using spyware, adware, spam and other high-tech malicious means to make money - and it is your computer and your information that they are targeting, according to a recent report by Symantec Corp., one of the leading makers of computer security software. The report - titled Internet Security Threat Report Volume VIII - was published Sept. 19 and was based on a semiannual study of hackers and their malevolence that the company conducted from January to June. The threat landscape is changing, said Dean Turner, executive editor of the Symantec report, in a Web-based presentation Sept. 22. According to the Symantec study, attackers are focusing more on individual computer users and, Turner said, in the first six months of 2005 there was an increase in the overall volume of attacks. Turner said that there has been a shift from hacking for fame to hacking for fortune. As a result of attackers \' efforts, he said, threats to confidential information rose 37 percent in the period compared with the prior six months. In the study period, 74 percent of the top 50 subversive programs or malicious code (also known as malware) installed on a user \'s computer exposed confidential information, the report says. That \'s up from 54 percent in the previous reporting period and from 44 percent in the first half of 2004. How was this confidential information targeted and exposed? Some of the most common avenues of attack were e-mail programs, Web browsers and other computer applications that connect to the Internet, according to Symantec. These provided a means to infect the user \'s PC with malicious software such as spyware and adware, which operate surreptitiously. It \'s important to note that spam is more than just annoying junk e-mail. Spam is a serious security concern, Turner said, because it can be used to deliver computer viruses, worms and Trojan horses. In turn, viruses, worms and Trojan horses may contain spyware and adware that can be used, for example, to secretly record a user \'s keystrokes as he types a password. Then the password is sent to the attacker. Plus, a spam e-mail can be a phishing message, which Turner described as an e-mail message sent with the intention of tricking a recipient into revealing confidential information to the attacker. An average of 61 percent of e-mail in the first six months of the year was spam, an increase of 1 percent compared with the previous six months. Symantec also found that one of every 125 e-mail messages received by computer users in the latest period was a phishing message. It was a 100 percent increase in phishing attempts - the number sent to a single recipient - compared with the previous study period. Also trending upward in the period was the exploitation of vulnerabilities in Web applications and Web browsers - essentially, holes in the programs that allow attackers to infiltrate a user \'s computer, remotely control it and access confidential information. Symantec documented 1,862 new vulnerabilities during the reporting period, the highest number recorded since the Internet Security Threat Report began tracking new vulnerabilities in six-month intervals, the reportstates. Nearly half of all vulnerabilities were classified as highly severe, and nearly three-quarters were deemed easily exploitable. Moreover, nearly 60 percent were found in Web applications. Mozilla Web browsers were found to be the most vulnerable, with 25 vendor-confirmed vulnerabilities, 18 of which are severe. By comparison, 13 vendor-confirmed vulnerabilities were found in Microsoft Internet Explorer, eight of them highly severe. Eight of the top 10 adware programs reported in the period were installed through Web browsers, and five of them hijacked browsers. The report also says adware composed 8 percent of the top 50 malicious programs, up from 5 percent in the previous period. Six of the top 10 spyware programs reported in the study period were installed through Web browsers, the report says. One of the most noteworthy examples of the new threat landscape was the Lazar Trojan, Turner said. It downloaded and installed adware that displays pop-up advertisements in a user \'s Web browser, earning the attacker a fee each time the adware was installed on a computer. Copyright © 2005 North Jersey Media Group Inc. Copyright Infringement Notice User Agreement & Privacy Policy",8);arrFiles[23]=new Array(39,"safety/Internet Dangers.htm","2005-11-04","Internet Dangers","","","Recent Statistics on Internet Dangers CYBERPORN According to comScore Media Metrix, 71.9 million people visited adult sites in August 2005, reaching 42.7 percent of the Internet audience. According to comScore Media Metrix, Internet users viewed over 15 billion pages of adult content in August 2005. According to comScore Media Metrix, Internet users spent an average of 14.6 minutes per day viewing adult content online. There are 1.3 million porn websites (N2H2, 9/23/03). More than 32 million unique individuals visited a porn site in Sept. of 2003. Nearly 22.8 million of them were male (71 percent), while 9.4 million adult site visitors were female (29 percent) (Nielsen/Net Ratings, Sept. 2003). Pornographic web pages now top 260 million and growing at an unprecedented rate (N2H2, 9/23/03). N2H2 \'s database contained 14 million identified pages of pornography in 1998, so the growth to 260 million represents an almost 20-fold increase in just five years (N2H2, 9/23/03). The cybersex industry generates approximately 1 billion annually and is expected to grow to 5-7 billion over the next 5 years, barring unforeseen change (National Research Council Report, 2002). The total porn industry - estimates from 4 billion to 10 billion (National Research Council Report, 2002). The two largest individual buyers of bandwidth are U.S. firms in the adult online industry (National Research Council Report, 3-1, 2002). 40,000 expired domain names were porn-napped (National Research Council). Commercial pornography sites: 74 percent display free teaser porn images on the homepage, often porn banner ads. 66 percent did not include a warning of adult content. 11 percent included such a warning but did not have sexually explicit content on the homepage. 25 percent prevented users from exiting the site (mousetrapping). Only 3 percent required adult verification. (Child-Proofing on the World Wide Web: A Survey of Adult Webservers, 2001, Jurimetrics. National Research Council Report, 2002). CHILD PORN According to the National Center for Missing and Exploited Children (NCMEC), child pornography reports increased 39% in 2004. Ernie Allen, president and CEO of NCMEC, states that the statistics show a significant and steady increase in child pornography reports for the seventh year. More than 20,000 images of child pornography are posted on the Internet every week (National Society for the Prevention of Cruelty to Children, 10/8/03). 140,000 child pornography images were posted to the Internet according to researchers who monitored the Internet over six weeks. Twenty children were estimated to have been abused for the first time and more than 1,000 images of each child created (National Society for the Prevention of Cruelty to Children, 10/8/03). More than half of all illegal sites reported to the Internet Watch Foundation are hosted in the United States. Illegal sites in Russia have more than doubled from 286 to 706 in 2002 (National Criminal Intelligence Service, 8/21/03). Demand for pornographic images of babies and toddlers on the Internet is soaring (Prof. Max Taylor, Combating Paedophile Information Networks in Europe, March 2003). More babies and toddlers are appearing on the net and the abuse is getting worse. It is more torturous and sadistic than it was before. The typical age of children is between six and 12, but the profile is getting younger (Prof. Max Taylor, Combating Paedophile Information Networks in Europe, March 2003). Approximately 20 new children appear on the porn sites every month - many kidnapped or sold into sex (Combating Paedophile Information Networks in Europe, March 2003). In the last couple of years, we \'ve just seen such young children on regular seizures - babies, 2-, 3-, 4-year-olds (Det. Sgt. Paul Gillespie, Toronto Police Force). The U.S. Customs Service estimates that there are more than 100,000 Web sites offering child pornography - which is illegal worldwide. Revenue estimates for the industry range from about 200 million to more than 1 billion per year. These unlawful sexual images can be purchased as easily as shopping at Amazon.com. Subscribers typically use credit cards to pay a monthly fee of between 30 and 50 to download photos and videos, or a one-time fee of a few dollars for single images. (Red Herring Magazine, 1/18/02) MOBILE PORN Adult content on mobile telephones and other portable devices is anticipated to hit 1 billion in worldwide revenues during 2005, according to market research firm Juniper Research. (Juniper Research, Adult to Mobile: Personal Services) The Juniper report said a 50 percent hike in mobile porn revenues for 2005 over 2004 is likeliest to come from Europe and the Asia-Pacific regions, but by 2009 the world mobile porn market could well enough hit 2.1 billion. (Juniper Research, Adult to Mobile: Personal Services) ONLINE SEXUAL PREDATORS Internet pedophiles are increasingly adopting counter-intelligence techniques to protect themselves from being traced (National Criminal Intelligence Service, 8/21/03). Forty percent of people charged with child pornography also sexually abuse children, police say. But finding the predators and identifying the victims are daunting tasks (Reuters, 2003). One in five children who use computer chatrooms has been approached over the Internet by pedophiles. (Detective Chief Superintendent Keith Akerman, Telegraph.co.uk January 2002 ) 89% of sexual solicitations were made in either chat rooms or Instant Messages. (Pew Study reported in JAMA, 2001) 13 million youth use Instant Messaging. (Pew Study reported in JAMA, 6/01) 1 in 5 received sexual solicitation or approach in last year. (Online Victimization, NCMEC, June 2000) 1 in 33 received AGGRESSIVE sexual solicitation (asked to meet, called them via phone, sent mail, money or gifts). Online Victimization, NCMEC, June 2000) 25% of youth who received sexual solicitation told a parent. (Online Victimization, NCMEC, June 2000) 1 in 4 kids participate in Real Time Chat. (FamilyPC Survey, 2000) YOUTH 23% of parents have rules about what their kids can do on the computer (The Henry J. Kaiser Family Foundation Study, March 2005). 25% of 7th- to 12th-graders with a computer at home say it has a filter or parental controls on it (The Henry J. Kaiser Family Foundation Study, March 2005). 31% of 7th- to 12th-graders pretended to be older to get onto a website (The Henry J. Kaiser Family Foundation Study, March 2005). Nearly all young people have used a computer (98%) and gone online (96%) (The Henry J. Kaiser Family Foundation Study, March 2005). In a typical day, just over half (54%) of all young people use a computer for recreation (The Henry J. Kaiser Family Foundation Study, March 2005). Nearly one-third (31%) of 8- to 18-year-olds have a computer in their bedroom, and one in five (20%) have an Internet connection there (The Henry J. Kaiser Family Foundation Study, March 2005). About half of young people (48%) go online from home, 20% from school, and 16% from someplace else (The Henry J. Kaiser Family Foundation Study, March 2005). Among the 96% of young people who have ever gone online, 65% say they go online most often from home, 14% from school, 7% from a friend’s house, and 2% from a library or other location (The Henry J. Kaiser Family Foundation Study, March 2005). One in ten young people (13%) reports having a handheld device that connects to the Internet (The Henry J. Kaiser Family Foundation Study, March 2005). The most common recreational activities young people engage in on the computer are playing games and communicating through instant messaging (The Henry J. Kaiser Family Foundation Study, March 2005). The Kaiser Family Foundation found that among teens online, 70 percent have accidentally come across pornography on the Web (Kaiser Family Foundation). A study by the NOP Research Group found that of the four million children aged seven to 17 who surf the net, 29% percent would freely give out their home address and 14% would freely give out their e-mail address if asked. (Telegraph.co.uk January 2002) Nine out of 10 children aged between eight and 16 have viewed pornography on the Internet. In most cases, the sex sites were accessed unintentionally when a child, often in the process of doing homework, used a seemingly innocent sounding word to search for information or pictures. (London School of Economics January 2002) The Kaiser Family Foundation \'s study on teens \' use of the Internet for health information has some shocking findings: Pornography and Internet Filtering Among all 15-24 year-olds: Two-thirds (67%) support the law requiring Internet filters at schools and libraries. Two out of three (65%) say being exposed to online pornography could have a serious impact on those under 18. A majority (59%) think seeing pornography on the Internet encourages young people to have sex before they \'re ready. Among the 95% of all 15-17 year-olds who have ever gone online: Seventy percent have accidentally stumbled across pornography online, 23% very or somewhat often. A majority (55%) of those who were exposed to pornography say they were not too or not at all upset by it, while 45% were very or somewhat upset. A third (33%) of those with home Internet access have a filtering technology in place there. Among the 76% of all 15-17 year-olds who have sought health information online: Nearly half (46%) say they have been blocked from non-pornographic sites by filtering technology. The entire study is online at http://www.kff.org/content/2001/20011211a/GenerationRx.pdf (The Kaiser Family Foundation, 2001) ADULTS Cyber-sex is the crack cocaine of sexual addiction. (Dr. Robert Weiss, Sexual Recovery Institute, Washington Times 1/26/2000) Cyber-sex reinforces and normalizes sexual disorders. (Dr. Robert Weiss, Sexual Recovery Institute, Washington Times 1/26/2000) Cyber-sex is a public health hazard exploding because very few are recognizing it as such or taking it seriously. (MSNBC/Stanford/Duquesne Study; Associated Press Online, 2/29/2000) 57 million Americans have Internet access. (MSNBC/Stanford/Duquesne Study, 2000) 25 million Americans visit cyber-sex sites between 1-10 hours per week. Another 4.7 million in excess of 11 hours per week. (MSNBC/Stanford/Duquesne Study, Washington Times, 1/26/2000) At least 200,000 Internet users are hooked on porn sites, X-rated chat rooms or other sexual materials online. (MSNBC/Stanford/Duquesne Study, Associated Press Online, 2/29/2000) MSNBC/Stanford/Duquesne Study, 2000 Men prefer visual erotica twice as much as women Women favor chat rooms twice as much as men Women had slightly lower rate of sexually compulsive Internet behavior 70% keep their habit a secret CHRISTIANS AND SEXUAL BROKENNESS One out of every six women, including Christians, struggles with an addiction to pornography. That \'s 17 percent of the population, which, according to a survey by research organization Zogby International, is the number of women who truly believe they can find sexual fulfillment on the Internet (Today \'s Christian Woman, September/October 2003). \' More than 80 percent of women who have this addiction take it offline, \' says Marnie Ferree. \'Women, far more than men, are likely to act out their behaviors in real life, such as having multiple partners, casual sex, or affairs \' (Today \'s Christian Woman, September/October 2003). 51% of pastors say cyberporn is a possible temptation. 37% say it is a current struggle (Christianity Today, Leadership Survey, December 2001). 4 in 10 pastors have visited a porn site (Christianity Today, Leadership Survey, December 2001). PUBLIC OPINION Eight out of ten Americans (81%) believe federal laws against Internet obscenity should be vigorously enforced, and seven out of ten (70%) believe that strongly. A higher percentage of women support vigorous enforcement of federal laws against Internet obscenity than men -- 90% versus 72% (Wirthlin Survey, 2002). On the other hand, seven out of ten Americans (70%) say they do not believe these laws are currently being vigorously enforced (Wirthlin Survey, 2002). MISCELLANEOUS An estimated 204.3 million people, or 74.9 percent of the U.S. population above the age of two and living in households equipped with a fixed-line phone, have Internet access (Nielson Media Research). 57% of U.S. Internet users incorrectly believe that when a website has a privacy policy, it protects their personal information from being shared with other sites or companies (Annenberg Center). Although no connection between legal porn viewing and criminal behavior has ever been proven, police have seen a steady increase in porn associated with crimes (Lt. Matt Bilodeau, spokesman for the Cache County Sheriff \'s Department, Associated Press, 10/17/04). The adult-film industry is bigger than ever, making some 6,000 movies a year and grossing more than 4 billion - roughly as much as the National Football League (New York Post, Russell Scott Smith, 9/25/03). Click here to visit our Stats Archive of previously posted Statistics. © 2001 by Donna Rice Hughes. Request permission if youwish to reprint or post.",18);arrFiles[24]=new Array(40,"safety/is_your_biz_safe.html","2005-12-07","Is Your Biz Safe From Internet Security Threats?","","Spyware, viruses and hacker attacks can be devastating to small businesses. Here s how to protect your company from internet security threats.","Is Your Biz Safe From Internet Security Threats? Spyware, viruses and hacker attacks can be devastating to smallbusinesses. Here \'s how to protect your company from internet securitythreats.	July 11, 2005	By Peter Alexander	URL: http://www.Entrepreneur.com/article/0,4621,322247,00.html Many small-business owners assume that large corporations arefar more vulnerable to internet security threats than they are. Intruth, however, it \'s often the other way around. For example, thedestructive Mydoom worm affected one out of three small and mid-sizedbusinesses--but only one out of six large enterprises, according to the Internet Security Alliance , a non-profit organization that provides a forum for information security issues. Because they have a false sense of security and assume they’re notat risk, many small-business owners don \'t adequately protect theircomputers and networks from spyware, viruses, worms, hacker attacks,customer data theft and other security threats. In addition, with somany balls to juggle already, entrepreneurs often put computer securityfar down on their to-do lists--if it makes the list at all. The result: Nearly half of all small and mid-sized businesseshaven’t taken the most basic security precautions, such as installingantivirus and anti-spyware programs, reports research firm AMI-Partners. Why You \'re at Risk There are several reasons why your computers, network and the data thatresides on them are at greater risk now than ever before. Enterprise network security is harder to breach. Inrecent years, many corporations, impacted by internet threats and inorder to comply with strict security measures required by theSarbanes-Oxley Act and other regulations, have significantly bolsteredtheir network security. As a result, criminals are increasingly turningtheir attentions toward easier hacker targets--small businesses. Unprotected systems are easier to find. Manyhackers now have software tools that constantly search the internet forunprotected networks and computers. Once discovered, unprotectedcomputers can be accessed and controlled by a hacker, who can use themto launch attacks on other computers or networks. Computer security threats are more sophisticated--and more damaging. Spyware authors are busy creating pernicious programs that resistremoval, perpetually mutate, and spread across the internet in minutes.Meanwhile, blended threats, which assume multiple forms and can attacksystems in many different ways, are on the rise. Small businesseswithout adequate, updated security solutions can easily be victimizedby these and other threats. Threats often come from within. All too often,security breaches don’t come from outside the company but from within,either intentionally or unintentionally. For example, an employee mayunknowingly download spyware while playing an online game or visiting awebsite. Small-business systems are more vulnerable to employeetampering simply because they often lack the internal securityprecautions of a larger enterprise. The resulting impact of a security attack is greater. Small businesses often lack the financial resources that largecompanies have to bounce back from security attacks. Suppose you \'re anonline retailer and a hacker launches a denial-of-service attackagainst your website. Do you have the necessary insurance or funds torecover from the subsequent loss of revenue--not to mention the damageto your business \'s reputation? What You Can Do Fortunately, there are plenty of ways to protect your business from internet security threats. Change your thinking. Internet security shouldbe a fundamental part of your business survival/continuity plan. Thinkof it this way: Many small businesses have grown reliant on theinternet for communicating with customers and partners; selling ormarketing their products or services; and more. How will your businesscontinue to perform those functions if your computers are affected by adevastating virus? Assess your needs. Do you have a fullunderstanding of the security you need vs. what you currently have? Ifyou \'re a harried small-business owner, chances are the answer’s no.The good news is, you may have more protection than you realize. Forinstance, most home office and small-business local area network (LAN)routers include a built-in firewall--technology that blocks intrudersfrom accessing the computers on the network. Cover the basics. At a minimum, all yourbusiness computers should be protected by a hardware or softwarefirewall and antivirus and anti-spyware programs. Some internetsecurity suite solutions geared toward small businesses combine allthree protections, as well as offer safeguards against identity theft,spam, phishing scams and more. Get help. Does computer security seem like tooa daunting task for you to handle? If so, hire a consultant to performa security audit of your business systems and network and makerecommendations. Your network equipment reseller or technology vendorcan also help you determine the security solutions you need. Anotheroption is to outsource the job. A managed service provider can design,implement and maintain your network security solution for a flatmonthly fee. Put it in writing. A detailed, written securityplan that includes policies and procedures as well as technologyrequirements is particularly important for businesses with employees.If your security procedures aren \'t set down in writing, they \'re easyfor an employee to dispute or disregard. Keep your security updated. New internetthreats are emerging daily. Your security solutions won \'t be effectiveagainst new viruses, worms or spyware if they \'re not regularly updated.Fortunately, most antivirus software and other security solutions canbe updated automatically. Give wireless networks extra protection. On awireless network, data is transmitted over radio waves, which can beeasily intercepted. This means a wireless network is inherently lesssecure than a wired one. If you or your employees use a wirelessconnection to access company databases or files, consider takingadditional security measures. For instance, a virtual private network(VPN) connection provides a secure way for mobile workers to wirelesslytap into a company \'s network. Don \'t go overboard. A house without any windowsor doors would be extremely secure--but who would want to live there?By the same token, the more secure your computer or network is, themore difficult it can be to use. Find the right balance betweensecurity and usability, and stick with it. Prepare for the future. A secure networkprovides businesses with benefits beyond protection from internetthreats. Inherently, a secure network is a robust network. And a robustnetwork is an excellent foundation that can support new technologies,such as VoIP, that can greatly increase productivity and reduceoperating costs. Ultimately, when your business is secure, it \'s stronger and more agile--and definitely more competitive. Peter Alexander is Entrepreneur.com \'s Tech Trends columnist and vice president of worldwide commercial marketing at Cisco Systems Inc. , the leading supplier of networking equipment and network management for the internet. Copyright © 2005 Entrepreneur.com, Inc. All rights reserved.",11);arrFiles[25]=new Array(43,"spyware/FTC Shuts Down BlogSpot Spyware Ring.htm","2005-11-16","FTC Shuts Down BlogSpot Spyware Ring","News","The consumer watchdog agency pulls the plug on a massive spyware operation that allegedly used Google s BlogSpot service to deliver pop-ups to trick users into installing a nasty form of spyware.","FTC Shuts Down BlogSpot Spyware Ring November 10, 2005	By Ryan Naraine TheFederal Trade Commission has pulled the plug on a massive spywareoperation that allegedly used Google Inc. \'s BlogSpot service to trickmillions of computer users into downloading spyware and adware programs. TheFTC on Thursday announced a court order to shut down threeCalifornia-based companies—Enternet Media Inc., Conspy & Co. Inc.and Networld One—that allegedly used free lyric files, browser upgradesand ring tones to push spyware programs on consumers \' computers. The charges stem from the discovery earlier this year that Google \'sBlogSpot service was being used to spread spyware and adware programssuch as Search Miracle, Miracle Search, EM Toolbar, EliteBar,and Elite Toolbar. According to the FTC complaint, the spyware ringused the iWebTunes Web site to promise free background music on theBlogSpot-hosted sites. The JavaScript code that was put in the BlogSpot templatesalso triggered pop-up advertising that flashed warnings to consumerswho visited the Weblog sites about the security of their computersystems. The pop-up warning promised browser upgrades andother PC maintenance software. Instead of getting security software,computer users who clicked on the pop-ups were tricked into downloadingspyware programs that only served more pop-up ads, the FTC complaintalleged. The federal agency said the court also froze the assets of the three outfits pending a further hearing. The FTC also plans to ask the court to bar the deceptive andunfair practices permanently and require the operators to give up theirgains. This is a big bust. Enternet media is the company behind one of themost destructive and abusive spyware programs, said Eric Howes, arenowned anti-spyware researcher who assisted the FTC with theinvestigations. These are guys behind SearchMiracle and EliteBar, two of thenastiest spyware programs. They were also using rootkit technology tohide files and defeat anti-spyware software. We \'re talking about one ofthe worst pieces of spyware around, Howes said in an interview. Read more here about the FTC \'s efforts to shut down an operation that secretly installed spyware and adware. Howes provided Ziff Davis Internet News withnumerous screenshots of SearchMiracle and EliteBar pop-up advertisingand installations, including logs from RootKitRevealer that show thecompany was hiding .dll files from the Windows API. Next Page: A significant decision.	Howes said the FTC decision to freeze the assets of thethree companies (and several individuals named in the suit) was alsosignificant. In other cases, FTC went before a judge and simply got acourt order. In this case, they really lowered the hammer. They [theFTC] raided the offices of these companies and shut down the wholeoperation. I think that sends a very, very strong message. Mona Spivack, a spokesperson for the Bureau of Consumer Protection,declined to comment on what assets were seized in the raid and whetherdoors have been locked at the business sites of companies named in theFTC complaint. She did say that the Bureau will be seeking to prohibit the partiesfrom continuing their practices in the future. Spivack also said theBureau would seek to have the named parties disgorge profits and toreimburse consumers where appropriate. For advice on how to secure your network and applications, as well as the latest security news, visit Ziff Davis Internet \'s Security IT Hub . The Bureau was tipped off about the alleged spyware ring by consumers, Spivack said. Consumers have complained that the software code was interfering with their ability to use their computers, she said. We \'ve alleged that the software code tracks theironline behavior so it interferes with their online privacy. It insertsadvertising tool bars and advertising sidebars onto their browserwindows. It hijacks their home pages, and it serves them voluminouspop-up advertisements. Richard Stiennon, vice president of threat research at Webroot, saidthe EliteBar spyware program, allegedly created and distributed byEnternet Media, is third on his company \'s list of top 10 spywarethreats. In an interview, Stiennon said EliteBar is a deceptive piece ofadware that generally propagates through innocent-looking dialog boxes,social engineering methods, or through a Java scripting error. Spyware researcher Ben Edelman, who first blew the whistle on the use of BlogSpot to spread the spyware programs, said the FTC \'s description of the allegations exactly match his own research findings. To read more about the threat of spyware, click here. Of course these blog-delivered ActiveXes are not all Enternet did. I \'vealso seen and shown EliteBar installed through security exploits, with no notice or consent. I posted one such video way back in November 2004, Edelman said. He described the FTC clampdown as an important development in thefight against spyware and other software trying to seize control ofusers \' computers. Enternet \'s unwanted software has been remarkablywidespread—installing through a variety of unsavory practices, fromsecurity exploits to the blog-delivered ActiveXes to numerous othermisleading tricks. And their software causes serious harm to users \'PCs—installing a variety of advertising software, adding rootkits withserious effects on system reliability, and of course tracking whereusers go and bombarding them with extra ads, Edelman said. He believes the FTC action will serve as a strong warning to othervendors that currently use, or might consider using, similar tactics. According to the complaint, the defendants \' software code alsotracks consumers \' Internet comings and goings; changes consumers \'preferred home page settings; inserts new tool bars onto consumers \'browsers; inserts a large side frame or window onto consumers \'browser windows that in turn displays ads. The spyware programs also display pop-up ads, even when consumers \' Internet browsers are not activated. In addition, the FTC alleges that once the spyware is loaded onconsumers \' computers, it interferes with the functioning of thecomputer and is difficult for consumers to uninstall or remove. In addition to the three companies, the FTC also named Lida Rohbani,also known as Linda Rohhani and Lida Hakimi; Nima Hakimi; Baback(Babak) Hakimi, also known as Bobby Rohbani and Bobby Hakimi; asdefendants. The agency \'s complaint also charges Nicholas C. Albert, doing business as iWebTunes and www.iwebtunes.com, based in Ohio. Lisa Vaas contributed to this report. Check out eWEEK.com \'s Security Center for the latest security news, reviews and analysis. And for insights onsecurity coverage around the Web, take a look at eWEEK.com SecurityCenter Editor Larry Seltzer \'s Weblog. Copyright (c) 2005 Ziff Davis Media Inc. All Rights Reserved.",9);arrFiles[26]=new Array(45,"spyware/Internet Security Alerts.htm","2005-11-04","Internet Security Alerts","internet security alerts,computer security alerts,symantec,antivirus software,firewall,spyware,computer virus alert,Norton anti-virus,worms,Fort Worth,Arlington,TX,DFW,Dallas,Tarrant County,Texas.","The latest computer virus and worm security alerts information with virus patches are provided in the table.","Safety Is Us Abra Safety Is Us Consultants Email: info@safetyis.us Dallas - Arlington - Fort Worth - Waco - Austin - Tyler - Abilene, Texas Phone: 817.292.3060 Internet Security ==================== Security Alert from the Federal Trade Commission Spyware Just when you thought you were Web savvy, one more privacy, security, and functionality issue crops up — spyware. Installed on your computer without your consent, spyware software monitors or controls your computer use. It may be used to send you pop-up ads, redirect your computer to websites, monitor your Internet surfing, or record your keystrokes, which, in turn, could lead to identity theft. Many experienced Web users have learned how to recognize spyware, avoid it, and delete it. According to officials at the Federal Trade Commission (FTC), the nation’s consumer protection agency, all computer users should get wise to the signs that spyware has been installed on their machines, and then take the appropriate steps to delete it. The clues that spyware is on a computer include: a barrage of pop-up ads a hijacked browser — that is, a browser that takes you to sites other than those you type into the address box a sudden or repeated change in your computer’s Internet home page new and unexpected toolbars new and unexpected icons on the system tray at the bottom of your computer screen keys that don’t work (for example, the “Tab” key that might not work when you try to move to the next field in a Web form) random error messages sluggish or downright slow performance when opening programs or saving files The good news is that consumers can prevent spyware installation. Indeed, experts at the FTC and across the technology industry suggest that you: Update your operating system and Web browser software. Your operating system (like Windows or Linux) may offer free software “patches” to close holes in the system that spyware could exploit. Download free software only from sites you know and trust. It can be appealing to download free software like games, peer-to-peer file-sharing programs, customized toolbars, or other programs that may change or customize the functioning of your computer. Be aware, however, that some of these free software applications bundle other software, including spyware. Don’t install any software without knowing exactly what it is. Take the time to read the end-user license agreement (EULA) before downloading any software. If the EULA is hard to find — or difficult to understand — think twice about installing the software. Minimize “drive-by” downloads. Make sure your browser security setting is high enough to detect unauthorized downloads, for example, at least the “Medium” setting for Internet Explorer. Keep your browser updated. Don’t click on any links within pop-up windows. If you do, you may install spyware on your computer. Instead, close pop-up windows by clicking on the “X” icon in the title bar. Don’t click on links in spam that claim to offer anti-spyware software. Some software offered in spam actually installs spyware. Install a personal firewall to stop uninvited users from accessing your computer. A firewall blocks unauthorized access to your computer and will alert you if spyware already on your computer is sending information out. If you think your computer might have spyware on it, experts advise that you take three steps: Get an anti-spyware program from a vendor you know and trust. Set it to scan on a regular basis — at least once a week — and every time you start your computer, if possible. And, delete any software programs the anti-spyware program detects that you don’t want on your computer. For more information about protecting your computer and your personal information online, visit http://www.ftc.gov/bcp/conline/edcams/infosecurity/index.htm . The FTC works for the consumer to prevent fraudulent, deceptive and unfair business practices in the marketplace and to provide information to help consumers spot, stop, and avoid them. To file a complaint or to get free information on consumer issues , visit http://www.ftc.gov/ or call toll-free, 1-877-FTC-HELP (1-877-382-4357); TTY: 1-866-653-4261. The FTC enters Internet, telemarketing, identity theft, and other fraud-related complaints into Consumer Sentinel , a secure, online database available to hundreds of civil and criminal law enforcement agencies in the U.S. and abroad. October 2004 Copyright © 2004 - 2005 Safety Is Us",12);arrFiles[27]=new Array(46,"spyware/Spyware shifts from marketing to robbery.html","2005-12-01","Spyware Shifts from Marketing to Robbery","","","Spyware shifts from marketing to robbery By Bill Brenner, News Writer	23 Aug 2005 | SearchSecurity.com Need examples of why spyware is so insidious? Headlines from the last few months are full of them, said Richard Stiennon, VP of threat research for Boulder, Colo.-based security firm Webroot. Spyware probably contributed to the data thievery companies like Lexis-Nexis, BJ \'s Wholesale Club and Bank of America suffered, he said. That \'s the big point of a new report Webroot has released on spyware activity for the second quarter of 2005: Spyware pushers are shifting their focus from pay-per-click advertising to identity theft. And they \'re quickly expanding their network of infected machines in the process. The big marketing opportunity for spyware writers is over, Stiennon said. Now they are competing with each other, going after bigger and better targets, using URL monitors, keystroke loggers and Trojan horses to steal your information. The report comes about a week before the Anti-Spyware Coalition is set to meet and discuss feedback it \'s received since releasing a rough draft of spyware definitions July 12. The coalition -- formed earlier this year when the nonprofit Center for Democracy and Technology teamed up with several tech firms and security organizations -- hopes to weave the feedback into a final document to be released this fall. Paul Kurtz, executive director of the Cyber Security Industry Alliance, said the Anti-Spyware Coalition \'s work is vitally important given the damage spyware can do. Spyware can be so broad, he said. We allow forms of it on our computers every day. That \'s the big issue we need to think about today. There must be common rules and procedures for defining and removing it. If we can establish a common template to determine what should be removed as spyware, we \'d at least be putting everyone on the same sheet. Despite awareness, infection rate stays high	Awareness is up. Antispyware legislation is pending at the federal level and in 19 states. And the security market is flush with new tools to scan and clean systems. Yet the spyware infection rate for enterprise desktops remains above 80%, the report said. To date, Webroot \'s Enterprise SpyAudit has scanned nearly 60,000 systems representing more than 20,000 companies; finding the number of spyware instances per infected machine up by 19% this year, the report said. The firm \'s research team also saw evidence that spyware pushers are aggressively growing their distribution channels. The report said the number of Web sites distributing spyware has quadrupled since the start of the year to 300,000 unique URLs. Meanwhile, the company has seen the number of spyware traces in its spyware definition database double in the same period to over 100,000. Stiennon said spyware pushers are also working hard to test their wares against a range of antispyware software and are successfully using rootkits to avoid detection. Spyware: Black & White Part 1: A wolf in sheep \'s clothing Part 2: Who best to define spyware? New names for new spyware	The report also offers a list of programs Webroot has fingered as spyware, including a new one called Look2Me. This spyware may monitor Web surfing activity and report back usage statistics to a centralized server, the report said. It may also display pop-up ads and install several other pieces of spyware. Once installed, Look2Me may update itself and install other applications, the report said. These applications are usually other pieces of spyware. Look2Me may download and execute third-party programs on your computer without your knowledge or consent. Look2Me is usually installed using ActiveX drive-by download sites or flaws in common Web applications, the report said, adding, Look2Me is very difficult to remove due to its injection into system-level processes. Look2Me may also install other pieces of spyware and adware, which decrease your computer \'s performance, and may display pop-up advertisements. When you look at where this is going, you think, \'when will this end? Stiennon said. Our feeling is that we haven \'t seen anything yet. Profit motive opens a whole new world. The next big story	While Stiennon doesn \'t see the spyware war ending anytime soon, he predicts executives will start being held more accountable when they fail to stop the malware from stealing data and damaging the company \'s reputation. The next big story in this saga will be when the big CEOs start getting fired over this year \'s breaches, he said. When you can \'t detect something like a keystroke logger, you \'ve got a problem. I \'ve been on road for eight weeks talking to clients, and more often I \'m hearing them say, \'we really want to stay off the front page of the Wall Street Journal. \' He believes the Anti-Spyware Coalition \'s work will help give companies a better idea of what to look for and how to respond when spyware infections are uncovered. But the overall impact may be limited. Activities of a coalition like this won \'t have a direct impact in turning the tide, he said. But it shows a maturing in the industry where the players are at least talking to each other. In the end, though, you can \'t issue a document that will improve security. It \'s all about personal behavior.",13);arrFiles[28]=new Array(47,"spyware/Spyware.htm","2005-12-07","FTC Consumer Alert - Spyware","Spyware, information security, drive-by, adware, pop-up ads, spam","Educates consumers about what spyware is, how to recognize it, how to avoid it, and what to do if you’ve been victimized.","-- -- FTC Consumer Alert	Spyware Just when you thought you were Web savvy, one more privacy, security, and functionality issue crops up - spyware. Installed on your computer without your consent, spyware software monitors or controls your computer use. It may be used to send you pop-up ads, redirect your computer to websites, monitor your Internet surfing, or record your keystrokes, which, in turn, could lead to identity theft. Many experienced Web users have learned how to recognize spyware, avoid it, and delete it. According to officials at the Federal Trade Commission (FTC), the nation \'s consumer protection agency, all computer users should get wise to the signs that spyware has been installed on their machines, and then take the appropriate steps to delete it. The clues that spyware is on a computer include: a barrage of pop-up ads a hijacked browser - that is, a browser that takes you to sites other than those you type into the address box a sudden or repeated change in your computer \'s Internet home page new and unexpected toolbars new and unexpected icons on the system tray at the bottom of your computer screen keys that don \'t work (for example, the Tab key that might not work when you try to move to the next field in a Web form) random error messages sluggish or downright slow performance when opening programs or saving files The good news is that consumers can take steps to lower their risk of spyware infections. Indeed, experts at the FTC and across the technology industry suggest that you: Update your operating system and Web browser software. Your operating system (like Windows or Linux) may offer free software patches to close holes in the system that spyware could exploit. Download free software only from sites you know and trust. It can be appealing to download free software like games, peer-to-peer file-sharing programs, customized toolbars, or other programs that may change or customize the functioning of your computer. Be aware, however, that some of these free software applications bundle other software, including spyware. Don \'t install any software without knowing exactly what it is. Take the time to read the end-user license agreement (EULA) before downloading any software. If the EULA is hard to find - or difficult to understand - think twice about installing the software. Minimize drive-by downloads. Make sure your browser security setting is high enough to detect unauthorized downloads, for example, at least the Medium setting for Internet Explorer. Keep your browser updated. Don \'t click on any links within pop-up windows. If you do, you may install spyware on your computer. Instead, close pop-up windows by clicking on the X icon in the title bar. Don \'t click on links in spam that claim to offer anti-spyware software. Some software offered in spam actually installs spyware. Install a personal firewall to stop uninvited users from accessing your computer. A firewall blocks unauthorized access to your computer and will alert you if spyware already on your computer is sending information out. If you think your computer might have spyware on it, experts advise that you take three steps: Get an anti-spyware program from a vendor you know and trust. Set it to scan on a regular basis - at least once a week - and every time you start your computer, if possible. And, delete any software programs the anti-spyware program detects that you don’t want on your computer. For more information about protecting your computer and your personal information online, visit ftc.gov/infosecurity . The FTC works for the consumer to prevent fraudulent, deceptive and unfair business practices in the marketplace and to provide information to help consumers spot, stop, and avoid them. To file a complaint or to get free information on consumer issues , visit http://www.ftc.gov/ or call toll-free, 1-877-FTC-HELP (1-877-382-4357); TTY: 1-866-653-4261. The FTC enters Internet, telemarketing, identity theft, and other fraud-related complaints into Consumer Sentinel , a secure, online database available to hundreds of civil and criminal law enforcement agencies in the U.S. and abroad. July 2005",11);arrFiles[29]=new Array(51,"viruses/Why does PC support stink Ask Symantec.htm","2005-12-07","Why does PC support stink? Ask Symantec - CNET News.com","Customer support,Security","Why does PC support stink? Ask Symantec | CNET News.com s Charles Cooper recounts how Symantec put in an Oscar-losing performance when his hard drive came under attack. | March 1, 2005, 4:00 AM PT | Charles Cooper","Front Door Business Tech Cutting Edge Access Threats Media 2.0 Markets Digital Life Perspective: Whydoes PC support stink? Ask Symantec By CharlesCooper -- Published: March 1, 2005, 4:00 AM PST Let me share one of my profession \'s dirty little secrets. The folks in the computer press can always zip to the front of the queue whentheir PCs go haywire. All they need do is place a call to an industry contact,and a savvy technician will miraculously emerge to save the day. It \'s an easy out--not to mention plainlyunfair--but don \'t you wish you were so privileged? Because the reality is thatservice still stinks. Nearly three decades into the PC revolution, the computerindustry \'s post-sale support remains more honored in the breach than in theobservance. All this is by way of introduction to my go-around with Symantec duringSunday night \'s Academy Awards ceremony. After rebuilding	Youmight assume a company that makes antivirus software would not gouge payingcustomers.	my wife \'s hard drive, yourstruly attempted to load Norton Antivirus 2005. But the install sequence failed,because--according to the results of a Symantec diagnostic test lasting hours--aTrojan horse program called Adware.minibug had infected the drive. After placing a call to Symantec, I waited some minutes before putting on agoofy headset my wife insisted I wear. I may have looked like Lily Tomlin, butthe headset enabled me to step away from the computer. After some time, I beganjotting down notes. So began the evening \'s entertainment: 4:02 Put the chicken into the oven. Used the last of the aluminumfoil. (Note to self: Buy more aluminum foil before wife finds out.) 4:05 Weirder-than-normal Muzak on the line. I wonder who chooses thisstuff and whether they wear Dockers. 5:00 Still no sign of human life on the line, but the pre-Oscar paradeis starting. The Muzak \'s getting worse. (Is that possible?) 5:05 Tested the chicken. Outdid myself this time, but not enoughbutter on hand to make the risotto. Wife won \'t be happy. Still no Symantec. 5:08 How long does it take to answer a telephone? If Clint wins bestdirector, that would make my day. 5:12 Bored beyond belief. Starting to impersonate the Numa Numa guy. My two cats keep their distance. 5:15 How many miles does a phone connection span from San Francisco toIndia? Mind wandering. I \'m picking Hilary Swank for best actress, but AnnetteBening was pretty damn great in Being Julia. 5:20 This is the longest I \'ve ever waited on a support call. 5:30 Oscars start. Yes! 5:39 Chris Rock \'s so tame, he \'s lame. He \'s so careful not to offend.He should hang on a tech support line for a while to retrieve his edge. 5:42 Halle Berry \'s on stage. Oh my. 5:49 Was that Abba I just heard? Time to feed the cats. 5:52 Starting to fantasize about what I would say to Symantec \'s CEO ifhe were to pick up the phone. 5:55 Robin Williams goes into his shtick. Max, my Russian Blue,approaches the sofa, looks up for approval, then barfs on the rug. 6:00 More than an hour of wearing this silly headset. Still no sign oflife at Symantec. My ear \'s assumed the consistency of cauliflower. 6:05 Beyonce is wearing green eye shadow. Then again, I supposefew people are looking at her eye shadow. 6:09 I \'m actually starting to hum along with the Muzak. Danger, WillRobinson, danger! 6:10 Finally, a response: Muta, from Symantec \'s tech support,answers the phone. Let us pick up on the narrative: Muta began to recite the checklist of troubleshooting items, when Iinterrupted. You don \'t need to go on, I told him. There \'s a Trojan horse calledAdware.minibug that the diagnostic utility on the Symantec page says is theproblem. Well, then we can go ahead and resolve the problem, Muta said. Wonderful, I thought. The end is near. How would you like to pay? Come again? I heard correctly. Two hours-plus hanging in phone purgatory was not enough.Symantec was giving me two choices: I could receive tech assistance by e-mail;in that case, I would pay 39.95. Or I could resolve the issue with a liveexpert like Muta for 69.95. But I spent 69 bucks buying the damned thing at retail! I yelled. Muta realized he had a psycho-in-the-making on the line and did his best todefuse a potential crisis. I \'m sorry, sir, but I don \'t make the rules. Would you like to proceed? Um, I don \'t think so, I said. Why should I spend more money to get rid of aninfected file that Norton Antivirus was supposed to take care of in the firstplace? Click. You might assume a company that makes antivirus software wouldn \'t gougepaying customers who can \'t install its product because a minor Trojan horse hasinfected the computer \'s drive. Isn \'t that what this stuff is supposed to fix inthe first place? One day, I hope to put that question directly to Symantec \'schief executive, John Thompson. ...[edit]. Biography Charles Cooper isthe executive editor of commentary at CNET News.com.",9);arrFiles[30]=new Array(52,"viruses/Your computer could be a spam zombie.htm","2005-12-07","Your computer could be a   \\'spam zombie  \\' 04","","Next time you re looking for a culprit for all that junk mail flooding your inbox, have a glance in the mirror.","MEMBER SERVICES Your computer could be a \'spam zombie \' New loophole: poorly guarded home computers NEW YORK (AP) -- Next time you \'re looking for a culprit for all that junk mail flooding your inbox, have a glance in the mirror. Spammers are increasingly exploiting home computers with high-speed Internet connections into which they \'ve cleverly burrowed. E-mail security companies estimate that between one-third and two-thirds of unwanted messages are relayed unwittingly by PC owners who set up software incorrectly or fail to secure their machines. David Lawrence, 43, owns a computer which turned into a spam zombie. David Lawrence, 43, owns such a computer, which turned into a spam zombie when a virus infected it in October. Five or six spammers were using his cable modem to remotely send pitches for products like Viagra and boosters for cell phone signals.	Spammers and the people who write these viruses ... is their life so void that they feel they have to mess up other people? said Lawrence. To me, it \'s criminal. The self-employed businessman from Tifton, Georgia, said he learned of his computer \'s culpability when his Internet service got suspended. I called to find out what was going on because I knew I had the bill paid, he said. Lawrence is by no means alone. Hundreds of thousands of computers worldwide have been infected by SoBig and other viruses that are programmed to spawn gateways, known technically as proxies, to relay spam. Though Lawrence had antivirus software, he hadn \'t kept it updated. It \'s ironic to the president of the security Web site myNetWatchman.com, Lawrence Baldwin, that those afflicted by spam are also often its couriers. That \'s further encouragement, justification for taking responsibility for your own system, said Baldwin. If you don \'t, you can be part of the very problem you \'re complaining about. Any Internet-connected computer could be running a proxy spam relay, but most of the malicious programs are written specifically for PCs that run Windows. In the past, some spammers had sought out and exploited Internet-connected computers with misconfigured networking software. The latest and growing threat is code purposely written to create spam relay proxies as it is spread by malicious viruses. It \'s just going to get worse, said Ken Schneider, chief technology officer at spam-filtering company Brightmail Inc. Traditionally, virus writers were driven more by reputation and trying to impress each other. Now there \'s an economic motive. Just last week, a proxy program called Mitglieder began installing itself on computers infected by last month \'s MyDoom outbreak, said Mikko Hypponen, manager of antivirus research at F-Secure Corp. in Finland. He said such programs can also sneak in if computer owners fail to install patches to fix known Windows flaws. The shift in spamming methods even prompted the Federal Trade Commission to issue a consumer alert last month. The advisory encouraged consumers to use antivirus and firewall programs and to check sent mail folders for suspicious messages. Others say home users should also keep their Windows operating systems up to date by visiting windowsupdate.microsoft.com. If your computer has been taken over by a spammer, you could face serious problems, the FTC advisory wrote. Your Internet Service Provider (ISP) may prevent you from sending any e-mail at all until the virus is treated, and treatment could be a complicated, time-consuming process. In the early days, spammers sent out junk messages directly from their machines. ISPs easily found them and closed their accounts. Spammers then looked for so-called open relays. These are typically mail servers at ISPs, often in Asia or South America, carelessly configured so that anyone on the Internet can send mail through them without needing a password. The relays make messages appear to have come from an ISP, not the spammer. But ISPs and anti-spam activists soon identified many of the open-relay machines and either pressured their owners to stop or blocked messages from them. Stymied by a more concerted effort by ISPs to lock down their Internet mail servers, the spammers turned to the less vigorously protected home machines. They are abundant and simple to find. Spammers can cover their tracks and become virtually untraceable. It pains me to say it, but it \'s very clever of the spammer to have thought of this, getting legitimate PCs to send spam on their behalf, said Andrew Lochart, director of product marketing at e-mail security company Postini Inc. Steve Atkins, chief technology officer at the anti-spam consultancy Word to the Wise LLC, said some ISPs continue to be plagued by open-relay techniques, but spammers generally don \'t bother with them anymore because it \'s so much easier to have success with home machines. Where much of the spam previously flowed through China, South Korea, Brazil and other countries whose ISPs left many relays open, it \'s now being hastened by a North American trend: more high-speed cable and DSL connections at home. Such proxies are especially frustrating for ISPs to identify and block, said Mary Youngblood, abuse team manager at EarthLink Inc. She said some stay open only for a few hours and disappear by the time ISPs catch on, while newer ones reconfigure themselves constantly like chameleons on a single machine. The more versatile the open proxy, the longer it takes to isolate. John Levine, co-author of Fighting Spam for Dummies, said the proliferation of proxies could force ISPs to take such measures as limiting how many messages a customer can send in a given time period. In the meantime, ISPs are often being forced to cut off their own customers. As a customer, to have someone just arbitrarily shut me off, that would more than mildly displease me, said Walt Wyndroski, network operations manager for CityNet, which had shut down Lawrence. We try to think from the customer \'s standpoint, but we also have to look at the larger view of the health of the network itself. Copyright 2004 The Associated Press . All rights reserved.",15);arrFiles[31]=new Array(56,"biz_sec/CRN  Business Case Big Opportunity In Security As A Managed Service.htm","2005-11-28","Big Opportunity In Security As A Managed Service","","","BUSINESS CASE Big Opportunity In Security As A Managed Service VARs that can successfully navigate the security market can create an ongoing revenue stream by selling security as a managed service (http://www.crn.com/sections/infrastructure/infrastructure.jhtml?articleId=171100040) By John Roberts and Frank J. Ohlhorst,	3:00 PM EDT Fri. Sep. 23, 2005	The latest CRN survey shows that only 8 percent of polled VARs are offering managed service-based security solutions, leaving what could be a huge opportunity on the table for others to pursue. What’s more, that number is unlikely to increase as only 10 percent of those polled said they prefer to sell security as a managed service. Resellers could be missing out on a big profit opportunity in security software solutions. If one were to put a price on the value of compromised corporate data, the argument for implementing advanced data protection technologies and services becomes an easy one, and ROI can be highlighted as a measurable element. Surprisingly, however, concerns about identity theft have not reached the same level as concerns over general data protection. Of those VARs polled, 69 percent said they do not sell identity theft prevention solutions, which leaves businesses to fend for themselves when it comes to protecting critical identity-related information.	That situation becomes more menacing when you consider the financial burden of fines from failing to meet requirements put forth by legislation such as HIPAA and Sarbanes-Oxley. That concern helps to put a price on non-compliance and can be used as fodder to evangelize identity management solutions.	Protecting networks from malware is becoming second nature for many solution providers, but significant time is still spent cleaning up the mess created by spyware and spam, with solution providers surveyed spending the brunt of their remediation time on spyware and spam. Interestingly, managed services may offer the best way to deal with those two significant problems, by controlling content before it can even enter a customer’s network. As more solution providers move over to a managed service-based security offering, antispyware and antispam support costs should drop. Fifty-six percent of survey respondents still adhere to the classic method of combining hardware and software to protect IT assets. Only 13 percent have gone the security appliance route, which usually meets the needs of smaller business networks. Software-based security products are still popular with some, with 20 percent of those polled preferring that method to protect customers’ assets. All things considered, the survey data indicates that there is a murkiness around understanding the security market, and that breeds confusion and contributes to failed solutions. VARs that can deftly navigate the security market can realize significant profits by offering remediation services and general security services. Moreover, they can create ongoing revenue by pushing security as a managed service. Copyright 2004 CMP Media LLC.",7);arrFiles[32]=new Array(57,"biz_sec/Security Threat Looms as Wireless Blooms.htm","2005-11-28","Security Threat Looms as Wireless Blooms","News Nokia Microsoft Corporation","<B>News Analysis:</B> As consumers and businesses adopt increasing numbers of wireless devices and begin accessing more powerful applications available from mobile operators, experts contend that security issues related to the technologies wi","Security Threat Looms as Wireless Blooms November 16, 2005	By Matt Hines As the desktop once said to the cell phone, Don \'t do anything that I wouldn \'t do.According to a group of panelists gathered Wednesday for the Ziff DavisWireless Solutions Virtual Tradeshow 2005, as mobile devices becomemore widely used and take on increasingly sophisticated applications,they will likely be faced with the same raft of security threats thathave plagued their PC brethren. From corporate workers who unknowingly expose their companies toattacks by accessing unprotected wireless networks, to consumers thatbroadcast their location and device information via Bluetooth-capablephones, the industry experts agreed that the battle against mobilethreats is only beginning. Todd Thiemann, director of device security marketing for software makerTrend Micro Inc., said that the growing list of content services andbusiness applications moving onto mobile devices will encourage hackerscurrently writing malicious code for PCs to cook up wireless attacks. To date, when you go out with a mobile device over a mobile operatornetwork, you \'re generally using slow data speeds and consequently youdon \'t see a lot of file downloads, Thiemann said. But things aregoing to take off and get into higher data speeds, and there will be alot more people downloading. What that means is that it will be a loteasier for people to install malware, viruses and trojans in the sameways that we \'ve seen on a PC, and it will happen a lot morefrequently. Thiemann said that the increase in developers creating programs forwireless handhelds will also trigger a jump in the volume andcomplexity of potential threats. For instance, Microsoft Corp. claimsthat over 640,000 software coders are working on applications for thecompany \'s Windows Mobile operating system, while an estimated 417,000people are developing tools for Palm Inc. \'s mobile OS. Another 2million are estimated to be building software for devices running theSymbian OS. As each of those platforms grows in size and sophistication, saidThiemann, so will the attacks crafted to target them individually. Inaddition, as with Microsoft \'s Windows OS for the desktop computer,whichever software system wins the biggest share of the market willdraw the most attention from hackers. Today, it \'s more probable that attacks will come on (Symbian) orWindows Mobile platforms than a Palm OS platform, said Thiemann. Palmalso announced that its next generation Treo (handheld) will useWindows Mobile, so you see (threats) coalescing around those operatingsystems. Click here to read about Nokia \'s plan to buy Intellisync, which markets enterprise-scale wireless e-mail and mobile messaging services. In the world of business, experts said, the mobile threat is rapidlybecoming a serious headache for IT administrators. Unlike the lessonspeople have learned about using their company-owned computers morecarefully, many business workers continue to take significant riskswith their mobiles. Brian Babineau, analyst with Enterprise Strategy Group, said thatcompanies must begin treating mobile devices just as they treat otherforms of computers, enforcing stricter wireless access guidelines andeducating employees on the inherent risks of using handheld businessapplications. We don \'t just have laptops anymore, we have PDAs and iPods, and all ofthese devices, including cell phones, have memory or will soon, saidBabineau. The unfortunate news is that we \'re starting to see that asemployees and their devices move further away from centralized ITresources, it gets a lot harder to protect them. Some of the pain points that may allow for mobile attacks are the sametechnologies that other experts have labeled as the leading catalystsfor growth of the industry, including Bluetooth communications systemsand even the many variations of the 802.11 wireless technologystandard. Bluetooth, which is already widely available in a number of cellphones, PDAs and laptops, is gaining a reputation as a weak point insome of the devices. Based on the location-oriented aspects of thetechnology, Bluetooth-capable machines not only carry the ability todownload different types of applications but also transmit uniqueidentification information. That data could conceivably be used toattack individual devices. With 802.11, or Wi-Fi technologies, users can be threatened by publiclyavailable hot spots such as the ones offered at Starbucks coffee shops.The panelists said that wireless access points that fail to useencryption, or lack authentication controls at the management level oftheir software, could make it easy for hackers to spoof devices \'Internet Protocol addresses. Previously Bluetooth was overlooked because any attacker would need tobe close to their target to carry something out, but its been shownthat Bluetooth attacks can now be carried out over a mile away from atarget with use of a highly directional antenna, said Andrew Lockhart,security analyst with Network Chemistry. With 802.11, customers willoften connect to whatever (network) they see with the highest signalstrengths when preferred networks aren \'t available. That \'s a bigmistake. Another threat worth noting is the possibility of having a wirelessdevice physically stolen, along with all the personal data, passwordsand network access information that users have stored on theirmachines, observed the analyst. Despite the potential landslide of security implications, the expertsagreed that many of the loopholes they cited can be largely avoided bymaintaining vigilant device usage practices. A California city gives Google a lease for a Wi-Fi network. Click here to read more. For Bluetooth, the security specialists recommend disabling thecapability entirely when it is not in use, turning off deviceidentification functions, and creating longer pin codes for network andapplications passwords. People who don \'t plan to use Bluetooth at allmay want to avoid devices that carry the function, the panelrecommended. With Wi-Fi, the experts said that users should only connect to trustednetworks, use a virtual private network when available, and use theonboard security tools built into more sophisticated devices such aslaptop computers or smart phones. Business users and IT departments managing wireless devices shouldenforce the same rules they have in place for other computing systems,such as prioritizing data backup, establishing standards for recoverytimes, and choosing products and services that don \'t hold the potentialto create unecessary problems. There are also a slew of new technologies aimed at helping companiesremain more vigilant, including software that continuously backs updevice data to central IT systems, and applications that automaticallysynchronize data from PDAs and smart phones onto laptop or desktopcomputers. There \'s not really a whole lot to protecting against attacks on mobiledevices, it just requires a bit of common sense, Lockhart said. Treatdevices that use (wireless technologies) like you would any otherdevice that connects to the Internet. Check out eWEEK.com \'s Mobile & Wireless Center for the latest news, reviews and analysis on mobile and wireless computing. Copyright (c) 2005 Ziff Davis Media Inc. All Rights Reserved.",9);arrFiles[33]=new Array(58,"biz_sec/Senate Panel Approves Data-Breach Bill.htm","2005-11-28","Senate Panel Approves Data-Breach Bill","News","Legislation dealing with spyware and disclosure of data breaches is making its way through the Senate.","Senate Panel Approves Data-Breach Bill November 21, 2005	By Caron Carlson Before leaving for the Thanksgiving holiday, Senate panels approved bills on two data privacy issues that were debated all year—data breach notification and anti-spyware regulation—teeing them up for action next year. Data breaches have been foremost on the mind of this Congress following the high-profile disclosures earlier this year from ChoicePoint Inc. and LexisNexis, a branch of Reed Elsevier Inc. The passage of breach notification laws in two dozen states spurred industry to press hard for a federal law pre-empting the states. Just before the Thanksgiving recess, the Senate Judiciary Committee approved in a bipartisan vote the Personal Data Privacy and Security Act, authored by Sens. Arlen Specter, R-Pa., and Patrick Leahy, D-Vt. The bill requires companies holding personal data on more than 10,000 Americans to implement privacy and security programs. Data brokers would have to let people know what information is held on them and provide an opportunity for people to correct false data. When there is significant risk of harm to an individual whose data is compromised, the data holder must notify the individual, law enforcement and credit reporting agencies. Click here to read why experts fear a weak national data theft law. In this information-saturated age, the use of personal data has significant consequences for every American, Leahy said upon committee approval of the bill. People have lost jobs, mortgages and control over their credit and identities because personal information has been mishandled or listed incorrectly. Privacy advocates widely support the Specter-Leahy initiative, although many would like to see provisions added for better social security number protection and to give consumers the ability to freeze their credit reports. Next year, Senators will negotiate to reconcile the Specter-Leahy bill with those in other committees. Over the summer, the Senate Commerce Committee passed its own data breach notification bill, the Identity Theft Protection Act, and the Senate Banking Committee is expected to take up a bill of its own as well. Read more here about attempts by Congress to address the problem of data breaches. In the House, the breach notification debate faced a tougher course this year, running into partisan divisions and turf battles among several committees. More than a dozen bills were introduced, but there remains considerable disagreement over the trigger for breach notification and the degree to which state laws should be pre-empted. Republicans on the House Subcommittee on Commerce, Trade and Consumer Protection approved the Data Accountability and Trust Act in mid-November, but Democrats voted against it, arguing for a stronger measure. As for spyware, the SPY BLOCK Act won the approval of the Senate Commerce Committee the week before Thanksgiving over the objection of Senators pushing for a more market-driven approach that is backed by industry. SPY BLOCK requires disclosure to users when certain programs pose a threat to privacy, and it ensures that users have an easy way to uninstall spyware software. Spyware is one of those situations where we hear about it every time we go home, said Sen. Conrad Burns, who authored the bill. Legislation will only be a small part of the solution, I \'ll guarantee you that. Some privacy advocates and some in industry are urging Congress to enact a broader privacy law rather than addressing the matter on a technology-specific basis. Where does it stop, if you keep doing this sectorally? said Ari Schwartz, associate director at the Center for Democracy and Technology in Washington. You basically say to the consumer, get a lawyer if you want to protect your privacy, if we keep going down this path. Check out eWEEK.com \'s Government Center for the latest news, views and analysis of technology \'s impact on government and politics. Copyright (c) 2005 Ziff Davis Media Inc. All Rights Reserved.",5);arrFiles[34]=new Array(65,"cybercrime/Foreign powers are main cyberthreat, U_K_ says.htm","2005-12-07","Foreign powers are main cyberthreat, U.K. says","","","To print : Click here or Select File and then Print from your browser \'s menu -------------------------------------------------------------- This story was printed from ZDNet News , located at http://2001-1_22-0/ -------------------------------------------------------------- By Tom Espiner URL: http://news.zdnet.com/2100-1009_22-5967532.html Foreign governments are the primary threat to the U.K. \'s critical national infrastructure because of their hunger for information, a British government agency said. The National Infrastructure Security Co-ordination Centre said on Tuesday that the most significant electronic threats are content-based, targeted, Trojan horse e-mail attacks from the Far East . Foreign states are probing the CNI for information, said Roger Cummings, the director of NISCC, speaking at SANS Institute \'s launch of its Top 20 Critical Internet Vulnerability Listing in London. The agency is in charge of defending the U.K. \'s critical national infrastructure, which is made up of financial institutions; key transport, telecom and energy networks; and government organizations. NISCC is working with its equivalents in the countries concerned to try to shut the attacks down , Cummings said. The agency cannot name the countries concerned as this may ruin diplomatic efforts to halt the attacks, he added. The attackers appear to be aiming to gather commercially or economically valuable information, according to NISCC research. We call it the \'malicious marketplace, \' Cummings said. Exploit writers can make money by selling exploits. Who are the most capable organizations to make use of exploits? Foreign states are the most capable actors. They are currently sitting up at the top of the marketplace. Cummings said the most significant element in the malicious marketplace is foreign states, whose target is information. Next are criminals who are trying to compromise the CNI in order to sell information . Hackers motivated by kudos or money have a variable capability when it comes to attacks, Cummings said. However, these pose a more serious threat than terrorists, who currently have a low capability, he said. However, there is a chance that these groups will increasingly work together, Cummings noted. The risk from criminals increases when they get into bed with hackers. The capability of terrorists will increase if they employ hackers, he said. We are concerned that the malicious marketplace will make available exploits that can do us damage. Although foreign states are currently the most capable of launching attacks, NISCC expected criminal capability to expand and start to bump against foreign states, Cummings said. Cyberterrorism is a controversial subject within the security industry. Some experts, such as Bruce Schneier, have claimed the threat doesn \'t exist . Speaking in April, Schneier, the chief technology officer at Counterpane Internet Security, said that some organizations have been abusing the term in an attempt to fuel their budgets. Cummings said people needed to be aware of the threat from terrorism, but stressed that he didn \'t want to hype the threat or alarm people. We are constantly aware that terrorists can attack us in a whole host of ways. There is concern that terrorists can acquire exploits through the malicious marketplace. We would say there is hype around cyberterrorism, but we need to remain eternally vigilant, Cummings said. Tom Espiner of ZDNet UK reported from London.",7);arrFiles[35]=new Array(66,"cybercrime/keystroke spying on the rise.htm","2005-11-28","Study: Keystroke spying on the rise","","","http://www.news.com/2001-1_3-0.html?tag=prntfr Study: Keystroke spying on the rise By Alorie Gilbert http://news.com.com/Study+Keystroke+spying+on+the+rise/2100-7349_3-5954242.html Story last modified Tue Nov 15 16:06:00 PST 2005 Keylogger programs that record passwords and other typed-in textare increasing, according to data from iDefense. The programs are an increasinglypopular tool among identity thieves, the security company said Tuesday.Reports to iDefense, and its own research, indicate that the number of keyloggervariants unleashed this year is set to rise 65 percent over last year, reachingnearly 6,200 in total, the company said in a statement on Tuesday. Each variant could lead to anything from a few to several thousandinfections, Ken Dunham, senior engineer at iDefense, said. Keylogger softwaretypically tracks keystrokes on infected computers and is used to try to stealsensitive information such as user names and credit card data. The biggest problem with keyloggers, which silently relay data to attackers,is that they often go undetected, easily slipping past firewalls and antivirussoftware, iDefense, a division of VeriSign, said. There are so many victims because so few know the risk or the early warningsigns, Joe Payne, vice president of VeriSign iDefense Security IntelligenceServices, said in a statement. You simply can \'t stop what you can \'t see. Early warning signs can include slow performance of a PC, a spike in pop-upmessages and other problems. Computers can become infected with keyloggers in a variety of ways, such asthrough downloading spyware or e-mail attachments, or through a visit to a chatroom or simply to the wrong Web site. The programs typically exploit flaws inWeb browser software, including Microsoft \'s Internet Explorer. iDefense said keyloggers are typically spread by organized cybercrime rings,which have used them in the past to conduct large-scale money transfers to fundcriminal activities. The programs have grown exponentially since 2001, when thefirm detected just 275 of them. Copyright ©1995-2005 CNET Networks, Inc. All rights reserved.",4);arrFiles[36]=new Array(67,"hacking/Analysts Warn that Hackers Are Turning to Client Apps.htm","2005-11-28","Analysts Warn that Hackers Are Turning to Client Apps","News Sony Corporation","The recent Sony drama highlights a looming rootkit security threat.","Analysts Warn that Hackers Are Turning to Client Apps November 20, 2005	ByPaul F. Roberts IT administrators who are inclined to dismiss the dust storm that has blown up over Sony BMG Music Entertainment \'s digital rights management rootkit might want to reconsider. Vulnerabilities in Web and client/server applications are becoming the new battleground in the war against malicious hackers, as holes in network perimeters and Web servers become harder to find and exploit. That \'s the good news, but shoring up applications against security vulnerabilities will be harder than plugging holes in Web servers or network firewalls, security experts agree. Vulnerability research by Qualys Inc., of Redwood Shores, Calif., shows a significant shift from server to client vulnerabilities in the last year, said Chief Technology Officer Gerhard Eschelbeck, who has been using data from Qualys \' automated scans to study patterns in vulnerability disclosure and response for more than two years. In the early years, we saw vulnerabilities in Web and mail servers or operating systems. This year, there \'s been a strong shift to client-side vulnerabilities affecting browsers, media players, anti-virus and backup products, Eschelbeck said. At The SANS Institute \'s Internet Storm Center, experts who monitor the Internet for attacks have also noticed an increase in those vulnerabilities, said Johannes Ullrich, CTO of ISC, in Bethesda, Md. In general, the shift to applications is good news. Attacks on applications are harder to automate than those on Internet-facing servers. They often require user interaction to work, too, Eschelbeck said. However, that is not always true. Alex Wheeler, an independent security researcher in Chicago, has been researching holes in anti-virus programs and says that he found a large number of unknown and unpatched holes in anti-virus software by Symantec Corp., McAfee Inc. and others, including memory corruption and buffer overflow vulnerabilities. If exploited, the holes could allow a remote attacker to take control of affected systems without any user interaction. Wheeler blames lax coding practices for many of the holes. Anti-virus companies don \'t spend enough money on code review, he said. The growth of Web services and the inexorable march of client/server applications to the Web are partially to blame for the increase. E-commerce companies are particularly vulnerable to the application holes because Web-based shopping carts have to talk to back-end customer databases, inventory and tracking systems, Ullrich said. Application security experts at Cenzic Inc. said they frequently find sloppy coding in their audits of Web-based applications. Buffer overflow, cross-site scripting and SQL injection vulnerabilities are disturbingly common and throw open the doors to remote attackers or insiders, said officials at the Santa Clara, Calif., company. At SPI Dynamics Inc., another application security vendor, based in Atlanta, auditors have turned up an epidemic of so-called blind SQL injection vulnerabilities. The flaws are created by Web administrators who block application error messages. Application holes on clients and servers are definitely garnering more attention from the U.S. military. However, current layered security measures, such as desktop and server anti-virus, firewall and anti-spyware, are considered adequate to handle the problem, said Arthur Merar, a database administrator for the U.S. Navy who is also based in Chicago and manages about 70 Oracle databases. Pains in the app Some of the latest application holes to raise the hackles of enterprise IT staff: * Sony BMG \'s XCP copy protection Used ham-fisted rootkit code to hide every file name that began with the characters sys; virus writers soon released worms and Trojan horse programs to leverage the XCP cloaking features * Symantec/Veritas NetBackup A buffer overflow vulnerability in a file used by NetBackup clients and servers * Macromedia Inc. \'s Flash Player A buffer overflow in some versions of the Macromedia Flash Player * Skype Technologies S.A. \'s Skype A critical buffer overflow vulnerability in versions of the free Internet phone app Check out eWEEK.com \'s	Security Center for the latest security news, reviews and analysis. And for insights on security coverage around the Web, take a look at eWEEK.com Security Center Editor Larry Seltzer \'s Weblog. Copyright (c) 2005 Ziff Davis Media Inc. All Rights Reserved.",6);arrFiles[37]=new Array(68,"hacking/Brazil is world 'hacking capital'.htm","2005-12-07","Brazil is world   \\'hacking capital  \\'","BBC, News, BBC News, news online, world, uk, international, foreign, british, online, service","","Brazil is world \'hacking capital \' By Tom Gibb BBC, Sao Paulo Brazil has become the global capital for computer hacking andinternet fraud, according to experts meeting in the country \'s capital, Brasilia. Some 500 experts from around the world are attending the first internationalconference to combat electronic crime. Brazil is home to eight out of 10 of the world \'s hackers, according tofederal police at the conference. Within Brazil, the amount of money lost in internet financial fraud outstripsthat lost through bank robberies. Roughly two-thirds of the internet \'s child pornography pages are also said tooriginate in the country. These statistics are supported by security experts from other countries whosay some 96,000 hacking attacks were launched from Brazil last year - six timesmore than any other country. Intellectual challenge Many of the hackers work in groups with names like Breaking Your Security orVirtual Hell. The explosion in hacking is blamed, in part, on weak legislation. Hacking itself is not a crime in Brazil so police have to prove fraud hastaken place in order to prosecute. Brazilian hackers often do not consider themselves criminals, saying theybreak into sites for the intellectual challenge rather than to steal. Last year, websites in the US were the target of the huge majority of hackingattacks. Story from BBCNEWS: http://news.bbc.co.uk/go/pr/fr/-/2/hi/americas/3657170.stm Published:2004/09/14 19:15:41 GMT © BBC MMV",2);arrFiles[38]=new Array(69,"hacking/SANS Warns of Attack Shift to Apps, Network Devices.htm","2005-11-28","SANS Warns of Attack Shift to Apps, Network Devices","News","Critical holes in computer backup and antivirus applications, as well as switch and router platforms, are enabling a new wave of attacks that is shifting attention away from operating systems.","SANS Warns of Attack Shift to Apps, Network Devices November 22, 2005	ByPaul F. Roberts An increase in the number of holes in software applications and network devices like routers and switches is allowing malicious hackers to gain access to sensitive systems, including government and military systems, according to the SANS Institute. SANS warned of the switch to attacks on applications and network devices in its annual publication of the Top 20 vulnerabilities on Tuesday. Critical holes in computer backup and antivirus applications, as well as switch and router platforms, are enabling a new wave of attacks that is shifting attention from holes in operating systems like Microsoft Corp. \'s Windows, Web and e-mail servers, SANS said. Software vulnerability scanning and better patching are the best way to address the holes, SANS said. The annual SANS Top 20 highlights holes in software programs that are considered the most serious for security professionals. As in past years, the SANS Top 20 contains warnings about security holes in Windows and popular Internet applications like the Internet Explorer Web browser and Outlook Express e-mail program. However, Microsoft shares the spotlight this year with Symantec Corp., Cisco Systems Inc., Oracle Corp. and others, after a year in which warnings about vulnerabilities in antivirus and computer backup software and the surprise publication of information on a hole in Cisco Systems \' IOS (Internetwork Operating System) made headlines. Enterprises have been preoccupied with operating system and Internet threats and have ignored the threat posed by holes in software applications by major vendors, according to Alan Paller, director of research at SANS. For example, computer backup systems are rich targets for attack because they collect sensitive information from other systems and also must be accessible to enterprise systems that they manage, said Paller. The SANS Institute \'s Internet Storm Center recorded a sharp spike in Internet scans for systems running the Veritas BackupExec software, which is now sold by Symantec, after a crop of high-risk holes were announced in June, according to Johannes Ullrich, CTO of SANS ISC. Everybody needs to have access to the backup server to do backups. It \'s a critical service, he said. Automated hacking tools that lowered the technical bar for attacking Web and e-mail servers have been modified to target applications, said Paller from London, where SANS was planning to announce the Top 20 list with representatives of the UK \'s NISCC (National Infrastructure Security Co-Ordination Center). The stakes for patching holes in software are getting higher, SANS said. The business of stealing data for extortion and resale is a multibillion dollar business, Paller said. Governments also have reason to take a close look at their networks for vulnerabilities in the operating systems that run desktop and server machines, as well as software applications, experts agree. SANS, NISCC and the U.S. Department of Homeland Security issued a dire warning about the impact of software vulnerabilities on national security. Paller said that unknown enemies—possibly sponsored by states hostile to the U.S. —are conducting round-the-clock electronic attacks against companies and government Web sites to gather and transmit privileged information. He cited coordinated phishing attacks that placed Trojan horse programs on systems owned by leading British companies and the U.K. government in June, and coordinated Chinese attacks on U.S. government computers, dubbed Titan Rain, that netted military flight planning software as examples of widespread hacking of devastating attacks that are being carried out against U.S. government and military contractor sites, SANS said. Unlike worms and viruses, the new wave of malicious attacks are super stealthy and may lurk for months or years, only waking up to snatch sensitive information and send it back to those orchestrating the attack, said Paller. Focusing on application security is nothing new at Morgan Stanley, said Lance Braunstein, executive director of technical operations. Click here to read more about the evolution of hacking. You could be the most secure operation in the world, but if you have applications that were developed using bad coding practices, you \'re open to exposure, said Braunstein. Enterprises that aren \'t already doing so should be doing penetration testing and analysis of any applications running on their network. The end of the security story isn \'t deploying a firewall. There are applications security practices you have to follow, Braunstein said. Companies should act quickly to patch software vulnerabilities and remove low hanging fruit that can be exploited by organized online criminal groups and state-sponsored hackers, SANS said. Enterprises should also invest in technology that can inventory software applications and spot vulnerabilities, Ullrich said. Check out eWEEK.com \'s Security Center for the latest security news, reviews and analysis. And for insights on security coverage around the Web, take a look at eWEEK.com Security Center Editor Larry Seltzer \'s Weblog. Copyright (c) 2005 Ziff Davis Media Inc. All Rights Reserved.",7);arrFiles[39]=new Array(70,"idtheft/credit monitoring grows in importance.htm","2005-12-07","Credit Monitoring Grows in Importance","Kentucky, Northern Kentucky, Greater Cincinnati, CVG, International Airport, Boone County, Campbell County, Kenton County, Challenger, Sunday Challenger, The Sunday Challenger, SundayChallenger.com, sundaychallenger.com, ChallengerNKY.com, challengernky.","","Howard McEwen/For The Sunday Challenger GIVE HER CREDIT: Helen Moore (left) used a credit card to make a purchase from Barb Weideman at The Cozy Cottage in Bellevue recently. Because Weideman knows Moore personally, the chances of a fraudulent credit card purchase are greatly reduced. Credit Monitoring Grows in Importance By Howard McEwen For The Sunday Challenger feedback@challengernky.com Identity Theft Can Ravage Victim \'s Life BELLEVUE - When Helen Moore decided to buy a hand-painted porcelain pitcher at The Cozy Cottage in this Campbell County city, she paid with her credit card. The owner, Barb Weideman, asked for her identification, but she knows that not all store owners do. The problem - as with all credit card transactions - is that Barb Weideman cannot be absolutely sure that Helen Moore is who she says she is. Every payment with a credit card could be a case of identity theft. Weideman is getting paid, but possibly not by the real Helen Moore. This Helen Moore could be anybody who managed to get a credit card issued in Helen Moore \'s name. She may run up the balance, pay the minimums for a few months and then will disappear, leaving the real Helen Moore with a tarnished credit report that she \'ll have to work out with the bank, the credit report agencies and the police. Luckily, this Helen Moore is a long-time friend, but Weideman doesn \'t know all of her clients as well. Identify theft is defined by the Federal Trade Commission (FTC) as when someone uses your personal information without your permission to commit fraud or other crimes. Finding Fraud This does not limit identity theft to credit card fraud, but it is often the case that the two go together. If someone burglarizes your home, you know it right away. The door is broken down and the TV is gone. But in the case of identity theft, the thieves can continue to commit their crimes while you sleep peacefully. That \'s why the first line of defense that anyone has is a regular credit report review. Responding to this need, the U.S. Congress passed the Fair and Accurate Credit Transactions Act that allows consumers to obtain their credit reports once a year from each of the three major credit-reporting agencies. Consumers can request their free credit report by mail, phone, or Internet. You cannot be held liable for identity theft, but it can cause you a lot of headaches, said Mary Ann Mader, a certified credit counselor and mortgage broker with Professional Mortgage Consultants in Cold Spring who is a frequent speaker on credit issues and identity theft. Mader offered a few suggestions when reviewing your credit report. The first step is to make sure that all the accounts listed are correct. Are there accounts that you didn \'t open? If so, is there a balance on them? Are there any tax liens, court judgments, or any other activity that you don \'t know about? If yes, then inquiries should be made immediately. Second, don \'t have too many credit lines open at one time and make sure the accounts that you thought were closed actually are closed. The more accounts you have open, the higher risk you have, Mader warned. Sometimes, credit card companies do not report the closing of accounts in a timely manner - if at all. Another precaution is to reduce the amount of people who handle your card. The more a credit card is handed to someone, the greater the chance of identity theft. It \'s easy for a waiter or store clerk to copy down an account number or even order something while they are supposedly processing your payment. Finally, if using a credit card over the Internet, make sure you have an understanding of the basics of Web security. At a minimum, look for the lock at the edge of the web page. Make sure the picture shows it is locked and therefore secure, Mader instructed. If It Happens to You If you are a victim of identity theft, the Federal Trade Commission suggests a number of actions to take. A victim should immediately place fraud alerts on his or her credit reports through the credit bureaus, close all suspicious accounts, file a police report and a complaint with the FTC. The FTC provides in-depth information on protecting against identity theft and recovering from it on its website at www.consumer.gov/idtheft . Mader also emphasized that an annual credit report can do more than protect you against identity theft. Just as important, it will allow you to catch mistakes made by the credit bureaus and banks that can cost you in other ways. Potential creditors use the report to determine your credit worthiness and the interest rates you will pay. Insurance companies now use credit scores to determine premiums on your homeowners and auto insurance. Also, many potential employers check your credit to assist in their overall decision. The service is run in a joint effort by the three major credit-reporting agencies - Equifax, Experian and TransUnion. The only drawback is that they do not provide the all-important credit score, but only the information used to determine a credit score. However these scores can be purchased directly from the companies. Your credit report is one of the most important items in your financial life. Now, with the help of Congress, it \'s free and easy to obtain for an annual check-up. How to Get Your Free Credit Report You can obtain your free credit report online, by mail, or by phone. Call 1-877-322-8228 On-line at http://www.annualcreditreport.com/ Or download the request form and mail it to: Annual Credit Report Request Service P.O. Box 105281 Atlanta, GA 30348-5281 Equifax - http://www.equifax.com/ Experian - http://www.experian.com/ TransUnion - http://www.transunion.com/ Copyright © 2004, Challenger Communications , LLC, Covington, KY, USA One of the Corporex Family of Companies",10);arrFiles[40]=new Array(71,"idtheft/Exposing Identity Thieves.htm","2005-11-30","Exposing Identity Thieves","","","Bianca Martinez Exposing Identity Thieves You shred important documents, you scratch out your credit card number on receipts but are you doing all you can to protect yourself from identity thieves? The Federal Trade Commission saw over 600,000 complaints of fraud and identity theft last year. According to the Federal Bureau of Investigations and Special Agent Leah Wynn, Virginia Beach and Norfolk ranked in the top 5 cities in the state of Virginia. You may think you are doing all you can to prevent it, but Wynn says the thieves are getting smarter. I think the perpetrator is learning this is the way to go. Identity theft is so easy. So easy a whole life can be lived on someone else \'s wallet. It happened right here in Hampton Roads. Someone lived for a couple of years, explains Wynn, They got a mortgage, they got a license they got a job, and they did everything living as that person. Don \'t let that happen to you. Take your social security card out of your wallet now and if your number is on your license get it changed. It may sound as basic as shredding your important papers. Maybe it is not as basic as you think though. John is skilled in the ways of hackers and thieves and can ruin your credit and your life. If it is shredded in strips and not cross-cut, I can put it down right in front of me and put it back together and there you have it, he says. John actually uses his skills as a computer defense specialist to protect you. A lot of folks think all they need to do to protect their identity is shred those important papers. However a new trend is leaving people wide open. It is the new Wi-Fi, or wireless Internet. John has a warning, Don \'t use wireless for anything that you would not want put in a public newspaper. Though it \'s a nice convenience he says, your information is basically floating in mid-air. I could be two blocks away with a high-powered antenna picking up his information. There are types of protection for wireless but they can be hacked in as little as twenty minutes. So John says the key is defense in depth or layers: Anti-virus, computer patches, and firewalls. Furthermore, it is important to up date them once a week. So why are we seeing so much ID theft in Hampton Roads? John says it is simple and it \'s big business. Hackers are now trading information and credit card numbers like cash on-line for programs. And high tech gadgets can be bought in stores to hold 1000 credit card numbers. The best way to stay on top of your credit, check your credit once a year. You can do that by going to http://www.ftc.gov/ All content © Copyright 2000 - 2005 WorldNow and WTKR. All Rights Reserved. For more information on this site, please read our Privacy Policy and Terms of Service .",7);arrFiles[41]=new Array(72,"idtheft/Skilled Thieves Want Your Identity.htm","2005-12-07","Skilled Thieves Want Your Identity. Are You Safe?","","","Home > Skilled Thieves Want Your Identity. Are You Safe? How can you protect yourself against one of the fastest growing crimes in America? (I-Newswire) - KAYSVILLE, Utah, November 14, 2005 – Chances are that you know somebody who has had their identity stolen, and you may even be a victim yourself. Mail, receipts, credit cards and other forms of personal information are just a few of the items that could be stolen. Criminals can take personal information from a credit card statement, receipt, bank printout and other sources to open a bank account in your name, apply for credit cards, create forged checks, file for bankruptcy and more. ABC Office recommends that you prepare for and recognize certain risk areas where your information may not be secure. There are a few everyday things you can do to thwart these thieves and make yourself less of a target. Mail is an easy target. If you have an unsecured mailbox, you may want to consider using a secure post office box. If you have an unlocked mailbox outside your house, you can contact the U.S. Postal Service and request a vacation hold. It is also a good idea to pick new checks up from the bank than have them delivered to a mailbox. It is recommended that you not carry your Social Security card in your purse or wallet. If lost or stolen, this card makes it easy to steal your identity. A wallet or purse can also carry other personal information. Only carry what you need. If you keep credit cards in your wallet or purse, only take what you will need for the day. Be sure to keep your wallet or purse in a safe location and try not to keep sensitive information inside. Be careful who you give your personal information to. You may be faced with a situation where you are required to give information over the phone, through mail or over the Internet. This information can include your Social Security Number ( SSN ), birth date, account numbers, mother’s maiden name and more. Only deal with organizations you consider legitimate. You will only want to give this information if you have initiated contact. Thieves have been known to pose as bank representatives, medical officials, government agencies, credit card companies and more. Shredding documents is one of the most important ways you can prevent identity theft. The Federal Trade Commission states, “To thwart a thief who may pick through your trash or recycling bins to capture your personal information, tear or shred your charge receipts, copies of credit applications, insurance forms, physician statements, checks and bank statements, expired credit or charge cards that you’re discarding, and credit offers you get in the mail.” If you feel you have become a victim of identity theft, you can contact the FTC for information on what to do. You can find a step-by-step guide on what to do by going here: http://www.consumer.gov/idtheft/. They also have some great ideas on protecting yourself against computer ID theft as well. You can also read ABC Office’s fraud prevention guide by going here: http://www.abcoffice.com/fraud.htm. For information about a paper shredder that may work for you, call toll-free ( 1-800-658-8788 ) Monday through Friday from 7:00 a.m. - 6:00 p.m. MST. A knowledgeable customer service representative can then assist with answering questions regarding shredders. For further information, please contact David Stuart, Marketing Supervisor of ABC Office, 1-800-658-8788, info@abcoffice.com. #### If you have questions regarding information in this press release contact the company listed below. I-Newswire.com is a press release service and not the author of this press release. The information that is on or available through this site is for informational purposes only and speaks only as of the particular date or dates of that information. As some companies / PR Agencies submit their press releases once per week/month or quarter, make sure check the official company website for accurate release dates as our site displays the I-Newswire.com distribution date only. We do not guarantee the accuracy or completeness of information on or available through this site, and we are not responsible for inaccuracies or omissions in that information or for actions taken in reliance on that information. More Information ABC Office / David Stuart Published on: 2005-11-14",15);arrFiles[42]=new Array(73,"safety/Bank customers willing to pay for online security.htm","2005-12-07","Bank customers willing to pay for online security","","","To print : Click here or Select File and then Print from your browser \'s menu -------------------------------------------------------------- This story was printed from ZDNet News , located at http://2001-1_22-0/ -------------------------------------------------------------- By Dinesh C. Sharma URL: http://news.zdnet.com/2100-1009_22-5946634.html Americans are ready to shell out additional fees for greater protection of their online transactions and bank accounts, a new consumer poll has indicated. Nearly 40 percent of citizens are willing to pay fees for more protection, compared to 27 percent who were ready to do so last year, a survey conducted by Unisys has shown. About half the consumers surveyed said they would consider switching to a new bank for greater protection. The study results came from a poll of 1,000 Americans. This willingness is driven by growing concerns about issues like identity theft . About 73 percent of consumers said they are worried about fraudulent use of their bank accounts or credit cards, compared to 51 percent who expressed such fears in 2004. Nearly 17 percent of consumers cited instances of identity theft , while 42 percent said their banks informed them of threats of phishing . People are clearly worried, reinforced by the fact that they \'re even more willing than ever to leave their banks and pay for security protection, Dominick Cavuoto, Unisys president of financial services, said in a statement. This consumer perception will likely drive banks to quickly adopt advanced security solutions or risk losing existing and potential customers, revenue streams and brand reputation.",4);arrFiles[43]=new Array(74,"safety/Unsecured Wi-Fi would be outlawed by N_Y_ county.htm","2005-12-07","Unsecured Wi-Fi would be outlawed by N.Y. county","","","To print : Click here or Select File and then Print from your browser \'s menu -------------------------------------------------------------- This story was printed from ZDNet News , located at http://2001-1_22-0/ -------------------------------------------------------------- By Declan McCullagh URL: http://news.zdnet.com/2100-1035_22-5934194.html According to a new proposal being considered by a suburb of New York City, any business or home office with an open wireless connection but no separate server to fend off Internet attacks would be violating the law. Politicians in Westchester County are urging adoption of the law--which appears to be the first such legislation in the U.S.--because without it, somebody parked in the street or sitting in a neighboring building could hack into the network and steal your most confidential data, County Executive Andy Spano said in a statement . The draft proposal offered this week would compel all commercial businesses with an open wireless access point to have a network gateway server outfitted with a software or hardware firewall. Such a firewall, used to block intrusions from outside the local network, would be required even for a coffee shop that used an old-fashioned cash register instead of an Internet-linked credit card system that could be vulnerable to intrusions. Scott Fernqvist, special assistant to the county \'s chief information officer, said Friday that he thought the law would apply to home offices as well. It was just introduced; it \'s a draft, Fernqvist said. We \'re hoping it \'s enacted early next year, but this can change. The proposed law has two prongs: First, public Internet access may not be provided without a network gateway server equipped with a firewall. Second, any business or home office that stores personal information also must install such a firewall-outfitted server even if its wireless connection is encrypted and not open to the public. All such businesses would be required to register with the county within 90 days. The proposal echoes a slew of bills in Congress and in state legislatures that are being considered in the wake of recent security problems involving Bank of America, payroll provider PayMaxx and Reed Elsevier Group \'s LexisNexis service. But the other proposals tend to follow approaches such as requiring notification of breaches or restricting use of Social Security Numbers--as opposed to regulating wireless links. According to the Westchester proposal, public Internet access sites also would have to post a sign saying: You are accessing a network which has been secured with firewall protection. Since such protection does not guarantee the security of your personal information, use discretion. Violations of any part of the law would be punishable with fines of 250 or 500. Representatives from the county \'s information technology department drove around downtown White Plains, N.Y., with laptop computers and detected 248 open wireless connections in less than half an hour, the county reported. Half lacked visible security features.",5);arrFiles[44]=new Array(77,"hacking/hackers shift sights.htm","2005-12-07","Hackers Shift Sights To Insecure Desktop Software","","","Hackers Shift Sights To Insecure Desktop Software Tuesday November 22, 12:15 AM EST NEW YORK -(Dow Jones)- Hackers veered into dangerous new territory in 2005,posing serious challenges to computer users and the security companies chargedwith protecting them, according to a closely watched annual report fromgovernment and industry computer-security experts. The report - scheduled for release Tuesday by cybersecurity agencies of UnitedStates, United Kingdom and Canada and the SANS Institute, a researchorganization for security professionals - documents a marked shift in hackers \'targets. Online attackers have turned their sights to often poorly defended softwareapplications found on millions of computer desktops - and in particular tocritical antivirus, back-up and recovery programs designed to keep PCs safe fromattacks and data loss - according to the 2005 SANS Top 20 report, which detailsthe most critical security vulnerabilities facing the Internet. For several years, hackers \' focus had been on operating systems such asMicrosoft Corp. ( MSFT ) \'s (MSFT) Windows and UNIX and on large server computers used fordisplaying Web pages and sending email. Companies such as Microsoft ( MSFT ) responded byproviding customers with automated systems for quickly patching security flawsdiscovered in their programs, significantly improving security for everyone fromaverage consumers to corporate and government users. However, such patchingsystems are unavailable for many popular desktop software programs. We have made enormous progress over the past five years by forcing thevendors to deliver automated patching, says Alan Paller, research director atthe SANS Institute. Now the bad guys are saying: \'You did that, now we \'re goingafter the applications. \' Now we have to start all over again. SANS compiles the Top 20 list to help computer-security professionals setpriorities about which problems to address first. The list incorporates theinput of six other organizations, including U.S. Department of HomelandSecurity \'s U.S. Computer Emergency Response Team, the British government \'sNational Infrastructure Security Co-Ordination Centre and Canada \'s CyberIncident Response Centre. Included are high-severity vulnerabilities thatcontinue to afflict large numbers of computer systems and that can be fairlyeasily attacked because their details have circulated broadly online. The proliferation of application vulnerabilities is particularly troublingbecause they can expose millions of home and office PCs to attack, a much largernumber of systems than would be the case with flawed server software, saysGerhard Eschelbeck, chief technology officer of vulnerability management firmQualys Inc. They also shift more of the burden of security to often ill-preparedhome users. SANS said no application vulnerabilities made its Top 20 list last year, butsoftware flaws in such programs made up nearly half the list for 2005. Among theprograms on the list are backup, antivirus, database, file-sharing, media-player, instant-messaging and Web-browsing software made by a long list ofcompanies. You look for the soft underbelly, and the desktop applications are the softunderbelly now, says former White House cybersecurity advisor Howard Schmidt.Makers of many of these programs have not instituted the kind of rigoroussoftware-development practices to root out security holes now used by thesoftware giants that have been in hackers \' crosshairs, he says. It \'s not about developing better patching mechanisms, Schmidt says. Thelong-term answer is you just write better code. Products from Symantec Corp. ( SYMC ) (SYMC), a top maker of backup and antivirussoftware, were among several products from a number of security software makersthat SANS warned contained security vulnerabilities that could give attacks fullcontrol of computers. Symantec ( SYMC ) said it is quick to deliver security patches toits customers and distributes some using its automated patching systems. It saidits software undergoes rigorous quality testing, including for any securityweaknesses. In its report, SANS also listed several serious security flaws in networkingequipment, suggesting the routers and switches that form the backbone of theInternet could become a bigger target in the future. No networking-gear flawswere included in the 2004 list. The bad guys have learned that owning routers gives them leverage inobserving and other malicious activity, says Marty Lindner, an Internetsecurity analyst at US-CERT. This is becoming a more popular attack vector. Security experts also fear that attacks designed to cause networking equipmentto crash could become more common and more damaging as services like telephonyand video move onto the Internet protocol network. The list highlighted several vulnerabilities found in Cisco Systems Inc. ( CSCO ) (CSCO) gear in the last year, including its standard operating system software,which lies behind 85% of the global Internet backbone. It also noted flaws inrouters made by Juniper Networks Inc. ( JNPR ) (JNPR) and virtual private networkingsoftware from Check Point Software Technologies Ltd. ( CHKP ) (CHKP) and Symantec ( SYMC ). Cisco said it has a well established process for helping its customers applyfixes for security flaws and urges them to take steps to ensure they \'reprotected from attack. -By Riva Richmond, Dow Jones Newswires; 201-938-5670; riva.richmond@dowjones.com (END) Dow Jones Newswires 11-22-05 0015ET Copyright (c) 2005 Dow Jones & Company, Inc. © 2005 Dow Jones & Company, Inc. All Rights Reserved.",12);arrFiles[45]=new Array(78,"cybercrime/Critical Data Mob Snapshot.htm","2005-12-05","Critical Data: Mob Snapshot","Article","","Critical Data: Mob Snapshot March 15, 2005 By Deborah Gage and John McCormick Shadowcrew Base Case Web Address: http://www.shadowcrew.com/ (Web site taken down by U.S. Secret Service in October 2004) Business: Trafficking in stolen and counterfeit credit, debit and identification cards* Administrators: Andrew Mantovani, David Appleyard and others* Financial Damage: More than 4 million in financial losses to credit card companies and financial institutions** Challenge: Avoid capture by law enforcement. Baseline Goals** Grow general membership, which reached 4,000 registered members in October 2004. Increase number of instructional forums, from 12. Boost stock of resellable credit card numbers, which numbered 1.5 million. Increase cache of e-mail addresses, which reached at least 18 million. *According to a grand jury indictment filed in U.S. District Court in Newark, N.J. ** According to a criminal complaint filed in U.S. District Court in Newark, N.J. Copyright (c) 2005 Ziff Davis Media Inc. All Rights Reserved.",3);arrFiles[46]=new Array(79,"cybercrime/cyber criminals gather.html","2005-12-06","MSNBC - Cyber criminals gather on forgotten Web sites ","","","MSNBC.com Cyber criminals gather on forgotten Web sites Abandoned by their owners, sites easy prey for illicit activity Reuters Updated: 7:12 p.m. ET Dec. 2, 2005 SAN FRANCISCO - Cyber criminals peddling illegal wares such as programs to hack into computers and stolen bank account numbers are moving to abandoned Web sites where their activities are harder to track, security experts say. Dormant Web sites no longer monitored by administrators have in effect created hundreds of online bazaars for criminals, said Jim Melnick, director of threat intelligence for VeriSign Inc. \'s security unit IDefense. I compare it to a low-income area where a landlord is not keeping up certain buildings, or the drug trade, he said. If a person gets busted on one corner they will move to another. Financial fraud cost consumers and businesses about nearly 15 billion in 2005 with some 10 million victims falling prey to identity theft, according to Avivah Litan of the market research firm Gartner. She said consumers recouped much of their losses, leaving businesses to pick up the tab. Security experts say they fear cyber criminals in the market for stolen financial and personal information will soon shift their sights to the hard-to-track locations. Making it more difficult for authorities, the advertisements for stolen software or personal information often appear on Web sites that typically raise little suspicion. For example, the message board for Boston-based band Beatsoup included dozens of postings offering hacking programs, stolen software and in some cases advertisements for credit card numbers and online banking logins. An active link for the Grand Rapids, Michigan-based Christian Rock group Sojourn contains postings encouraging users to download something called Paypal Database Hacker v1.5. Another reads: USA Citibank, HSBC and Paypal account forsell!!! Administrators of the two Web sites and representatives of the bands could not be reached for comment. IDefense \'s Melnick said he expected more underground users to flock to these forgotten sites after a government crackdown last year sent cyber criminals searching for other places on the Web to sell their goods. \'It is like whack the mole \' Johannes Ullrich, chief research officer at the nonprofit Sans Institute research group, said criminals can take over an ignored or abandoned site and sit on it for months or even years before someone stumbles upon it. Locating owners of abandoned sites to find who may have posted or to remove the logs from the site is also difficult, he said. And when authorities shut down a site, criminals simply set up shop someplace else. It is a big problem, Ullrich said. There is not much you can do. It is like whack the mole. Security experts attribute the appeal of abandoned or ignored sites to a U.S. government crackdown in October 2004 that shut down several criminal Web sites set up specifically to traffic in stolen financial information and documents. That year-long undercover sting dubbed Operation Firewall was conducted by the U.S. Secret Service and other U.S. and European agencies and hit criminal sites based in the United states particularly hard. This forced many organized criminal operations abroad and opened the door for a resurgence of illicit trade of financial information at abandoned Web sites, they say. Larry Johnson, a special agent in charge at the U.S. Secret Service, estimated about four or five major Web sites run by criminals and consisting of more than 200 members remain in operation in the United States. Many of the users operating on the fringes of the Internet are people who fail to gain access to criminal Web sites where administrators strictly control who gains entry to buy and sell stolen goods, he said. It is like the wild, wild West for those who want to go off on their own or could not establish themselves within a criminal organization, he said. It is a pretty good philosophy. (c) Reuters 2005. All rights reserved. Republication or redistribution of Reuters content, including by caching, framing or similar means, is expressly prohibited without the prior written consent of Reuters. Reuters and the Reuters sphere logo are registered trademarks and trademarks of the Reuters group of companies around the world. (c) 2005 MSNBC.com URL: http://www.msnbc.msn.com/id/10284366/",6);arrFiles[47]=new Array(80,"cybercrime/Cybercrime yields more cash than drugs.html","2005-12-05","Cybercrime yields more cash than drugs","","","Cybercrime yields more cash than drugs:	expert By Souhail Karam Mon Nov 28, 1:38 PM ET RIYADH (Reuters) - Global cybercrime generated a higher turnover than drug trafficking in 2004 and is set to grow even further with the wider use of technology in developing countries, a top expert said on Monday.	No country is immune from cybercrime, which includes corporate espionage, child pornography, stock manipulation, extortion and piracy, said Valerie McNiven, who advises the U.S. Treasury on cybercrime. Last year was the first year that proceeds from cybercrime were greater than proceeds from the sale of illegal drugs, and that was, I believe, over 105 billion, McNiven told Reuters. Cybercrime is moving at such a high speed that law enforcement cannot catch up with it. For example, Web sites used by fraudsters for phishing -- the practice of tricking computer users into revealing their bank details and other personal data -- only stayed on the Internet for a maximum of 48 hours, she said. Asked if there was evidence of links between the funding of terrorism and cybercrime, McNiven said: There is evidence of links between them. But what \'s more important is our refusal or failure to create secure systems, we can do it but it \'s an issue of costs. McNiven, a former e-finance and e-security specialist for the World Bank , was speaking in Riyadh on the sidelines of a conference on information security in the banking sector. Developing countries which lack the virtual financial systems available elsewhere are easier prey for cybercrime perpetrators, who are often idle youths looking for quick gain. When you have identity thefts or corruption and manipulation of information there (developing countries), it becomes almost more important because ... their systems start getting compromised from the get-go, she said. Another area that begins to expand is human trafficking and pornography because both of these become so much available once you have a communication ability, McNiven said. Copyright © 2005 Reuters Limited. All rights reserved. Republication or redistribution of Reuters content is expressly prohibited without the prior written consent of Reuters. Reuters shall not be liable for any errors or delays in the content, or for any actions taken in reliance thereon.",4);arrFiles[48]=new Array(81,"cybercrime/Cybercrime's Most Wanted.htm","2005-12-06","Cybercrime \'s Most Wanted","Article","Snapshots of six cybercrime groups","Shadowcrew: Web Mobs March 7, 2005 By John McCormick and Deborah Gage They operate under names such as carderplanet, stealthdivision, darkprofits and the shadowcrew. They buy and sell millions of credit card numbers, social security numbers and identification documents, typically for less than 10 bucks apiece. And they create sites and services to breed more skilled, like-minded organizations. Here \'s how the growth of electronic commerce is threatened by the operations of these Web Mobs. Andrew Mantovani, David Appleyard, Brandon Monchamp and more than a dozen other members of the Shadowcrew were at work on their computers. Sure, it was 9 p.m. But their business—which, authorities say, was auctioning off stolen and counterfeit credit and identification cards—was booming. In the past two years, the Shadowcrew \'s 4,000 members, according to the U.S. Secret Service, ran a worldwide marketplace in which 1.5 million credit card numbers, 18 million e-mail accounts, and scores of identification documents—everything from passports to driver \'s licenses to student IDs—were offered to the highest bidder. Many of the credit card numbers sold on the site were subsequently used by Shadowcrew \'s customers, who had no intent of paying for what they bought. The result? More than 4 million in losses suffered by card issuers and banks, says the Secret Service, which is charged by the U.S. government to investigate counterfeiting, credit card fraud and computer crimes. If the Shadowcrew had gone unchecked, the losses would have totaled hundreds of millions of dollars, the agency says. Shadowcrew is a Web mob, say law-enforcement officials: a highly organized group of criminals. Unlike the American Mafia or the Russian syndicates, however, these Web mobs work solely in the online world. Members know each other by computer alias, interact with each other through the Internet, and commit their crimes in the darkness of cyberspace. The electronic marketplaces they establish to trade their illicit wares can be set up, and disbanded, with little more than keystrokes. They basically can pop up anytime and anywhere, says Secret Service Special Agent Larry Johnson. In the last year, U.S. law-enforcement officials have publicly identified a half-dozen of these seemingly loose collections of thieves that have grown into multinational enterprises. The Secret Service says they operate under names such as Carderplanet, Stealthdivision and Darkprofits. Scott Christie, a former U.S. Attorney who initially prosecuted the Shadowcrew case, says he expects the number to grow. In fact, these mobs are designed to foster more crime and criminals on the Web. Much like La Cosa Nostra, members of Web mobs don \'t have to break into a bank to rob it. Instead, they provide a framework and services for criminals to trade in their chosen stock—stolen credit cards and identity documents. And their efforts, including the commerce sites where they trade in stolen merchandise, will only accelerate what is already a thriving trade in numbers that are regarded on the Web as currency. The amount of goods and services purchased with fraudulently obtained personal identification exceeded 52 billion in 2004, according to a release put out last month by the Federal Trade Commission. Businesses, from banks to online merchants—maybe even your company—bear much of the cost. But the initial, direct loss isn \'t the greatest threat posed by groups such as the Shadowcrew. By promoting and facilitating credit card fraud and identity theft, these groups can shatter the online trust companies have established with their customers, says Howard Schmidt, the chief security strategist for eBay and a former cybersecurity adviser to the White House. That \'s because they destroy confidence in the Internet. If McDonald \'s has well-lit restaurants and the best food and the best prices, but people get mugged in the parking lot, they won \'t go there, he says.	One of the most popular ways to steal credit card numbers and personal information is through phishing for it, using scam e-mails that draw unsuspecting recipients to Web sites where they \'re enticed to divulge personal financial data. Consumers are becoming reluctant to enter their credit card numbers at retail sites, according to John Pescatore, a vice president at research firm Gartner, and are becoming extremely wary of responding to e-mails. They \'re resisting not just the requests from music or publishing companies pitching discounts, or travel companies pushing hotel or airline seat promotions, or utilities trying to establish online billing accounts. Pescatore also sees a lack of confidence in talking online with health-care providers and signing up for processes like electronic voting.	People are beginning to mistrust Internet e-mail altogether, says Pescatore, who \'s also a former Secret Service agent. The Anti-Phishing Working Group, a nonprofit organization of corporations and government agencies trying to find ways to eliminate phishing, estimates some 75 million to 150 million scam-related e-mails are sent every day. Most originate from organized groups of cybercriminals, according to the group \'s chairman, David Jevans. And that could decelerate the growth of electronic commerce. In the past five years, Web commerce has grown 30%, according to International Data Corp., with consumers around the world spending more than 300 billion online last year. But unless consumers \' concerns about the safety of using their credit card numbers and other identification online is addressed, the rate of growth in the online economy could drop into single digits by 2007, Gartner figures. The concerns are not misplaced. In just one incident last fall, data collector ChoicePoint says organized criminals accessed 144,778 consumer records, including credit reports and Social Security numbers. ChoicePoint says it has notified more than 700 people that identity information was compromised. The growing threat of credit card and identity theft, says Edward M. Stroz, president of computer security firm Stroz Friedberg and a former agent with the Federal Bureau of Investigation, is probably the single biggest risk to causing e-commerce to begin to dry up. Cyber-Forensics: Following the Trail	The twentysomethings who make up the bulk of these groups are smart, technically savvy—and careful. The Shadowcrew is said to have successfully evaded the law by hiding behind computer nicknames, or nics, such as BlackOps and Kingpin. They made sure to bounce their messages through more than one Web server. That made their communications harder to trace. As an added precaution, members also encrypted their electronic messages, scrambling the text so it couldn \'t be read by spies, i.e., the Secret Service or other law-enforcement agencies.	They had this comfort level, says Johnson about the Shadowcrew, thinking \'nobody would catch us. \' But at 9 p.m. on Oct. 26, 2004, the Shadowcrew was in for a surprise. The Secret Service had been tracking the Shadowcrew for a year, with the help of an informant who was highly placed in the organization and ran one of the group \'s servers. The insider also helped the agency set up and run the undercover operation. As part of its investigation, the Secret Service set up a secure private network, according to a criminal complaint against members of the Shadowcrew on file with the U.S. District Attorney in Newark, N.J., that members of the group used for their electronic communications and Web activity. As messages passed through that network, the Secret Service captured the unique computer address assigned to the senders \' computers by their Internet service providers, which, of course, maintain billing addresses along with Internet addresses. This helped lead them to Mantovani and Appleyard. Then, on that Tuesday evening in October, the Secret Service \'s insider engaged 30 members in simultaneous online chats. With the Shadowcrew thus occupied on their screens, agents of the Secret Service, FBI and local police—some armed and wearing bulletproof vests—showed up at suspects \' homes and made arrests. Most suspects came quietly. However, one, Monchamp, leaped out a second-floor window when the Secret Service knocked. He was apprehended after a short chase on foot. Back in the room he exited, agents found two loaded guns—one an assault rifle. Not the normal tools of a hobbyist hacker. And that \'s not, according to the government, what the Shadowcrew members were. Mantovani, Appleyard and Monchamp were part of an international criminal organization in which associates advertised and sold identity cards and traded advice on how to sell forged identity documents, according to the criminal complaint. The Shadowcrew would not talk about its activities to Baseline . But Mantovani and Monchamp, and most of the other crew members who have been arrested, have pleaded not guilty to the charges against them at their arraignments. Appleyard and a few others are awaiting arraignment. Appleyard \'s attorney, William Hughes of Cooper Levenson, says he and his client object to allegations that Appleyard committed or profited from credit-card fraud. We continue to ... maintain innocence, Hughes points out. Baseline contacted Monchamp \'s lawyer, Elizabeth Smith of Mendham, N.J., but she declined to comment. Mantovani \'s court-appointed attorney, Pasquale Giannetta, says his client is innocent of the charges—one count of conspiracy and three counts of fraud—and doesn \'t know how he was caught up in the manhunt. There is no information, Giannetta says, that indicates that [Mantovani] participated in any type of organized entity, where he was leader, or worked his way up. Geekfather, or College Student?	Mantovani \'s arraignment was held in U.S. District Court in Newark on Feb. 14. A rainy Valentine \'s Day. A day Americans associated with romance—and an infamous mob hit inChicago. Raindrops still on his gray suit, Mantovani entered courtroom 4B. The 22-year-old with short, slightly ruffled hair and a baby face stood as the judge asked him to enter a plea. His lawyer, Giannetta, firmly responded, Not guilty.	At the time of his arrest, Mantovani was attending Scottsdale Community College in Arizona. While out on bail, he is living with his mother in New York. He hopes to get a job in construction. He \'s very nice, Giannetta says of Mantovani, a kid from a middle-class environment, never involved with crime, and now he \'s facing a federal indictment. It \'s traumatic for the family, and for him. While Giannetta refers to Mantovani by his first name and says he knows of no conspiracy to trade in credit card information, the Secret Service refers to him by computer nicknames they say he used, including Deck, DeckerdIsMissin and ThnkYouPleaseDie. To the Secret Service, this college kid in a crisply pressed suit was a leader of one of the largest and best-organized gangs trafficking in stolen credit and debit card numbers and counterfeit identity documents. Working from court documents that include the criminal complaint and an indictment against 19 Shadowcrew members on file in U.S. District Court in Newark, interviews with government investigators and prosecutors, and assistance from computer security experts such as Pescatore and another former Secret Service agent, John Frazzini, who now runs his own corporate security company, Baseline pieced together a picture of how the Shadowcrew organized itself, how it got rolling and how law enforcers and security experts hope to stop Web mobs like it. According to the complaint, a handful of members, including Mantovani and Appleyard, were at the top of the organization. Appleyard liked to go by the military-sounding moniker Black Ops. Functionally, they were known as administrators. During the government \'s year-long investigation, there were as few as two and as many as six members in Shadowcrew \'s management team. Collectively, they controlled the direction of the organization, according to former U.S. Attorney Christie, who \'s now a partner with the law firm of McCarter & English in Newark. The administrators decided what businesses to engage in, how to handle the merchandise—the stolen identifications—who should be allowed to join, and what level of access they should be granted to the Web site and its forums, the Secret Service says.	While administrators led the business, other members were engaged in the day-to-day operations. According to the indictment, they included: Moderators. A dozen crew members ran information and discussion forums. These included Monchamp, a.k.a. the Kingpin, and another defendant, Matthew Johnson, a.k.a. Carsen, the Secret Service says. There were a half-dozen or more forums on the Shadowcrew \'s Web site, Shadowcrew.com. A forum might discuss how to steal and forge bank cards, or how to create identification papers, such as driver \'s licenses, diplomas or training certificates, that would be accepted as authentic. Members who had proven skill at creating fake IDs were allowed to moderate questions from members. Johnson has pleaded not guilty. Reviewers. These members judged the quality of illicit merchandise, such as stolen credit card numbers, debit card numbers or passports. A reviewer such as Monchamp or Alexander Palacio, a.k.a. Scrilla, would run tests to see if credit card numbers were cancelled or still valid, according to the indictment. Palacio \'s lawyer, Dean Steward, would not comment on the case. Vendors. These members sold products, including Visa card numbers and health insurance identification cards, and services, such as money laundering and access to retailers \' credit card validation systems, to other Shadowcrew members. Rogerio Rodrigues, a.k.a. Kerberos, and Omar Dhanani, a.k.a. Voleur, are alleged to have been vendors. Rodrigues has pleaded not guilty. Dhanani \'s attorney, Howard Price, says his client has not entered a plea and that he and his client are talking to the U.S. Attorney about a settlement. General Members. The bottom of the organization. The thousands of members who typically used the Shadowcrew Web site to gather and share instructions on committing credit card fraud, creating false identification documents and selling credit card and identification numbers. Registration was open to all comers. But more sensitive discussion areas were password-protected, and members needed another member of the group whom the leaders trusted to vouch for them before they were allowed to pitch sales to the group. Members could be promoted up the ranks of the organization by either providing quality merchandise, such as valid credit card numbers or passable IDs, or sharing with the group new or unique tips and techniques for committing fraud. Any of the administrators could mete out punishment to members disloyal to the organization \' \' as well, according to the criminal complaint. Christie says Appleyard was pretty much the primary enforcer. He might out an untrustworthy member, and even threaten that wayward individual with physical harm. Such was the case in February 2003, according to the complaint, at least. One Shadowcrew member, who \'s identified in court documents only by his nic, CCSupplier, failed to refund money to Shadowcrew members from business transactions that were not spelled out in the indictment. The Secret Service says the incident had something to do with counterfeit card-making equipment, but would provide no other details. Christie says CCSupplier may have pushed shoddy gear on the group. Whatever the transgression, Appleyard punished CCSupplier by posting the person \'s real name, address and phone number on the Shadowcrew Web site. And Appleyard may have threatened the member in December 2003. The threat was such that it invoked concern that Black Ops might physically harm this other individual, according to the complaint. Christie adds that the way in which the crew conducted its business shows it was highly structured and very well organized. And very efficient. Baseline stitched together this depiction of how the organization appears to have conducted its business, using the criminal complaint; the indictment against Mantovani, Appleyard and others; and an affidavit filed by Secret Service Special Agent Matthew Ferrante against alleged Shadowcrew vendor Nicolas Jacobsen, who in February pleaded guilty to hacking into T-Mobile \'s computer systems. T-Mobile says 400 accounts were accessed, one of which, according to the New York Post , may have belonged to social heiress Paris Hilton. T-Mobile says it \'s investigating the incident. Once a vendor came into possession of stolen goods such as credit card numbers or identity papers, the merchandise had to be vetted by a reviewer. If the goods were in electronic formats, the vendor could just send the product in a file to an inspector such as Monchamp or Palacio. If the goods were actual plastic cards or paper documents, they had to be moved along through drop boxes at retail outlets such as a UPS or Kinko \'s store. Naturally, mailboxes were rented out to individuals using false names, according to the complaint. Crew members also changed the location of drop boxes regularly to avoid detection. Once in a reviewer \'s hands, the goods were scrutinized thoroughly. One procedure was the dump check, in which reviewers would hack into a retailer \'s cash register system. Frazzini, the former Secret Service agent, says hackers can enter through back doors used by technical support personnel to maintain or repair the system remotely. Once in, the reviewer could test a group of cards by entering nominal amounts, a dollar or two, against a few of the accounts to see if the charges were approved or declined. If the charges were accepted, says Christie, the reviewer would know that the dump of numbers was good. The reviewer would then write up and post detailed descriptions of the merchandise. For a driver \'s license or bank card, the quality of the photos, the hologram, the printing of names and numbers, the color scheme and the card thickness would be described, almost like a used book on Amazon might be described by its seller. The comments might be: \'This is the best I \'ve ever seen \' or \'This is a really good driver \'s license for people who are not looking too closely, \' Christie says. That level of detail. Once certified by a reviewer, goods would be put up for sale. Transactions usually involved just a handful of numbers at a time. But, on occasion, illicit goods got shipped in bulk. In May 2004, one Shadowcrew member moved 110,000 stolen credit card numbers, according to the indictment. And the value of each bank customer \'s credit card number? Not much. Special Agent Johnson says credit cards with 10,000 limits could sell for anywhere from 1 to 10 or more. Personal information is just as easily and cheaply trafficked. On Sept. 27, 2004, Mantovani allegedly transferred approximately 18 million e-mail addresses along with associated user names, passwords, dates of birth and other personal information. The selling price of each e-mail address and related information might be a few cents each, according to Mark Rasch, a senior vice president of security consultancy Solutionary and a former attorney in the Department of Justice \'s Export/Espionage and Fraud sectors. Credit cards, e-mails and other items were posted with prices on the Shadowcrew Web site. But vendors also had the option to sell their wares through an auction forum that worked much like eBay, according to Christie. Listings, such as three counterfeit Arizona driver \'s licenses or 1,000 stolen Visa credit card numbers, were posted to the forum, he says. The auction would open and a time would be given for when the last bid would be taken. Potential buyers came to the auction forum and progressively bid until that auction closed, with the item going to the highest bidder. Once a buy went down, according to court documents, a member would send payment using Western Union money transfers or electronic currency, such as e-Gold, to the seller. And, of course, the member might as well use a stolen card number to pay for the transfer, Christie points out. At e-Gold, they could even purchase gold bullion and transfer the bullion to other e-Gold account holders. The goal was to avoid holding on to cash. You don \'t want to keep a lot of it around, Frazzini says, because U.S. banks keep detailedrecords. Covering Their Tracks While the actions of some Shadowcrew operators were witnessed and others were recorded by wiretap devices the Secret Service used to monitor the group \'s data traffic, the Shadowcrew tried to hide what it was doing. For instance, Shadowcrew members used a free software program called Trillian to encrypt the instant messages they sent over the normally wide open Internet Relay Chat service or America Online \'s ICQ. The group also used proxy servers to make their online activities hard to trace. A proxy sits between a sending and a receiving server. When someone accesses a Web site through a proxy server, the site records the Internet Protocol (IP) address of the proxy, not the IP address of the computer that initiated the original Web request. That has the effect of hiding the IP address of a computer making a Web page request. Hackers tend to break into computers where there \'s a constant turnover of new users—think hotels or universities—and send their Web page requests through those machines. The use of proxies was often augmented by anonymizers, according to court documents. One type: a virtual private network that lets many computers connect to it at the same time. They all share one IP address, and if a person tries to trace a page request, he finds the IP address of the VPN, not the computer that initiated the session. The combination of instant messaging, proxy servers and anonymizers, says Steve Orrin, vice president of technology at security software supplier Watchfire, is definitely the measure that you would take if you wanted to hide your activities. The combination also made the Shadowcrew confident, maybe overconfident, about its ability to escape detection. But the Secret Service had a couple of aces in the hole as it began to dig in 2003. One was its ability to override the VPN defense. On the Secret Service-operated VPN that many of the Shadowcrew defendants used, the agency filtered traffic through software that could trap and trace its contents—basically capturing a message and stripping out and recording the sender \'s IP address. Then, using the publicly available Whois database, they could map those IP addresses back to the Internet service provider that owned and assigned the numbers. The provider would then be served with a subpoena that required it to disclose customer records and billing addresses. A second ace was a court-approved wiretap. Law-enforcement officials and Appleyard \'s lawyer both confirm that the Secret Service won a court order to use a wiretap to pick and record electronic messages between Shadowcrew members. Frazzini says most electronic wiretaps are software monitors placed on the servers of an Internet service. But the biggest break was securing the confidential informant, whom the Secret Service refuses to identify. They can get to you fairly easily, says Johnson of Web mobs once they, like the Mafia, spot a rat. The Secret Service, however, had strokes of bad luck as well. In fact, the investigation was nearly compromised three months before the agency moved to shut down the Shadowcrew. Nicolas Jacobsen, a vendor also known as Ethics, hacked into a database belonging to T-Mobile to grab information on T-Mobile \'s customers, and offer it for sale on a bulletin board called Muzzfuzz.com, according to an affidavit filed by the Secret Service in U.S. District Court in Los Angeles. Along the way, he stumbled onto an e-mail account belonging to Peter Cavicchia, one of the Secret Service \'s top cybersecurity agents. Cavicchia had been using the account to communicate with online criminals. You have to be crafty to deal with informants, Frazzini says. They can \'t very well communicate with you on your Secret Service e-mail account. But, he says, Cavicchia also was receiving documents mailed by the Secret Service. Ethics began monitoring Cavicchia, collecting Secret Service documents and recording Cavicchia \'s T-Mobile chat sessions. There he learned that at least one Shadowcrew member \'s ICQ number was under surveillance. Frazzini says it \'s an indication of the cat-and-mouse game that is part of the underworld of cyberspace. It \'s like rats running around out there, he says. And they got him. T-Mobile spokesman Peter Dobrow says the company had been working with the Secret Service since October 2003 to identify the hacker. Jacobsen pleaded guilty in February to one count of unauthorized access to a protected computer and recklessly causing damage. His sentencing is scheduled for May 16. His plea agreement has been sealed by the government, and his attorney, Greg Wesley of the Federal Public Defender \'s office in Los Angeles, will not discuss his case. But the Secret Service had made its way up the Shadowcrew organization chart—with its informant placed high in the hierarchy. That helped trap Ethics, according to the affidavit against Jacobsen. Tipped to the existence of the Secret Service documents by a Shadowcrew member, the informant got Ethics to confirm that he was the individual who had found the documents in Cavicchia \'s T-Mobile account. And the rats ran around again. A few days later, Ethics asked the informant for a proxy server so he could browse and log in to a site with the credentials of a USSS Agent. The informant provided a server controlled by the Service \'s Newark field office. So, the Secret Service was able to track Ethics tracking Cavicchia. The Law Closes In	With the help of the informant, the tracked IP addresses, the wiretap and other documents secured during the investigation, the Secret Service finally knew the Shadowcrew. And decided it was time to take it down.	The conversations on that October evening probably revolved around a head fake. Former U.S. Attorney Christie says it takes an urgent matter to get members of a group like this all online at the same time—an interesting topic such as a new method of gaining unauthorized access to bank account information, or another scam to rip people off. What you try to do is make it so interesting and so compelling that everyone who is requested to be online at the date and time is online, Christie explains. Whatever they were talking about, the suspects stayed at their keyboards until law-enforcement officials showed up on their doorsteps. Given the nature of a Web mob, all the knocks had to come at the same time. It \'s very easy for a bad guy on an Internet case to be able to contact other bad guys on a moment \'s notice, says Special Agent Johnson. He can be thousands of miles away—in a different time zone—but if [a criminal gets] an instant message saying \'clean out your hard drive, stow the cash, \' then the element of surprise is not on your side. But even with crew members under arrest, the Secret Service didn \'t immediately pull down the group \'s Web site. Timeline: Cybercrime Some of the Most Infamous Computer Crimes Have Happened in the Past Five Years. A look back at significant attacks launched from the U.S. and overseas, and the steps—and stings—the Federal Bureau of Investigation and the U.S. Secret Service have taken to catch online fraudsters. Investigators replaced it for a few days with a warning: Activities by Shadowcrew members are being investigated by the United States Secret Service. Under a photograph of hands clutching the bars of a jail cell, the Secret Service listed the charges Shadowcrew members face, and called on visitors to turn themselves in: Contact your local United States Secret Service field office before we contact you!!! Prevention and Defense Shadowcrew may have been well organized, but it was neither the most skilled nor the most dangerous of the Web mobs.	John Pironti, a security analyst with Unisys, the 5.8 billion computer and services provider, calls the Shadowcrew a mid-tier player ... whose bark is worse than its bite. Russian criminals, by comparison, managed to roam around for up to five years inside the computer systems of Citibank during the 1990s, Pironti says. But the ease with which groups like Shadowcrew and Stealthdivision appear and disappear threatens businesses already scrambling to secure their networks from spyware and phishing attacks. Countries in Eastern Europe, for example, offer an endless supply of technically skilled people who are unemployed and need money, which creates a big challenge for the Secret Service. Such countries may have underdeveloped legal structures or lack treaties with the U.S. And, notes Jody Westby of PricewaterhouseCoopers, they have little interest in helping a country as rich as the U.S. stop cybercrime if their own people are underfed or underemployed. The markets for the type of information collected by Shadowcrew have grown more sophisticated just in the last six months, notes John Watters, CEO of the security consultant iDefense. Prices are now differentiated based on the security of the country where the credit card was stolen, the issuer of the credit card and the owner of the bank account in question. They \'ll pay more for a product where they think they can get a higher margin, he says. Meanwhile, the electronic infrastructure that could help catch Web mobsters does not yet exist. Technology experts such as Jevans of the Anti-Phishing Working Group call for better filtering and authentication schemes to identify the true senders of e-mails. They want a standardized way of reporting attacks to both companies and law enforcement. They want businesses to police their own domain names (or outsource the job), which would stop crooks from creating variants of those names to use as fake Web addresses to lure people into giving away their identities. Jevans believes technology vendors are not providing the tools companies need to fight cybercrime. He notes there are 40 security toolbars for blocking pop-up ads and other problems with browsers. Yet there is no comprehensive model for understanding how security threats evolve, either technically or across geographies. The lack of any sort of a technological silver bullet means companies are uncertain of where to spend money to protect themselves, according to Jon Oltsik, a senior analyst with the Enterprise Strategy Group, a technology market research firm. In January, Oltsik \'s firm published a survey of 251 information-technology professionals working in over 18 industries. Only 64% claimed their companies had invested highly in securing the perimeters of their networks, and 39% in internal network security. Yet, two-thirds were attacked by an automated worm at least once in the last year. Sometimes, says Gartner \'s Pescatore, it \'s easier just to pay the cost of fraud. One of his clients, whom he describes as a major bank, is reimbursing customers for thefts caused by phishing attacks at the rate of 1 million per month. Security experts agree that groups like Shadowcrew will continue to spring up because there \'s money to be made and these groups make it so easy for people to profit. They don \'t have to be a specialist in all the different areas of fraud and other criminal conduct—hacking, what have you—in order to be successful, Christie says. I \'m a specialist at hacking. You \'re a specialist in fake ID. This other guy \'s a specialist in Internet fraud. Well, you know, we can get together and we can help each other in the areas where we don \'t have a particular specialty, so that all of us can commit all different types of criminal conduct. And we can learn from each other. But so far, from what the Secret Service has discovered, no former members of the Shadowcrew have joined a new Web mob. Shadowcrew and Law Enforcement: Player Roster March 7, 2005 By Deborah Gage Job titles drawn from an indictment issued by a grand jury sitting for the District of New Jersey in Newark. SHADOWCREW Andrew Mantovani (a.k.a. Deck, a.k.a. d3ck, a.k.a. BlahBlahBlahSTFU, a.k.a. DeckerdIsMissin, a.k.a. ThnkYouPleaseDie) Administrator Mantovani allegedly helped found the Shadowcrew around August 2002 and is said to be a member of its governing council. He and other Shadowcrew leaders controlled the direction of the group and handled day-to-day decisions, according to the indictment. He has pleaded not guilty to one count of conspiracy and three counts of fraud. David Appleyard (a.k.a. Black Ops, a.k.a. BlackBag Tricks) Administrator	Appleyard is believed by law enforcement to be a member of the governing council. He is accused of serving as the Shadowcrew \'s enforcer, punishing members who, for example, misrepresented the goods they sold. Appleyard is in discussion with the U.S. Attorney \'s Office in New Jersey, says his lawyer. Omar Dhanani (a.k.a. Voleur, a.k.a. Jaeden) Money Launderer Dhanani is accused of laundering money for Shadowcrew members for a fee that works out to 10% of the funds processed. Dhanani \'s attorney says his client has not entered a plea and that he and his client are talking to the U.S. Attorney about a settlement. Rogerio Rodrigues (a.k.a. Kerberos, a.k.a. Empire_Kerberos) Reviewer Rodrigues is accused of reviewing, or evaluating the quality of, products such as counterfeit ID cards for the Shadowcrew. Rodrigues has pleaded not guilty. Nicolas Jacobsen (a.k.a. Ethics) Vendor Jacobsen is accused of offering stolen phone numbers and Social Security numbers to Shadowcrew members. According to the Secret Service, he exposed confidential documents by hacking into the systems of wireless service T-Mobile and grabbing a Secret Service agent \'s e-mail. Jacobsen pleaded guilty to gaining unauthorized access to a protected computer and recklessly causing at least 5,000 in loss to one or more victims, including T-Mobile. LAW ENFORCEMENT Scott Christie Former Assistant U.S. Attorney	U.S. Attorney \'s Office	Information and Administrative Services	Christie headed the Computer Hacking and Intellectual Property Section and was the lead prosecutor in the Shadowcrew case. Christie left the Attorney \'s Office last year and is now a partner with McCarter & English, a corporate law firm. Larry Johnson Special Agent in Charge, Criminal Investigative Division Secret Service Johnson leads the division that monitored and supported the Shadowcrew investigation from the agency \'s offices in Washington, D.C. Christopher Painter Deputy Chief of Computer Crime and Intellectual Property Section U.S. Department of Justice Painter \'s section supported the Shadowcrew investigation by obtaining court approvals for Secret Service actions. He once prosecuted notorious phone-freak and network hacker Kevin Mitnick. George Reitas Special Agent U.S. Secret Service Reitas filed the criminal complaint against 10 members of the group, including Mantovani and Appleyard. He broke down how the group was organized and how the Secret Service was able to gather evidence against the defendants. Peter Cavicchia Former Special Agent U.S. Secret Service Cavicchia unintentionally exposed Secret Service documents to the Shadowcrew. He accessed a Secret Service mail server over a computer connected via T-Mobile wireless Internet access. That exposed messages coming to his personal T-Mobile e-mail account. Cavicchia has since left the agency. Planner: Calculating the Costs of a Fraud Prevention System March 7, 2005	Online fraud is not a big business risk for your major banking operation. It \'s the biggest. It \'s your most perplexing business challenge, too. How do you solve problems that mostly originate outside of your highly secure system? How do you introduce security enhancements without frustrating—and losing—customers? If you \'re waiting for the perfect anti-fraud system, stop. Battling online fraud is a game of cat and mouse, says Eric Greenberg, chief technical officer of NetFrameworks, a Web security consultancy in McLean, Va. Reinvent your mousetrap as often as the phishers, pharmers and other online fraudsters change their schemes. Tackle the challenge with business intelligence, technology and good old-fashioned marketing. A security consultant will help your analysts map out an implementation strategy that balances improvements with customer education. Part of that strategy will be a pilot program of customers using secure-authentication tokens—palm-sized devices that randomly generate an on-the-go password. Help your customers by pushing software services that will better protect them. Premium spam software, for example, can be offered as a free download, with costs easily underwritten by you. Invest in a monthly fraud-detection service that tracks suspicious Web traffic and domain registrations. And consider requiring an extra password for money transfers or payments above a certain amount. Work directly with your customers, promoting security awareness and services on their end, and educating them on the new hoops they will have to jump through on your end. You really need to challenge the consumer, says Gregg Mastores, senior security analyst at spam software specialist Sophos Inc. A lot of people are starting to think the long-term viability of Web transactions may be at stake. To read the details behind this planner and fill in your own numbers, buy the spreadsheet. Base Technologies March 7, 2005 It doesn \'t take much to get an organized cybercrime ring going. Below is a list of technologies that the U.S. Secret Service and security experts say have been used by the Shadowcrew and similar organizations to buy and sell stolen credit, debit and identification cards. APPLICATION PRODUCT SUPPLIER Instant messaging ICQ, AIM America Online Chat mIRC Freeware Encryption software Trillian Cerulean Studios Payment handling Money Transfer, e-Gold Western Union, e-Gold Ltd. Virtual private network OpenVPN Freeware Forums, message boards YaBB Freeware	Source: Criminal complaint against Shadowcrew members filed in U.S. District Court in Newark, N.J.; Watchfire. Cybercrime \'s Most Wanted March 7, 2005 Shadowcrew Shut down: October 2004 Trafficked in: Stolen and counterfeit identification Twenty-eight people were arrested when federal agents seized control of this Web site. The Secret Service says the Shadowcrew had 4,000 members and was the largest, the most popular and the best organized of the cybercrime groups at the time. The group promoted malicious hacking, Internet fraud and electronic theft, the agency says. Carderplanet Shut down: August 2004 Trafficked in: Credit card numbers The world \'s premier credit-card hacking Web site until it was put out of business, according to Virginia security consultancy iDefense. The site was predominantly in Russian and suffered from outages, possibly caused by rival carding groups or aggrieved corporations and governments. The Secret Service \'s confidential informant was a high-ranking member of both the Shadowcrew and Carderplanet, according to an affidavit filed in U.S. District Court in Los Angeles. Stealthdivision Shut down: late 2004 Trafficked in: Stolen and counterfeit identification, credit cards An English-language site where Shadowcrew members tried to regroup after the Secret Service closed Shadowcrew.com. According to iDefense, the site was founded by a longtime Carderplanet member known as Scarface to replace Carderplanet. The security firm says the site was hosted in Malaysia and had around 320 members as of July. A person named Scarface, a.k.a. Beau Anthony Franks, was part of the group arrested during the Shadowcrew takedown. Franks \' lawyer will not discuss the case. Darkprofits Shut down: Date unknown Trafficked in: Anonymity Another of the cybercrime groups investigated by the Secret Service. In late 2003, the group was targeted by the creators of the Mimail.C worm. Mimail.C was programmed to direct infected computers to launch denial-of-service attacks against Darkprofits \' domains, which specialized in credit card fraud and ways to maintain anonymity online. That worm also harvested information—possibly passwords—from browser windows on infected computers to forward to predetermined e-mailaddresses. boatfactory Shut down: Date unknown Trafficked in: Credit card numbers, passports The alleged operator of the site, a Ukranian citizen named Roman Vega, a.k.a. Boa, was extradited in June from Cyprus to Northern California, where he is awaiting trial. He is accused of causing losses to credit card issuers in excess of 2.5 million. Vega has pleaded not guilty to wire fraud, the use of unauthorized access devices with intent to defraud, and aiding and abetting. Muzzfuzz Shut down: 2004 Trafficked in: Credit card numbers, Social Security numbers Described by the Secret Service as an Internet bulletin board for buying, posting and sharing hacks and credit card numbers, and for facilitating identity theft and fraud. It is where alleged Shadowcrew vendor Nicolas Jacobsen is accused of posting phone numbers and Social Security numbers obtained by hacking T-Mobile \'s computer system.Sources: iDefense, court documents, Baseline reporting Gotcha!: Hack Attacks March 7, 2005 By David F. Carr	Many of today \'s computer security problems aren \'t really new - just trickier, nastier and more pervasive. Problem: Forging or spoofing e-mail addresses, so that messages appear to come from your Internet domain when they do not. Resolution: Monitor bouncebacks to your e-mail servers. If an attacker is sending out hundreds or thousands of messages that appear to come from your domain, they \'re likely to target some bad addresses. So analyze e-mail messages that come back to you with subject lines such as Mail delivery failed: returning message to sender, recommends Johannes Ullrich of the SANS Internet Storm Center. Inspect them for clues for where the e-mail actually originated, such as routing data in the message header. The content of the message also clues you in to the nature of the scam. Another good practice is to establish an e-mail address where consumers can send you examples of suspected phishing attacks. A standard alias used by institutions such as banks to receive such tips is spoof, as in spoof@legitcompany.com. In the long term, this problem may be solved by fundamental changes in the Internet infrastructure or by educating consumers on how to verify the digital signature on a message. Problem: A Web site masquerades as a legitimate one-yours. Resolution: Identify fake sites and alert your customers. You can \'t stop phantom sites from being constructed. But you have to keep your antennae up. Log the referrer header, part of the invisible data automatically transmitted to your Web server, when a user clicks through or is forwarded to your site. Because faked sites often only amount to a page or two of content, designed to grab personal information, the unsuspecting visitor is often redirected to the legitimate site when the dirty work is done. So, watching whether traffic is coming in from unknown sites lets you identify suspicious activity and corrupt sites. Once you discover a criminal site, you can start displaying a warning to consumers who are referred from that address-giving them a chance to cancel credit cards or take other protective measures now that they know they \'ve been scammed. Unfortunately, these scam sites are moving targets, often located temporarily on the hard drive of some unsuspecting cable modem user. Problem: User names and passwords are the main line of defense. Resolution: Consider going beyond user names and reusable passwords to authenticate visitors. Alternatives include one-time passwords, hardware security tokens, digital certificates, and identity verification over non-Internet channels (such as a call to the cell phone number in a user \'s profile). For consumer applications, businesses have traditionally been reluctant to use anything more complicated than a password for fear of scaring away customers. But consumers often use the same user name and password for multiple sites, making it easy for keyboard loggers and phishers to gather names and passwords that can be used to open doors to many sites. The proliferation of these schemes is also having an impact on consumer attitudes-60% of those surveyed told Gartner they want the option of using additional security measures, and 19% would accept additional security requirements as a condition of doing business. Certainly, businesses providing access over the Web to their internal systems should consider providing employees with something like RSA Security \'s SecurID devices, which generate one-time passwords that change every half-minute or so. That way, if the airport Internet kiosk or Internet café PC from which a user logs on contains a keystroke logger, the password will have already expired before an evildoer can use it to try to penetrate corporate systems. Problem: Your servers and computers are turned into bots, controlled remotely to send spam, generate automated page requests that flood sites or participate in other forms of Internet attacks. Resolution: Block and patch. Keep your antivirus and intrusion detection systems in top shape. Keep current on patches to your operating systems and applications. Make sure your firewalls are strong, and filter executables out of incoming e-mail. If you leave yourself open for it, one compromised computer can be used to attack others until you have a botnet within your network wreaking havoc-or, maybe worse, quietly gathering corporate secrets. Also set your corporate firewall to block Internet Relay Chat connections, which attackers frequently use to send instructions to and collect data from their bots. Don \'t depend on protection only at the border of your network. While firewalls remain important, bots, worms and viruses often get past them through a virtual private network connection from an employee \'s home PC or a contractor \'s laptop that \'s plugged in inside the firewall while he \'s in the office. Security experts increasingly stress a defense in depth strategy that requires computers throughout your network to have their own protection, on the assumption that the outer defenses will be breached. If you provide remote access to employees, make sure their laptops and home PCs are kept clean, too. Timeline: Cybercrime March 7, 2005 By Deborah Gage Some of the most infamous computer crimes have occurred in just the last five years. Here is a look back at significant attacks launched from the U.S. and overseas and at law enforcement \'s attempts to stop them. 2000 May: Internet Fraud Complaint Center created by National White Collar Crime Center and FBI, to provide a clearinghouse for complaints about fraud perpetrated over the Internet. October: Microsoft acknowledges that a hacker has gained access to its internal corporate network. November: The FBI establishes a fake security start-up company in Seattle, then lures two Russian citizens to U.S. soil on the pretense of offering them jobs and arrests them. The Russians are accused of stealing credit card information, attempting to extort money from victims, and defrauding PayPal by using stolen credit cards to generate cash. 2001 March: The FBI warns that 40 companies in 20 states have been threatened with extortion by organized hacker groups from Russia and Ukraine. The agency claims that more than 1 million credit card numbers have been stolen by exploiting unpatched holes in Microsoft \'s Windows NT operating system. May: One year after launching, the Internet Fraud Complaint Center initiates Operation Cyberloss, in which 90 companies and individuals are charged with wire fraud, mail fraud, bank fraud, money laundering, and/or intellectual property right violations October: Congress passes the USA Patriot Act, which allows the Secret Service to form Electronic Crimes Task Forces in partnership with other agencies. These are intended to fight cyberattacks, particularly against telecommunications and financial services. 2002 April: FBI Director Robert Mueller creates a division to coordinate the agency \'s investigations of crimes involving the Internet, computer systems and networks. June: CardCops, an anti-fraud organization launched by former advertising executive Dan Clements, creates a database where consumers can check the numbers of compromised credit cards. According to InternetNews, the site is temporarily overwhelmed, receiving one request per second. August: Shadowcrew \'s Web site appears, with forums for information on trafficking in personal information. Buyers will find the forums well organised for purchasing products with the minimum of hassle, \' \' the site says, according to a cache retrieved from Google. Please sign up for the forums ... and help our community grow. August: Russian newspapers report that the territorial directorate of the Federal Security Service in Chelyabinsk has opened a case against FBI Special Agent Michael Schuler. Schuler helped lure two Russian citizens to Seattle to arrest them in November, 2000 (see above). He then accessed their computers, which were in Russia, to collect evidence that they were involved in Internet fraud. The FSB is quoted as saying the FBI used hackers \' methods against hackers and might also use them on other occasions. 2003 February: Security consultancy iDefense notes increasing activity by a Russian hacker group known as the Hang-Up Team, which has a new Web site devoted to administrative tools for attacking U.S. financial institutions. May: The Department of Justice announces more than 130 arrests in connection with Operation E-Con, an international effort to fight identity theft, software piracy, online auction scams and other Internet fraud. September: Authorities in Alba Julia, Romania, arrest Dan Marius Stefan, accused of scamming eBay users out of 500,000 through fake e-mails and Web sites. October: The cybercrime group Darkprofits is targeted by the Mimail.C worm, which is programmed to launch denial-of-service attacks against Darkprofits \' domains. November: Microsoft offers 250,000 each for information leading to the arrest and conviction of those responsible for unleashing the MSBlast.A worm and Sobig virus. November: The Justice Department announces more than 70 indictments and 125 convictions or arrests for phishing, hacking, spamming and other Internet fraud as part of Operation CyberSweep. 2004 March: The Hang-Up Team claims to have collected 5 gigabytes of data captured by logging the keystrokes of unwary computer users, according to iDefense. The team may unload stolen passwords and credit card numbers through the cybercrime site Carderplanet. June: Ukrainian Roman Vega, a.k.a. Boa, is extradited from Cyprus to Northern California and pleads not guilty to charges of wire fraud, use of unauthorized access devices with intent to defraud, and aiding and abetting. He is accused of operating www.boafactory.com, which buys and sells stolen credit cards and fake IDs. July: A new English-language site called Stealthdivision, founded by a member of Carderplanet to promote credit card fraud, has 320 members, according to iDefense. August: The Justice Department announces more than 160 investigations into Internet fraud. One target, Saad (alias Jay R.) Echouafni, became a fugitive after being indicted for allegedly hiring hackers to launch denial-of-service attacks against his competitors. The attacks also disrupted web sites for the Department of Homeland Security and Amazon.com. October: Secret Service seizes control of the Shadowcrew Web site and arrests 28 people in eight states and six countries. They plead not guilty to charges of conspiracy to defraud the United States. One man, Nicolas Jacobsen, is charged with hacking into a T-Mobile computer system, exposing confidential documents the Secret Service had e-mailed to an agent. December: Microsoft announces Digital PhishNet, a collaboration between banks, ISPs and others to compile data on phishing and share it with law-enforcement authorities. 2005 January: An attack on a server at Virginia \'s George Mason University compromises identification data on 32,000 students and staff. The University is a federally funded research center for Internet security and houses the Center for Secure Information Systems. February: Choicepoint acknowledges that people posing as legitimate businessmen accessed 144,778 consumer records, including credit reports and Social Security numbers. ChoicePoint says it has notified more than 700 people that their identity information was compromised. Watchfire: Is Your Site Seaworthy? March 7, 2005 By Todd Spangler	Watchfire \'s mission is to make sure a Web site won \'t be looted by pirates—or sink because the crew failed to make it watertight—as it sails the Internet \'s oceans. The company started nine years ago with a simple tool that found Web links that pointed to nonexistent pages. Now a 200-employee company, Watchfire has moved beyond fixing broken links to offer software and services that monitor a slew of potential problems with a company \'s sites. Its products can discover, for example, whether a site fails to meet government privacy regulations or if it \'s susceptible to someone stealing customer data using a hack that exploits a vulnerability in the way certain databases deliver packets of information to Web applications. If you have hundreds of thousands of Web pages, there \'s no way you can be sure they \'re conforming to policies or standards except by using automated tools such as those from Watchfire, says Brian Tretick, a principal with Ernst & Young who has used Watchfire products to analyze clients \' security and privacy practices. What \'s not so great about Watchfire? Customers say its pricing is inflexible. Analog Devices, a semiconductor maker in Norwood, Mass., pays 108,000 per year for WebXM Quality, which scans 300,000 pages and provides 36 reports on such areas as page-loading times. Janelle Oveson, Analog Devices \' e-business manager, says WebXM is a proven tool—it \'s reliable and it works. But she \'d prefer to purchase reports ŕ la carte, because her team doesn \'t use all of the product \'s features. Their pricing is an all-or-nothing proposition, Oveson says. Another caveat from customers: AppShield, the Web application firewall Watchfire obtained when it acquired Sanctum last year, is complex software and it can cause even an experienced technician to unintentionally cripple a Web site. That \'s because it allows only predefined behavior, so any Web applications written with nonstandard code may also be blocked. When we deployed AppShield, we thought we \'d created all the right rules, says Jason Painter, network security engineer at laser equipment maker Coherent. Then we turned it on and got complaints from our customers that the site wasn \'t working. That \'s why it \'s important that a security expert analyze the results of Watchfire \'s site-scanning tools in collaboration with a site \'s Web developers, says Paul Petersen, security manager for international law firm Baker & McKenzie: A security person alone probably wouldn \'t be able to interpret the results. Watchfire 880 Winter St., Waltham, MA 02451 (781) 810-1450 http://www.watchfire.com/ Ticker: Privately held Employees: 200 Peter McKay President and CEO Before joining the company in 2002, he was president of eCredit, a provider of online software for credit and collections companies. Also has served in management roles at Computer Associates and Parametric Technologies. Michael Weider CTO Founded the company in 1996. He previously co-founded Quadrillion, a semiconductor-testing software company. PRODUCTS WebXM scans and analyzes a Web site to check for security holes, broken links and other technical problems. AppScan is a similar tool for testing the security of Web applications. AppShield is a firewall that lets only legitimate browser requests into a Web site. Reference Checks Coherent Jason Painter Network Security Engineer jason.painter@coherentinc.com Project: Laser-equipment maker in Santa Clara, Calif., adopted AppShield in 2000; the software protects applications on 12 publicly accessible Web servers. Analog Devices Janelle Oveson E-Business Manager janelle.oveson@analog.com Project: The semiconductor maker uses WebXM Quality to scan its site \'s 300,000 dynamically generated Web pages. Huntington National Bank Larry Seibel Dir., Information Security (614) 331-8140 Project: Regional bank based in Columbus, Ohio, uses AppScan as part of its development process to to find security vulnerabilities in online banking programs and other Web applications. Spherion George Prior Principal Web Engineer (202) 623-6462 Project: Consulting firm has used AppShield since late 2000 for a client in the government sector running Microsoft-based Web servers. Baker & McKenzie Paul Petersen Security Manager (312) 861-8800 Project: Chicago-based international law firm with 8,400 employees uses AppScan to analyze the structure of four client-facing sites and to check them for security vulnerabilities. Bentley College Traci Logan CIO (781) 891-3472 Project: Private college in Waltham, Mass., uses WebXM to test its 10,000-page site for broken links, browser incompatibility errors and other problems, as well as to check for noncompliance with various data accessibility and privacy laws. Executives listed here are all users of Watchfire \'s products. Their willingness to talk has been confirmed by Baseline. Financials Revenue: 30M to 50M annual run rate Funding to date: 42M Investors: Altamira, Banc of America Equity Partners, Goldman Sachs, Kodiak Venture Partners, Polaris Venture Partners, RBC Dain Rauscher, Sprout Group Competitors Coast Software, IBM, Kavado, Keynote Systems, Mercury Interactive, Microsoft, Segue Software, Teros, Vignette Key Customers Retail: Home Depot; Sears, Roebuck & Co. Financial: AXA Financial, Bank of America, Charles Schwab, H&R Block, Wells Fargo Pharmaceutical: GlaxoSmithKline, Merck, Novartis, Wyeth Pharmaceuticals Manufacturing: ChevronTexaco, John Deere, Procter & Gamble Company Milestones 1996 Founded as Tetranet Software in Kanata, Ontario 1999 Changes name to Watchfire 2001 Receives 25M in second-round funding 2002 Names Peter McKay president and CEO 2004 Acquires Web security software vendor Sanctum Sources: Company reports, Baseline research Copyright (c) 2005 Ziff Davis Media Inc. All Rights Reserved.",79);arrFiles[49]=new Array(82,"cybercrime/Feds 'banking' on financial industry.htm","2005-12-06","Feds   \\'banking  \\' on financial industry to tell us we  \\'re for real","Federal Financial Institutions Examination Council, FFIEC, banking, security, authentication, regulation, compliance, phishing, Internet security threats","U.S. regulators are demanding banks and other phish-friendly industries increase their online security within the next year. As usual, recommendations are loosely written and vendors are capitalizing on all the options.","Feds \'banking \' on financial industry to tell us we \'re for real By Niall McKay, Contributor	28 Nov 2005 | SearchSecurity.com Phishing, the act of extracting secret data through cleverly designed faux Web sites, is still raging despite declarations by some well-known security experts earlier this year that its popularity as a hacking tool would wane. Instead, it \'s morphed into more inventive scams and found new victims. In addition, hackers also continue to snatch identities and funds by hijacking domain name servers, carrying out man-in-the-middle attacks and installing Trojan horses or keystroke loggers through spyware, worms and viruses. To help reduce this type of crime, the Federal Financial Institutions Examination Council (FFIEC), an umbrella group of U.S. regulators that includes the Federal Reserve and the Federal Deposit Insurance Corp., recommended that banks increase their online security by 2006. In August, it published a set of guidelines for banks to improve customer authentication methods (particularly for new customers), secure the delivery channel for electronic transactions and supplement username and password logons with multifactor authentication methods. And they couldn \'t come at a better time. The FTC reports that both identity theft and Internet-related financial fraud is steeply rising, with formal complaints climbing from 161,896 in 2002 to 246,570 in the last year. Many of these attacks originate in countries in Eastern Europe and Africa, making it difficult for the authorities to find and prosecute the offenders. All the while, banks push customers to go paperless and switch to online banking. But with lawsuits like the one against Bank of America in February still looming, consumers continue to question if the convenience is worth the risk. In that lawsuit, Miami businessman Joe Lopez wants to recoup 90,000 from Bank of America Corp. because hackers captured his online banking credentials and moved his money to a Latvian bank. That is not to say that such guidelines will make it easier for the likes of Lopez to sue banks when their funds go astray. I imagine the banks will adopt contracts that have many of the same characteristics as the software vendors and thrust to burden of security onto the consumer, says Reid Skibell, a lawyer specializing in Internet security law at Davis Polk & Wardwell in New York. Firstly, they will put some disclaimers in their contract such as you have to change your password regularly. Solutions a go-go	All of this is good news for the security vendors, of course, who are suggesting everything from pennies-per-customer software using graphical passwords to 40-per-user keychain dongles that generate a new password for each transaction. For example, Santa Clara, Calif.-based startup Bharosa Inc. offers Authenticator, a low-cost product that encrypts passwords when they are entered in the browser using soft tokens and graphical passwords. We are incredibly paranoid... We have even had hackers call our own customer service lines to get password resets and we have had to develop quite sophisticated scripts to deal with them. Howard Koenig CEO, Citadon Meanwhile, at the other end of the spectrum is RSA Security Inc., which provides 20 to 40 tokens that generate a new password for each logon. Another company called Diversinet Corp. in Toronto sells software that uses a cell phone or PDA as the physical token. The user enters a PIN and the device relays a message to a back-end security application. Prudent corporations already are implementing the FFIEC recommendations well ahead of the 2006 deadline. Citadon Inc., a Web collaboration and project management company based in San Francisco, is already offering Bharosa \'s soft token products to clients such as Shell Oil Co. and General Electric Co. as well as its banking customers. We are incredibly paranoid about user authentication, says Howard Koenig, CEO of Citadon. We have even had hackers call our own customer service lines to get password resets and we have had to develop quite sophisticated scripts to deal with them. Numerous other vendors also are aligning their products as FFIEC compliant. PassMark Security Inc. uses the customer \'s computer as a second factor authentication by verifying its IP address with Bank of America \'s SiteKey services. SiteKey provides the user with pre-agreed phrases and an image. PassMark Security uses the customer \'s computer as a second factor authentication and is working with Bank of America on its SiteKey service. New customers will write a brief phrase during the registration process, says Betty Riess, a spokesperson for Bank of America. When they log on, they see the image that they selected, which tells that they are on the BoA Web site (and not a man-in-the-middle) and they choose their phrase which verifies their identity. Furthermore, users logging on from a new computer are issued a series of challenge questions to prevent fraud. Bharosa and companies such as StrikeForce provide server-side software that examine a machine \'s IP address and physical location and connection speed. StrikeForce \'s software also gives the bank the option of placing a call to the user \'s cellular phone to authenticate the transaction. Other vendors include TriCipher, which splits the credential information between the user, their access device and the bank \'s server making it difficult for hackers to intercept all information simultaneously, and Verid, which quizzes the individual to verify their identity. As with the flood of solutions that followed other data-security regulations like SOX and HIPAA, options are many. This is intentional, according to the Federal Reserve, which had a hand in FFIEC \'s creation. We issued guidelines and a timeframe of 2006, but we did not want to be overly prescriptive because the technology industry moves too fast, said Andrew Williams, a spokesperson with the Federal Reserve. All Rights Reserved, Copyright 2000 - 2005 , TechTarget",14);arrFiles[50]=new Array(83,"cybercrime/Malicious Keyloggers Run Rampant on Net.htm","2005-12-06","Malicious Keyloggers Run Rampant on Net","","","Malicious Keyloggers Run Rampant on Net November 28, 2005	ByPaul F. Roberts Keylogging programs are the epitome of online stealth, and they \'re also a mushrooming problem on the Internet, where identity and intellectual property thefts are fueling an explosion of key-capture tools. Reports of new keylogging programs soared higher this year, as part of a wave of multifunction malware with integrated keylogging features, according to VeriSign Inc. \'s security information company iDefense Inc. The programs often evade detection by anti-virus tools and can be difficult to detect once installed, experts warn. However, at least one anti-spyware company believes that reports about the danger posed by keyloggers are overstated. More than 6,000 keylogging programs will be released by the end of this year, according to projections by iDefense. That \'s an increase of 2,000 percent over the last five years, company officials said. Keyloggers have been around for years and are also sold as legitimate applications—often as monitoring tools for concerned parents or suspicious spouses—according to Ken Dunham, director of malicious code at iDefense, in Reston, Va. Earlier this year, police foiled a 420 million keylogger scam. Click here to read more. Security companies occasionally lock horns with makers of commercial keyloggers. For example, earlier this month, anti-spyware software maker Sunbelt Software Inc. was threatened with a lawsuit by RetroCoder Ltd., a U.K. company that was angry about Sunbelt listing RetroCoder \'s SpyMon keylogger in its threat database, according to a blog entry by Sunbelt President Alex Eckelberry in Clearwater, Fla. SpyMon \'s EULA (end-user license agreement) forbids anti-spyware and anti-virus companies from using or analyzing the program, and RetroCoder threatened to enforce that provision in European Union court unless the program was removed from the threat database, according to Sunbelt officials. Malicious keyloggers are increasingly part of modular programs that contain Trojan horse, spamming and remote control features, as well, Dunham said. Anti-virus companies have developed signatures that will stop many of those programs before they can be installed, but new programs with unique signatures are readily available from malicious code download sites. In some cases, the programs \' source code can be purchased so buyers can create their own keylogger variants, Dunham said. Keyloggers are particularly common in countries where online banking fraud is a problem, such as Brazil, said Joe Stewart, a senior security researcher at Lurhq Corp., in Chicago. The keyloggers are coupled with Trojan programs, such as the Banker and PWSteal families, and are programmed to spring to life when victims type the URL of a specific bank or banks into their Web browser or when they launch a Web page with a specific name, Stewart said. Organized gangs are taking over crime on the Web. Click here to read about some of the major players, how they work and how big a threat they really are. Keyloggers are also pouring out of countries in Eastern Europe that are less discriminating about what kind of log-in information they capture. China is a major source of Trojan and keylogger programs, such as Myfip, that are customized to steal intellectual property, such as Microsoft Corp. Word or CAD/CAM files, rather than personal or financial information, he said. Still, some take issue with the dire warnings about keylogging programs. Eckelberry used his blog to question iDefense \'s statistics on keylogging programs. He wrote that his company \'s researchers have identified only a couple dozen new keylogging programs since August, affecting only about 8,000 people. Check out eWEEK.com \'s Security Center for the latest security news, reviews and analysis. And for insights on security coverage around the Web, take a look at eWEEK.com Security Center Editor Larry Seltzer \'s Weblog. Copyright (c) 2005 Ziff Davis Media Inc. All Rights Reserved.",5);arrFiles[51]=new Array(84,"cybercrime/Police Foil $420 Million Keylogger Scam.htm","2005-12-06","Police Foil 420 Million Keylogger Scam","","","Police Foil 420 Million Keylogger Scam March 19, 2005	By Ian Betteridge , ExtremeiPod LONDON—The British Hi-Tech Crime Unit has foiled what would have been one of the biggest computer crimes in history, where thieves attempted to transfer 420 million from a London branch of Japanese bank Sumitomo Mitsui. The thieves are believed to have hacked into the bank \'s computer systems using information gathered from keylogger programs, which allowed them access to sensitive passwords and other account information. At present, it is not clear how the keyloggers were installed. Police have been investigating the case since last October, when bank security discovered that some computer systems had been compromised, and the National Hi-Tech Crimes Unit—a specialized police body that aims to combat computer crime—was called in. Organized gangs are taking over crime on the Web. Click here to read about some of the major players, how they work and how big a threat they really are. An Israeli man, Yeron Bolondi, was arrested in connection with the case in Israel after an attempt was made to transfer 29 million into an account there. Bolondi appeared in a Tel Aviv district court Thursday charged with attempted money laundering and deception, and was remanded in custody for at least a week. It is understood that Israeli police have been working closely with the British over the case. According to Takashi Morita, head of communications at Sumitomo Mitsui in Japan, the bank did not suffer any financial loss because of the raid, but Morita declined to comment any further as the case is still being investigated. If the raid had succeeded, it would have been the biggest bank theft in British history, easily eclipsing the previous record of 50 million stolen from Northern Ireland \'s Northern Bank last December—a raid believed by police to have been conducted by the IRA. The foiling of the raid is the latest in a string of successes for the National Hi-Tech Crime Unit, a group created in 2001 and staffed by police officers and computer experts from the armed forces, and Customs. A recent initiative, code-named Operation Blossom, targeted a network of computer software pirates and led to the arrests of eight people in Britain. Check out eWEEK.com \'s Security Center for the latest security news, reviews and analysis. And for insights on security coverage around the Web, take a look at eWEEK.com Security Center Editor Larry Seltzer \'s Weblog. Copyright (c) 2005 Ziff Davis Media Inc. All Rights Reserved.",4);arrFiles[52]=new Array(85,"cybercrime/The Real-Life Internet Sopranos.htm","2005-12-06","The Real-Life Internet Sopranos","","","Enterprise Security The Real-Life Internet Sopranos By Jack M. Germain December 2, 2005 7:00AM Internet crime lords passed a watershed ofsorts one year ago, according to Andrew Jaquith, senior analyst for theYankee Group. It was at that point that viruses, Trojans, and spamstarted to be linked with monetary payouts, he said. Computer securityexperts have taken note of a drastic upsurge in the intensity andcaliber of attacks in the past year. Welcometo the age of the Internet gangster. Gone are the days when youngcomputer nerds sat alone in their rooms figuring out how to break in totheir schools \' computer systems to change grades. Also fading intonostalgia are the times when hackers teamed up with small-time hoods topull off credit-card scams that victimized local banks. The days of spammers, phishers, and identity thieves -- the typical culprits of today \'s online crime stories -- are upon us. These criminals have created their own syndicates to invade your computers and crack your company \'s network security. Tony Soprano is a fictional crime boss, but his character has become amodern-day symbol of the somewhat glamorized image of life within acrime family. Does the Tony Soprano of today have a hand in Internetcrime? In a word, yes. Over the past several years, Internet security firms havediscovered strong connections to gangs in Eastern Europe that haveworldwide reach and operate with seeming impunity. Today \'s Internet criminals have extended the turf of whatlaw-enforcement agencies have traditionally called the Mafia. TheseInternet bad guys have adapted to new modes of crime, turning fromnumbers and narcotics rackets in the mid-20th century to Internetidentity theft and denial-of-service (DOS) attacks. Criminal Business Model Today \'s Internet hooligans follow a basic business model, according to Andrew Jaquith, senior analyst at the Yankee Group. While the size of the criminal organization might vary, the basic network-crime process involves four levels of expertise. It starts with vulnerability checkers. These computer engineerslook for entries into corporate networks. Once an opening is located,specialists create custom-written software to maximize thevulnerability. Then other specialists get into the act to use thecompromised systems as a base to locate other vulnerable computers. As a collection of compromised computer systems is established, otherprogrammers write software to place all the compromised computers underthe control of one master criminal, the fourth actor in the chain. The result of this strategy is what computer security experts identifyas a drastic upsurge in the intensity and caliber of network attacks.Internet crime lords passed a watershed of sorts one year ago, Jaquithsaid. It was at that point that viruses, Trojans, and spam started tobe linked with monetary payouts, he said. Before last year, spam, adware, and spyware antics wererelatively innocuous, being little more than an inconvenience tocomputer users. But 12 to 18 months ago, the folks that did thesethings realized that they could generate e-mail spam and martialdenial-of-service bots for extortion purposes, he said. The term botnet is slang for a network of remotely controlledcomputers that carry out instructions from one or more hackers. Thenewest viruses circulating on the Internet are able to scan a potentialhost computer for vulnerabilities, then take over that computer andadapt to its environment, propagating itself by connecting through theInternet to other potential hosts. The more compromised computers thereare linked together, the more valuable the botnet becomes. Given the existence of botnets that consist of thousands ofpersonal and enterprise computers, many Internet security experts areconvinced that Internet criminals are developing their own hierarchy,from traditional street runners or soldiers to a cadre of crimecaptains who report to higher-up dons. We hear that botnets are rentable by the hour now, saidJaquith, who pointed out that botnets have become hot commodities forInternet crime families. That phenomenon is certainly real, he said. Hotbed of Network Criminals Pick any geographic region where a lack of government control isthe norm, and you have the perfect setting for criminals to set up ahome base. For starters, look at Romania and the states of the formerSoviet Union, said Dmitri Alperovitch, principal research engineer atCipherTrust, an Internet security company. There is a 10-to-15-year evolution of hacking activity in that part ofthe world, he said. It is a place where that kind of activity is notpursued by local law enforcement. What was once a ragtag collection ofsecond-rate hackers has matured into a thriving community ofprofessional-class intrusion technicians. GeoTrust CEO Neal Creighton, whose company operates a global identity-verification program for e-mail systems, said sophisticated hackers have gravitated to Eastern Europe. Even Poland has a network of hackers operating with runners in the U.S., Creighton said. These hackers are getting organized more than ever. They are starting to move to other markets, he said, adding that fake auctions on eBay are becoming one of the most prevalent scams for cyber criminals from Eastern Europe. Members of the hacker community throughout that region, Alperovitch said, now are adapting to take advantage of the latest phishing scams. It \'s a natural transition taking place, he said. Phishing is the term applied to online schemes that attempt to lure people into giving up sensitive information -- such as passwords or credit card numbers -- by masquerading as trustworthy sources. A recent scam discovered by one of Creighton \'s security investigationslured people to a phony bank site, using an e-mail that directedaccount holders to click a link to update their information. Failure tocomply, warned the message, would result in the account being frozenfor security reasons. The operation seemed to be set up in Russia. The bad guys were running several dynamic name servers so whenone Web site was shut down, the operators simply routed consumers toother fake Web sites in Poland, said Creighton. Like the Sopranos Research by CipherTrust shows a close connection betweenphishing and crime syndicates. In an article titled Phishing: 21stCentury Organized Crime, the company outlined the process whereininformation gained through online scams is sold and the profits routedto international criminals. Tracking this criminal activity is difficult because, as theinformation crosses international borders, it is often outside thejurisdiction of any single nation \'s law-enforcement agencies. Thisconfusion gives Internet criminals an added advantage, the report says,buying them time to organize, work with peer groups, and launch moresophisticated attacks. Internet crime is just like the criminal activity portrayed on the HBO series The Sopranos ,said GeoTrust \'s Creighton. Many of the attacks revolve around extortionthat must be paid to protect against criminals trashing a company \'sbusiness reputation, he said. Like the TV Sopranos, family members operate on aneed-to-know-the-boss basis. People are controlling the street-levelsoldiers, but a lot of it is piecemeal, Creighton said. He also saidthat details are hidden so successfully by those controlling the scamsbehind the scenes that sometimes people working on the front linesmight not even realize that anything illegal is happening. Often, innocent work-at-home patrons get duped into doing thedirty grunt work in an Internet-based scam. Known as drops ormules, these street-level soldiers are usually recruited online atjob sites. This method of recruitment is both very typical and veryprevalent, according to CipherTrust \'s Alperovitch. In one kind of criminal strategy that could be called addresslaundering, recruited workers receive packages of merchandisepurchased through phishing scams and forward those packages to the nextlocation. They simply get paid for handling the merchandise and don \'tknow they are doing something illegal, he said. The mules are the bottom of the feeding chain in Internetcrime. They are recruited and handled by the next tier in theoperation, the mule herders. These are the people who place ads inlocal papers and on Web site job boards to recruit the mules. As part of a phishing scam, the mule herders distribute stolenaccount information to the mules, who think that they are working withlegitimate banks. They are instructed by the mule herders to go onlineto complete various banking transactions. Another part of the schemeinvolves sending the mules to withdraw funds from money access centersand to deposit the money into other company bank accounts. Law-enforcement agents cannot always trace the illegal activityto the culprits. Even if some workers get suspicious, they do not knowthe real identities of the herders who contact them via stolen phonecards and carefully camouflaged e-mail addresses. It is a very sophisticated operation, said Alperovitch.Runners in local areas are recruited to pick up money and relay itthrough Western Union and bank machines. If law enforcement closes inon these local underlings, the collared workers often have no knowledgeto trade with police. Sleeping with the Phishes The most prevalent type of phishing scam involves setting up asite that has the complete look and feel of an online bank or a popularInternet destination, like PayPal. Phishers send out e-mail to getunsuspecting users to log on and provide their account information,which is then stolen. Another common tactic is to entice customers to buy products atwhat will turn out to be a fake e-commerce store. A criminal will setup a phony Web site for a few weeks, collect orders, and then suddenlydisappear. One of the newest phishing trends to emerge has almost everybody in thesecurity industry concerned: Trojan phishing. So-called Trojanprograms, named after the horse of mythology that put the Greeks insideTroy \'s city walls, disguise themselves as beneficial files, butactually enable hackers to gain access to computers from remotelocations to steal account information directly from a computer. Some hackers use these Trojan-infected computers to set upnetworks of so-called zombie machines. The advantage to the hackeris a continuous data flow and little chance of detection, saidAlperovitch. The Trojans also give criminals a way in to install keylogging software, which is quickly becoming the tool of choice for Internet gangsters. A study released recently by the digital-infrastructure company VeriSign discovered thousands of different kinds of keylogging programs in operation, with potentially hundreds of thousands of computers infected. Keyloggers consist of coding that is secretly deployed andsilently installed on unsuspecting consumers \' computers. The softwarecan record every keystroke on infected systems and send thatinformation back to hackers automatically. Such programs often arepiggy-backed in phishing e-mail or spyware applications that are ableto elude antivirus software and firewalls. Remote Control Crime Some European and Asian governments are beginning to work withU.S. and British law enforcement agencies to fight back againstInternet crime conglomerates. But the hackers \' abilities to workthousands of miles from where the actual thefts occur give them a solidadvantage and a degree of anonymity. According to Alperovitch, U.S. and British agents are tryinghard to get other countries to cooperate in sharing criminalinformation to stop Internet crime. So far, that trust has been hard toestablish, mostly because many countries don \'t understand the severityof the problem, according to security experts. These Internet scammers can set up from foreign countriesusing stolen credit cards to establish accounts at various Web sitehosting companies, said Creighton. Then they can point those Webservers to other hacked servers, hijacking lots of Web servers alongthe way. Creighton and other experts said this type of remote operation keeps rolling from one distant server to another as banks catch up with them and shut them down. Meanwhile, the perpetrators never have to leave their homes. Server owners have no idea that this illegal activity is going on from their own servers, he said. GeoTrust \'s Creighton feels that Internet security firms aregradually turning the tide against criminals. We \'re seeing moreawareness in consumers, and software products are now able to warn Websurfers of unsafe Web sites. So there are a lot of solutions poppingup, he said. Phishing sites \' up-time is now being reduced to a saferlevel. CipherTrust \'s Alperovitch is less sure. We are seeing perpetrators moving to places where there is no law enforcement. In the history of online fraud and security breaches , solutions never solve much of the threat criminals pose, he said. The only real solution that has a chance of working, according to Alperovitch, is deterrence. That can only come from fear of incarceration, which is present in the Western world only. Elsewhere that is not apparent. © Copyright 2000-2005 NewsFactor Network. All rights reserved.",18);arrFiles[53]=new Array(86,"fam_sec/Amazon Wish Lists Expose Kids.htm","2005-12-06","Amazon Wish Lists Expose Kids","","Online gifting could provide all the info a predator could wish for.","www.internetnews.com/ec-news/article.php/3566901 Back toArticle Amazon Wish Lists Expose Kids	By Susan Kuchinskas	November 29, 2005 Amazon.com \'s wish list feature is a great way to let relatives know what a kid wants. But it \'s also potentially a great way for predators to connect with kids. Wish lists let anyone pick from the vast array of products on the site and arrange them on a personal page to make it easy for friends and family to easily select and buy something that won \'t be exchanged or sent to the thrift store after the holiday. Creating a wish list is easy. Users register or sign in, search for products and then click the Add to Wish List button. But would-be recipients of largess must provide their shipping addresses at registration, and, Amazon.com warns them, We will display your city and state to help your friends and family identify you. We won \'t, however, show your phone number or street address to others. While most people immediately bombard everyone they know with e-mails announcing their wish lists, for some reason, the online retailer seemed to think it important to allow users to search by name. Amazon.com didn \'t return calls requesting comment. Site visitors can search wish lists by name, presumably to see whether anyone they want to gift has set one up. However, it \'s relatively easy for a stranger to find a kid simply by searching for a common first name, then scrolling through the list to find those who have listed last names, cities and states. Clicking through to the wish list gives a good indication of how old the person is. For example, there \'s a girl named Latisha in Alabama who wants a tetherball set, and a little boy in Wisconsin named Austin who wants a Chicken Dance Elmo. If you \'re Margaret Lee and you live in a city, this isn \'t a big deal. But it \'s all too easy to get the address and phone number of someone with an unusual name living in a little town. If you have an uncommon name, and you have the first and last name of the parent, you can get an address and a MapQuest to their house, aid Donna Rice Hughes, president of Enough Is Enough , a national non-profit focused on making the Internet safe for kids and parents. No matter how old you are, online privacy and safety experts say it \'s a bad idea to publish your last name or other identifying details on the Internet. It \'s a very unsafe practice, said Rice Hughes, who wrote the book Kids Online: Protecting Your Children In Cyberspace. She added, We \'re finding more and more practices that appear to be okay and safe, but that remove all the barriers for an Internet predator to access a child. With online profiles and wish lists, a predator doesn \'t have to look very hard to find personal information about anyone. In April 2003, 11 groups led by the Electronic Privacy Information Center (EPIC) asked the Federal Trade Commission to look into Amazon.com \'s practice of letting kids post reviews of toys. Some included their full names, ages and even addresses with their reviews. EPIC said Amazon.com didn \'t manage and monitor its review process, nor was there any other mechanism by which it complied with the rules of the Children \'s Online Privacy Protection Act of 1998. But the FTC concluded that the site wasn \'t aimed at children and therefore didn \'t break the law. EPIC disagrees. Lillie Coney, an EPIC associate director specializing in children \'s privacy, said that in the case of wish lists, Amazon.com should discourage users from adding their last names. It would have been a good idea to the limit amount of information provided, such as last names, she said. If you \'re truly family or a friend, you already know that. You \'re trying to make sure there \'s some anonymity in there. Another online wish list service, Kaboodle, which is still in beta, lets users protect their wish lists with passwords if they choose. Google also has a wish list feature for its Froogle comparison-shopping service, and it follows these experts \' recommendations: It \'s searchable only by e-mail address, so that only people who already communicate with an individual can find his or her wish list. Each wish list is identified by a unique URL that can be e-mailed to family and friends. Moreover, on the wish list page, the giftee is identified only by that e-mail address. But Amazon \'s system is more accessible to anyone. As a company, they \'re thinking about service to their customers, said Coney, but they should have given a little more thought. Less information is always better. Rice Hughes said Amazon.com should at least passively warn parents about the dangers. It would be good, family-friendly policy to know let parents know that any type of personal information or the name of their child is fair game for anyone, she said. Amazon.com \'s own family-friendly brand may have given parents a false sense of security, according to Parry Aftab, an attorney specializing in Internet safety and author of The Parent \'s Guide to Protecting Your Children in Cyberspace. Parents should think before they click, she said. When they do things on the Internet on a site they trust, like Amazon.com, they don \'t realize that 700 million people on the Internet can see it. The issue isn \'t whether we can sue Amazon.com, Aftab said. It \'s whether Amazon.com can help parents understand what they should and shouldn \'t post. The bottom line, said these experts: Never post your last name online, no matter how old you are -- or what you want for the holidays. Copyright 2005 Jupitermedia Corporation All Rights Reserved.",10);arrFiles[54]=new Array(87,"fam_sec/How to Protect Your Kids from the Internet Predator.htm","2005-12-06","How to Protect Your Kids from the Internet Predator","","","How to Protect Your Kids from the Internet Predator From Marcy Zitz ,	Your Guide to Family Internet . FREE Newsletter. Sign Up Now! Internet Safety The Internet is a wonderful tool, but it also has its downside.Predators roam the Internet looking for children that want and needattention. So how do you protect your kids? Your first line of defense is to be open with your children anddiscuss the dangers of the Internet. You probably tell your kids allthe time, Don \'t talk to strangers, but when they go into a chat room,you allow them to talk to strangers. A predator \'s typing looks exactlythe same as a fifteen-year-old \'s typing. The only difference is thatthe predator is trying to gain your child \'s confidence. After he gainsthe child \'s confidence, he will talk them into being secretive. A youngimpressionable teen trying to gain his independence is no match forthese masters. Your teen may at some point feel there is danger, but hemay not want to tell his parents for fear of being punished. Even random conversations can get a child into trouble without knowing it. An online conversation may go something like this: Poohbear105: We won our softball game today! Dillan955: Congrats! What team do you play for? Poohbear105: I play for the Jonestown Wildcats. Dillan955: Cool, my team is Centerville Sluggers I play 2nd base Poohbear105: I play 3rd base Dillan955: We haven \'t started playing yet it is too cold here in northeast PA Poohbear105: I hate the cold I am so glad I live in FL Dillan955: I can \'t wait for Tuesday it is our first game	Poohbear105: Cool! I have a game on Tuesday too Poohbear doesn \'t realize it but she just told Dillan what townshe lives in and where she will be next Tuesday. She also told him whatteam she plays for and what position. It is fairly simple to find outthe game schedule. Poohbear could have a visitor at her next game. Remember that parents are not immune to the danger either. Itis easy to trust someone that you have talked to for a long time. Eventhough you have never met the person face to face, you feel as thoughyou know them. Over time, little bits of information slip. All theselittle bits of information can add up to telling someone your name,address, telephone number, neighbors names and addresses, your work andhome schedule, and more. You will have your guard up about giving toomuch information. You will need to give your children constant reminders thattheir online friends may not really be as they seem. Also, constantreminders not to give out personal information are essential. Print outand sign an agreement that you and your child will stay safe and what your family \'s answers will be when asked specific questions.	©2005 About, Inc., A part of the New York Times Company . All rights reserved.",5);arrFiles[55]=new Array(88,"hacking/Jacques' Hack Attack.htm","2005-12-08","8 Seconds to Infection - Jacques  \\' Hack Attack","","","8 Seconds to Infection - Jacques \' Hack Attack April 7th 2005 We \'re always telling you how important anti-virus and firewall software is for securing your home PC - the Internet is a dangerous place for unprotected PCs. Spencer Kelly met up with a reformed ex-hacker, who gave him a demonstration of just how much damage a worm or virus can do to your home computer.	Click Here to watch the video report (requires Windows Media Player).	Jacques Erasmus makes his living advising on computer security, helping to write software to repel hackers. His extensive experience comes from a less honourable past - as a hobby, he used to be a hacker himself. But he says that unlike him, today \'s hackers don \'t just do it for fun: Jacques Erasmus : The new breed of hackers are driven by money, that \'s their main motivation, extorting businesses and other institutions. A few years ago it was just guys doing it out of fun.	So how do these people, who presumably have day jobs related to computers, get together and decide to form a group of hackers? Jacques Erasmus : I think they mostly hang out in chat rooms and forums on the \'net, discuss hacking computer security and from these groups they \'ll find people that they think are suitable, with the right skill set, and they \'ll form a team, a crew.	Jacques wanted to show me just how risky it is to connect an unprotected PC to the \'net. We set up a poor Windows XP machine with no firewall or anti-virus software - connecting it to the Internet would be like throwing it into a lion pen with raw meat strapped to its hard drive. How long would it be before we were hit by something nasty on the net? Hours, minutes? As it turned out - eight seconds!	We were hit by Sasser, one of the fastest spreading worms on the \'net, and it wastes no time at all in taking over your PC. Within seconds of infection, our PC started downloading some strange programs, or payloads, from mysterious Internet addresses. These payloads are the programs that can take control of your machine and turn it into a remote controlled bot.	Our machine then started scanning random Internet addresses, looking for other vulnerable PCs to infect. Then Internet Explorer started downloading spyware. Within 5 minutes our PC was running so many malicious programs, that the CPU was running flat-out at 100% - and we weren \'t even touching it. Perhaps the most sinister thing about an infected PC, is that it can become part of a \'botnet \' - a network of seemingly innocent but infected machines whose combined processing power can be hired out to organized crime.	These botnets can comprise hundreds or thousands of zombie PCs, all awaiting instructions. One of the most common instructions would be to launch a concerted attack on a popular website - a DDOS (distributed denial of service attack), where major websites are flooded with repeated bogus requests from hundreds of zombie PCs. Overwhelmed by the traffic, the site goes down.	Several large websites, including Google, have already fallen victim to DDOS attacks. Jacques Erasmus : First is the extortion, where they \'ll phone a high profile website that has lots of visitors and makes money, and they \'ll say to them \'give us Ł100,000 or we \'ll take down your website for X amount of hours \'.	If the targeted website then fails to pay the money it is DDOSed to death. Another function of a remote-controlled PC is to report back all the keystrokes typed on its keyboard. This is thought to be how hackers recently obtained passwords to the systems of the Sumitomo Mitsui bank in London, and began electronically stealing funds. In this case, police foiled the scam and made an arrest . But following the money trail often proves difficult. Jacques Erasmus : I \'ve heard that these guys all set up Latvian bank accounts, which are pretty much untraceable. Latvia is the new Switzerland.	If you found a hole in software that millions of people use, and is very high profile, you can sell that to the highest bidder for perhaps one or two million dollars.	Of course, if you \'ve been a victim of hacking, it \'s no laughing matter - it certainly wasn \'t for our PC, which crashed completely in under 30 minutes.	It \'s interesting to note that although we were only hit by three worms in twenty-five minutes, the damage each of them did was enormous. All of it could have been prevented with anti-virus software and a firewall.",9);arrFiles[56]=new Array(89,"idtheft/Id_Theft_and_Spyware.htm","2005-12-05","Identity Theft and Spyware- The New Threat","","","Spyware Research and Database Learn About Online Privacy Threats Free Advice on Online & Offline Privacy Identity Theft and Spyware- The New Threat Index: Topics Covered What is Identity Theft? Real World Scenario Identity Theft and Spyware Spyware vs. Adware- Know the Difference Public Terminals and Spyware Monitor Your Credit Periodically Request Your Social Security Statement Use Cross-Cut Shredders Secure Your Snail Mail Watch your Snail Mail Opt-Out of Pre-Approved Credit Card Offers Protect your Information Guard Your Cards Add a Password Password Safety Watch For Spoofing Attacks Always Use Security Software Check Safety Hope on The Horizon Have you been targeted by identity theft? Disclaimer Contents What is Identity Theft? Identity theft is the wrongful taking of someone else \'s real world identity for the purpose of committing fraud. Typically the thief gets their hands on enough information to pretend to be someone else. The thief may open up fraudulent credit card accounts, apply for loans, or try to secure other property using the stolen identity. Some may even go as far as using your name to land a job and stick you with the taxes from the I.R.S. Perhaps the scariest aspect is that you could actually be arrested for a crime that someone else committed while using your identity. The Federal Trade Commission released a survey in September of 2003 showing that 27.3 million Americans have been victims of identity theft in the last five years, including 9.9 million people in the last year alone. That equates to approximately 4.6% of the U.S. population! According to the FTC survey, 2002 identity theft losses to businesses and financial institutions totaled nearly 48 billion and consumer victims reported 5 billion in out-of-pocket expenses. This is a growing problem. Real World Scenario We talked to a victim of identify theft to get a first hand look at what happens when identify theft strikes. For purposes of anonymity we will refer to our interviewee as Kim Smith. Kim explains that a few years ago she and her spouse applied for a mortgage on a home the planned to use as a summer vacation property. The house was modestly priced and the Smith \'s didn \'t foresee any problems getting the mortgage. They had stellar credit, good paying jobs, plenty of money in the bank and the amount of the mortgage was relatively small. They were told by their banker that getting their mortgage should be easy but at closing time they ran into major problems. It was scary and embarrassing, said Kim, We went to close on the home when the mortgage officer asked if us if we had any outstanding loans or credit card payments. To the best of our knowledge we didn’t have a single outstanding balance. We always paid our bills on time and we had no credit card debt. The mortgage officer then began asking Kim about various credit card accounts that had outstanding balances, an account at a hunting supply store and many other miscellaneous accounts. The balances ranged from a few hundred dollars to several thousand on major credit cards. This thief had real gall. He actually applied for the credit cards using the name Kimball, a derivation of my own first name. To add insult to injury he actually paid the minimum balance of some of the accounts for a couple of months. At first this made the investigators skeptical, after all why would a thief pay anything on the balance? Fortunately the story has a happy ending. The Smith \'s did manage to get their mortgage and immediately contacted authorities after learning of the identity fraud. The individual who had stolen her identity was later apprehended and received a prison term. According to authorities she was only one of more then a dozen identities they had assumed in order to open up fraudulent credit card accounts. It has certainly caused us a lot of time, effort and money to track down this thief and cleaning up our credit report has taken years. The most frightening thing about the incident was that it was going on for months and we had no idea. It made me feel violated. According to the FTC it cost the average victim more than 1,000 to cope with the damage from identity theft. Identity Theft and Spyware Obviously one of the latest and most dangerous threats to privacy in the digital age lies at the doorstep of spyware. Spyware can be used to surreptitiously gather all types of confidential information and in most cases the user has no idea the information is being taken. This form of snoopware lets the spy access everything you do online including usernames, passwords, online shopping purchases and e-mail or chat correspondence. In the hands of an identity thief this type of information is a deadly treasure trove. Many of today \'s most popular spyware applications promise the ability to execute via remote installation. Remote installation is the ability to put a spyware program on a computer without having physical access to the machine. Obviously this is crossing a thin line into illegal behavior and this type of software should be classified as a Trojan horse. Nevertheless, these programs are sold every day to consumers who want to monitor their kids, employees, or spouse and perhaps to people that have more nefarious purposes in mind. While there are certainly legitimate uses for monitoring software we find it hard to believe there is any legitimate scenario where a parent or employer would need to use remote installation to install a monitoring program. Make no mistake that spyware can certainly be used to illegally obtain your personal information Spyware vs. Adware- Know the Difference It is also very important to understand the difference between spyware and adware (a.k.a. pestware). There has been a large outcry from consumers and privacy advocates over intrusive software and cookies that are in reality more of a nuisance than a security threat. This does not mean that adware is not a problem, but cookies and adware should not be treated on the same level as spyware. They are fundamentally different situations altogether and lumping them together dilutes the threat of real spyware. Adware generally refers to software that installs a reminder service or spawns targeted ads as you surf. These advertisements are referred to in the advertising industry as interstitials or simply pop-ups. They might also profile your surfing habits, shopping habits and most gather information in aggregate. In a recent decision in the case of U-Haul versus WhenU a judge determined that the use of adware was legal. In short it meant that WhenU was not violating trademarks by having their bundled software, SaveNow, display pop-up advertisements. We do believe that more legal precedents will be handed down and legislation will be enacted to control the use of adware that uses drive-by downloads and deceptive installation techniques, but until that time comes we urge users to read the End User License Agreement for any software before they install it and to educate themselves on the use of adware. Spyware, as we know it, is software used to monitor actual computer activity. As we mentioned before it can log your keystrokes which means whatever you do on your computer is open to the eyes of prying spies. This problem is greatly exacerbated in environments where different users have access to a single machine. For example, a local copy shop, a computer rental kiosk, a university or even a friend \'s home machine. These are typical targets for a thief who wants to quickly grab information from unsuspecting users. Public Terminals and Spyware One particular case stands out as a red flag for using public terminals. For over a year, unknown to people who used Internet terminals at Kinko \'s stores in a New York store, Juju Jiang was logging everything users typed including their passwords to financial institutions. Jiang had covertly installed, in at least a dozen Kinko \'s stores, spyware that logged keystrokes. He captured more than four hundred user names and passwords, using them to access and even open bank accounts online. This is a real world example underscoring the dangers of how spyware can be used to steal someone \'s identity. It is logical to conclude that more of this type of ID theft will occur because it is relatively easy to execute. A thief doesn \'t even have to be technically skilled to install a commercial keylogger and to retrieve your personal information. Once installation is deployed the thief can have information e-mailed back to them or the software will open up a backdoor where the spy can log into the machine and retrieve keystroke or snapshot logs. Consumers must exercise even more caution when using public computer systems and realize that in open computing environments there are situations that can leave them vulnerable. Monitor Your Credit It is absolutely critical that you monitor your credit report on a regular basis. If you find a change of address you did not initiate or financial accounts you did not apply for request a copy of your personal credit report. The credit report will include contact information for requesting an investigation of incorrect information. It \'s also important to watch your monthly billing statements for errors or unusual activity. In Kim Smith \'s case using a credit monitoring service would have alerted her to far in advance to the activities of the thief and saved her some embarrassment at closing time. After applying for a loan, credit card, rental or anything else that requires a credit report, request that your Social Security number on the application be truncated (x-ing out key numbers) or completely deleted and your original credit report be shredded before your eyes or returned to you after a decision has been made. A lender needs to retain only your name and credit score to justify a decision. It is worthy to note that in the FTC study on identity theft fifty-two percent of all ID theft victims, approximately 5 million people, discovered that they were victims of identity theft by monitoring their accounts. You can request credit reports at the sites below: EquiFax Experian ConsumerInfo CreditReporting.Com ... other credit monitoring solutions ... Periodically Request Your Social Security Statement Along with checking out credit reports U.S. consumers should request their Social Security Earnings and Benefit Statement at least once a year to make sure there is no sign of fraud. You can do this online by surfing to here . The statement will come via snail mail and is not sent online. If you aren \'t comfortable doing it online you can use Form SSA-7004 located here . Use Cross-Cut Shredders You should shred all old bank and credit statements, as well as pre-approved credit-card offers, before throwing them into the trash. Always use a crosscut shredder. Crosscut shredders cost more than regular shredders but do a better job. Although a cross cut shredder is more expensive and may need more maintenance, it offers some advantages that make it a better choice. A cross cut shredder cuts up waste paper in two directions: vertically and horizontally. This provides you more security for the shredded documents. The shredded paper is in tiny pieces instead of strips which make reconstruction of the documents a lot more difficult.	Example shredder products: Fellowes S70C , PS80C , ROYAL AG10X , Other shredders... Secure Your Snail Mail One way identity thieves grab information is simply by stealing it out of mailboxes. You can use a locking mailbox to prevent theft of mail sent to you. You also might consider dropping off your mail inside the post office whenever you send out bills to ensure mail is never intercepted. Thieves will go as far as to steal checks sent out by consumers and using chemical washes to remove ink. If you \'re planning to be away from home and can \'t pick up your mail, call the U.S. Postal Service to request a vacation hold on your mail. Watch your Snail Mail Be sure to tear up all pre-approved credit card offers and pay close attention to your credit card billing cycles. If a credit-card bill is more than a few days late, call the issuer and ask if there have been any inquiries or changes to your account. One of the most common tricks ID thieves use is to simply change the snail mail address of your accounts.	If you don \'t want to receive unsolicited credit card applications in the mail, by law you can demand that your name be removed from the marketing lists that credit bureaus sell to credit grantors looking for new customers. Opt-Out of Pre-Approved Credit Card Offers The Fair Credit Reporting Act gives U.S. consumers the right to opt out or stop credit bureaus from providing your name and address for marketing lists for credit or insurance offers. Call toll-free 1-888-5-OPT-OUT (1-888-567-8688), a special phone number set up by the nation \'s top three credit bureaus and another nationwide company called Innovis. When you call this number, you can opt out of these lists for two years or opt out permanently. We recommend the permanent opt-out route. Be advised that if you want to permanently opt out you will receive a form, usually within in five (5) business days that you will have to return. They will also ask for your social security number on the call. The entire process takes about five minutes and is time well spent. Protect your Information Never give your credit-card number or personal information over the phone unless you have initiated the call and trust the business. It is critical that you don \'t reveal highly personal information, like social security numbers, on documents like bank checks. Nor should you let merchants write down your social security number as a form of identification on a check. The general rule of thumb about personal information is less is better. Guard Your Cards One easy way to protect yourself against identity theft is to limit the amount of confidential information you carry in your wallet or purse. You should not carry around bank account numbers; personal identification numbers (PINs), passwords, passports, birth certificates, and most importantly, Social Security cards. Leave them at home, preferably in a safe until they are needed. Add a Password Ask your financial institutions to add extra security protection to your financial accounts including your credit card, bank and phone accounts. Most will allow you to use an additional code or password (a number or word) when accessing your account. Do not use your mother \'s maiden name, Social Security Number, or date or birth, as these are easily obtained by identity thieves. See password safety below. Password Safety Avoid using easily available information like your mother \'s maiden name, your birth date, the last four digits of your SSN or your phone number, or a series of consecutive numbers or keyboard strokes.	If you use online banking or financial services never select a password that matches your username. This is the most common mistake- and the most easy to exploit.	Avoid using words that are in the dictionary. Hackers simply run a dictionary-attack where they rapidly scan through common words and attempt to brute force an account. Avoid adding a digit in front or at the end of a word or reversing a word (irish ->hsiri) are not good password choices. Crackers routinely try these combinations. Nor should you use the same password over and over. If a hacker should break one password, the rest of your information or files will be safe. If you have used the same password over and over- they will have no problem accessing more accounts. Never give your password to anyone and be sure to change passwords frequently.	If your store passwords locally on your machine be sure the software uses some type of strong encryption . Watch For Spoofing Attacks Spoofing frauds attempt to make surfers believe that they are receiving e-mail from a trusted source, or that they are securely connected to a trusted web site, when that is not the case. Spoofing is generally used as a means to convince individuals to give out personal or financial information by deception.	In E-mail spoofing the header of an e-mail appears to have originated from someone or somewhere other than the actual source. Spammers and criminals often use spoofing in an attempt to get recipients to open and possibly even respond to their mails.	Page Spoofing involves altering the return address in a web page so that it goes to the hacker \'s site rather than the legitimate site. This is accomplished by adding the hacker \'s address before the actual address in any e-mail, or page that has a request going back to the original site, often with a form that looks identical to the legitimate site.	A page spoof might look something like this: http://www.paypal.com@spiesrealdomain.com/index.html the domain will always resolve to the address AFTER the @ sign. If you were to surf to this web address and submit any information via a form it would go to the spy and not to PayPal. Try to get into the habit of visually inspecting addresses in your browser address location bar.	If you receive an e-mail requesting that you click here to update your account information, and then are redirected to a site that looks exactly like your ISP, or a site like EBay or PayPal, be on the alert. This is type of spoofing attack is increasingly more common and becoming more sophisticated. Don \'t click on the links in the e-mail. The safest way to investigate your account is to type in the domain name you want to reach directly into the browser address location bar and hit enter. Always Use Security Software As an informed Internet user it is absolutely vital that you keep your operating system up to date with that the latest patches . We also recommend that you are running three types of security software. We recommend a solid firewall , an anti-virus package , and an anti-spyware package . Naturally it is important to not only use these products but to keep them up-to-date with the latest definitions and patches. Don \'t be lulled into a false sense of safety though. Even with a strong defensive perimeter it is still possible to get hijacked or infected. Use caution and common sense. Above all: Don \'t panic . Check Safety Do not pre-print your checks with your social security number or your driver \'s license number. Never permit your credit card number to be written onto your checks. When you order new checks arrange to pick them up at the bank and not to be dropped off at your residence. If possible, never take more checks then you actually need when going out. Hope on The Horizon Starting in May of 2004, victims of identity theft will be able to alert banks, credit card companies and law enforcement with one call under a pilot program announced by the Financial Services Roundtable. The Financial Services Roundtable represents 100 institutions handling about 70 percent of the U.S. economy \'s financial transactions. They are creating an Identity Theft Assistance Center to help fight the rising incidence of the crime. The safest bet is to minimize your risks and practice good privacy. Have you been targeted by identity theft? Tell us your story so we can share it with other spywareguide.com readers. Your name will be kept anonymous. Disclaimer This article is provided for informational purposes. It is not intended as, nor should it be construed to be, legal, financial or other professional advice. Consult with your attorney or financial advisor to discuss any legal or financial issues involved with credit decisions. This article is copyright 2003 by SpywareGuide.com. It may not be reprinted without the express written consent of the author. © Copyright 2005, FaceTime Communications, Inc. All Rights Reserved. All site content is subject to disclaimer",27);arrFiles[57]=new Array(90,"phishing/Companies Forced to Fight Phishing.htm","2005-12-05","Companies Forced to Fight Phishing (washingtonpost.com)","","","PHISHING, PART TWO Companies Forced to Fight Phishing	By Brian Krebs washingtonpost.com Staff Writer	Friday, November 19, 2004; 6:53 AM Kate Trower never found out who was trying to trick her company \'s customers into giving up their credit card information, but she did learn about their taste in music. Trower, a fraud investigator for Atlanta-based Internet service provider EarthLink, chased the German phishers for months. The scammers built Web pages designed to look like an EarthLink-affiliated site, then sent e-mails to EarthLink customers, prompting recipients to offer up their private financial data and Internet account passwords. Every time the company shut one site down, another would pop up.	They earned their name by redirecting Web surfers who stumbled onto their half-built pages to the site of a German goth rock band. It may have been nothing more than a paean to their favorite music group, but it also allowed the phishers to keep an inventory of their dormant sites using nothing more than an Internet search engine. These guys would... use the rock band redirect to keep tabs on us in a way, Trower said. If the phishers clicked on the Web sites and discovered that they no longer led to the German band, they knew investigators had shut down the sites and were hot on their trail. Trower \'s search illustrates the lengths that businesses are going to in order to stop a form of fraud that uses their good names to steal. A 1,200 percent increase in attacks since January has forced the companies not only to redouble their efforts, but to change the way they use the Internet to communicate with their customers, each other and law enforcement officials. Without those changes, experts said, phishing will contribute to an erosion in consumer confidence at a time when online businesses cannot afford the loss. ISPs are the front-line infantry in the war against phishing. They are responsible for protecting their customers from fraud and making sure no one uses their networks to scam other companies. A year ago, each attack against EarthLink generated about 20,000 customer support calls at an average cost of 127,000 per incident, Trower said. At the time, the company battled approximately three new attacks each week. Now, thanks in part to investments in technology that can prevent customers from seeing bogus Web sites and e-mails, EarthLink gets around 300 phone calls and spends just under 5,000 per incident. Still, the nation \'s fourth-largest ISP encounters about 15 new phishing scams a month featuring e-mail that purports to come from its own service. It also remains among the top 10 most-targeted companies. Web of Deceit	Phishers now focus almost exclusively on banks and online shopping sites. During the past 10 months, nearly 60 percent of their attacks targeted Citibank or US Bank, according to the Anti-Phishing Working Group. EarthLink and America Online are the targets for about 3 percent of the scams. Phishers profit by stealing personal financial information and teaming up with international criminal syndicates that include computer hackers, virus writers and identity thieves. Working together, they fence the stolen data and cover their tracks by routing their e-mails and Web sites through multiple Internet hosts. Johannes Ullrich, chief technology officer at the SANS Internet Storm Center, said the hosts include home computers that have been infected with worms or viruses configured to relay spam. In other cases, the attackers break into unprotected PCs and install Web servers that run phishing sites off hijacked computers. The majority of those hosts are located in the United States, China, Taiwan, Korea and Russia, according to Websense, an Internet security firm in San Diego.	Investigators have even seen phishers advertise work at home scams that ask home computer users to conceal the phishers \' locations by forwarding money, stolen goods or Internet traffic to other countries, said Kevin E. Leininger, president of ICG Inc., a Princeton, N.J., company that helps companies track down cyber-criminals. Leininger said phishing poses a formidable challenge to law enforcement because it makes lucrative, coordinated, large-scale fraud appear to local investigators as small-time, disconnected cases of online thievery. Banking on Phishing	For their part, banks are pooling their resources. In September, members of the Financial Services Technology Consortium -- a group of banks, financial services firms, universities and government agencies -- began compiling a database of phishing sites that they plan to make accessible to banks and federal authorities. The goal is to allow investigators to share intelligence and quickly determine whom to contact at various ISPs and law enforcement agencies, said Catherine A. Allen, chief executive of the Banking Information Technology Secretariat. BITS is a sister group of the Financial Services Roundtable, which represents 100 institutions that handle 70 percent of the economy \'s financial transactions. The group focuses on e-commerce, payments and emerging financial services technologies. The database could help state and federal law enforcement initiate more investigations by linking geographically dispersed victims who lose money in the same scams. Federal authorities usually will prosecute a crime only if the victim loses more than 50,000, said Mark Rasch, a former prosecutor for the Justice Department \'s computer crimes and intellectual property section. In most cases, individual phishing victims lose far less than that. A private-sector anti-phishing database would complement the hundreds of fraud cases reported each day, said Dan Larkin, head of the FBI \'s Internet Crime Complaint Center in Morgantown, W.Va. That \'s really the role of our facility here -- packaging those complaints up as quick as we can and marketing the cases to law enforcement across the country, Larkin said. Unfortunately, the sophistication of these schemes is morphing constantly because the crooks are also sharing information on what works and what doesn \'t. Only a handful of people have been convicted for taking part in phishing scams, but Larkin said that a number of aggressive phishing investigations are underway. In September, the Justice Department, FBI, state and local police departments, and private companies kicked off an operation called Digital Phishnet to identify and catch phishers. Taking part in that broad investigation locally is the Virginia Cyber-Crime Strike Force, which includes four full-time FBI agents, a Virginia State Police trooper, and two investigators from the office of state Attorney General Jerry W. Kilgore (D). Several investigations have already yielded results. Among them:	* In late October, the U.S. Secret Service and overseas authorities announced the arrest of 28 people on suspicion of running Web sites that were designed to steal, sell and forge credit cards and identification documents. * In August, the FBI, the Federal Trade Commission and the Postal Inspection Service announced the arrests or convictions of more than 150 people in a nationwide crackdown on Internet fraud, including a Ukrainian man who allegedly used Internet chat rooms and his own Web site to buy and sell stolen credit card data. In addition, federal investigators now have stronger legal tools at their disposal. The Identity Theft Penalty Enhancement Act, signed into law by President Bush on July 15, prescribes stiff prison terms for those who use identity theft to commit other crimes. Catching Criticism	Banking customers are among phishers \' favorite marks, but some consumer advocates and security experts said banks are not investing enough money and other resources in fighting online fraud. Fran Maier, executive director and president of TRUSTe, a nonprofit privacy group in San Francisco, has spent several months trying to persuade the nation \'s largest financial institutions to pony up a few hundred thousand dollars each to fund a 10 million public-service ad campaign to alert consumers. So far, she said, some have expressed interest in the idea, though none has pledged funding. We have to go back to the advertising playbook by using reach and repetition through television, radio and billboards, Maier said. And it can \'t be done in just an e-mail or Web-based campaign, because that \'s exactly where people are getting phished. Marcus Sachs, a former White House cyber-security adviser and current director of the SANS Internet Storm Center, said marketing departments at many banks do not heed their companies \' own advice. Too often, he said, banks send e-mails to customers offering balance transfers and other deals by asking them to click on a Web site link and enter their information. If the corporate policy is never to send e-mails that contain links to Web sites asking for your personal information then these businesses need to work harder to normalize their behavior so that consumers will know what \'s abnormal, Sachs said. The fact is some banks still send out e-mails that look remarkably like phishing scams. Sachs said online merchants, banks and credit card companies need to invest in technologies used by most European banks that require customers to use one-time identity tokens or smart cards -- in addition to user names and passwords -- to get their financial information over the Web. For now, U.S. banks are relying on warning their customers about phishing through mailings sent with their monthly statements. They say that they never ask for personal information in an e-mail message. Citibank recently joined other financial institutions, including Suntrust Banks Inc. and Washington Mutual Inc., in posting fraud advisories on their Internet home pages. But some disenchanted customers are choosing the most effective phishing cure: no more online banking or shopping. Rhonda Gifford, 37, said she has had it with e-commerce after getting hooked by a phishing scam. Weeks after she entered her personal information at a faked PayPal site, fraudulent charges for adult Web sites and a new Internet account in Saskatchewan showed up on her credit card. The scammers also wired more than 800 out of the Olive Hill, Ky., resident \'s checking account via Western Union to somewhere in Pakistan. After she canceled her accounts and filed a fraud report with credit-reporting bureaus and local police, Gifford \'s bank suggested she refrain from online banking -- at least for a while. The bank told her that before too long, someone would probably try to open new lines of credit in her name. These days, she just waits for the next attack. I used to shop with my credit card online all the time for all sorts of different things that aren \'t available in this rural community, she said. Now, it \'s like, forget it, not any more.	© 2004 TechNews.com ©Copyright 1996- The Washington Post Company | UserAgreement and Privacy Policy | RightsandPermissions",13);arrFiles[58]=new Array(91,"safety/Microsoft and FTC Warn Internet Users of Zombie Computers.html","2005-12-01","Microsoft and FTC Warn Internet Users of Zombie Computers","","","Microsoft and FTC Warn Internet Users of Zombie Computers Date: Friday, 28 October 2005 @ 16:17:28 GMT - Topic: Microsoft Don’tGet Tricked on Halloween: Federal Trade Commission, Consumer Action andMicrosoft Warn Internet Users of Zombie Computers -- Microsoft logs 5million illegal commands to one quarantined zombie computer. Timingtheir effort to coincide with national Cyber Security Awareness Monthand Halloween, the U.S. Federal Trade Commission (FTC), Consumer Actionand Microsoft Corp. are urging consumers to protect themselves from the threat of “zombies,” computers that areinfected with malicious code so they can be controlled remotely byother people for illegal purposes. Through technological trickery,criminals can use these unconscious accomplices to send illegal spam,launch phishing campaigns to steal personal information, attack Websites and computers, or engage in other illegal activity. Unlike the zombies of B-movie imagination, which are easilyidentifiable by their typically gruesome appearance and menacinggroans, zombie computers are silent stalkers. People who use theInternet may never know that their computers have been compromised andturned into a conduit for sending millions of pieces of illegal spam orfacilitating other illegal activity. More than half of all spam is sentthrough infected computers, according to industry reports. (A graphical explanation of how zombies operate is available.) To combat the zombie threat, Microsoft today revealed some of thetechnological and legal maneuvers it has used to unmask the individualsusing several zombies to send spam. Microsoft investigatorsintentionally created a zombie computer, quarantined it to prevent itfrom actually sending spam messages, then carefully watched it for 20days while investigators tracked and traced all Internet communicationsthrough the infected computer. The statistics the investigators compiled were staggering. In lessthan three weeks, this single zombie received 5 million connectionrequests from spammers and 18 million spam messages advertising morethan 13,000 individual Web sites. Evidence gathered in this exercisecontributed to a lawsuit that has now identified 13 different spammingoperations.	This article comes from nForcersHQ.com : http://www.nforcershq.com/ The URL for this story is: : http://www.nforcershq.com/article4372.html",4);arrFiles[59]=new Array(92,"spyware/Massive spyware-based identity.html","2005-12-01","Massive spyware-based identity theft ring uncovered","","","Massive spyware-based identity theft ring uncovered 8/5/2005 11:13:24 PM, by Clint Ecker Researchers from a little-known security software company named Sunbelt Software have seemingly uncovered a criminal identity theft ring of massive proportions. According to one of their employees, Alex Eckelberry, during the course of one of their recent investigations into a particular Spyware application—rumored to be called CoolWebSearch—they \'ve discovered that the personal information of those infected was being captured and uploaded to a server. One can only speculate about why someone would do such a thing; the amount of data that could be gathered would almost certainly be daunting for even a few people to sift through and exploit. On the other hand, the researchers at Sunbelt have personally uncovered the personal information of two individuals who, combined, could be taken for well over US350,000. The list of stolen information includes not only bank accounts but website passwords, eBay accounts, what sort of adult images you fancy, and, supposedly, even more. The researchers initially had tried in vain to get a hold of someone who could take action on this issue but didn \'t get a response right away: We have notified the FBI, but of course no response (too busy doing other more important things). We have notified a few of the parties involved...If anyone has any other ideas, send \'em to us. Right now, we \'re sitting upon literally thousands of pages of stolen identities that are being used right now. Good news came today, though, that the FBI had responded and are currently working the case. We \'ve emailed Alex and tried to see if we could get any more details about the whole thing out of him, but at the time of publication, we had not received a response. Hopefully the people who \'ve perpetrated this massive-scale theft of personal data can be quickly caught and brought to justice due to the quick actions of Alex Eckelberry and the researcher who discovered the crime, Patrick Jordan. Updated (08/06/2005 4:24PM CDT): I \'ve received a little bit more information on what \'s going on from the employees of Sunbelt Software. What follows is more or less the exact email I received from Alex Eckelberry: Basically, it went like this: Patrick Jordan, our CoolWebSearch expert, was doing research on a CWS exploit. During the course of the research, he disovered that a) the machine he was testing became a spam zombie and b) it send a call back to a remote server. He traced back the remote server and found what you have heard about. The scale is unimaginable. There are thousands of machines pinging back in a day. There is a keylogger file that grows and grows, and then is zipped off and then the cycle continues again. It is sophisticated. There are nifty little PHP scripts that help the criminals get reports. There is a special upload area. Updated (08/06/2005 5:38PM CDT): Here \'s more information from Eric Sites, VP of R&D at Sunbelt: While one of my spyware researchers was tracking down new variants of CoolWebSearch he came a cross a payload of crap that was downloaded to his VMware. This payload included a program that monitored the users internet traffic, chat activity and Windows protected storage store. When using Internet Explorer with autocomplete turned on, your autocomplete info gets stored in protected storage. This piece ofspyware collected your protected storage info plus URLs, chat activity and website usernames and passwords. The real problem with this spyware was that it collected this information and posted it back to a public website that anyone could go to and read all of your personal information. Some examples of this include all the credit card info entered on HTML forms while purchasing something online. It did not matter that the webpage was using HTTPS. This website had collected over 500 different computers very private information within a 24 hours period. Including chat activity and login info to online bank accounts. One company had over 380,000 in a compromised account. The information was not the normal info collected for hacking purposes. It was collected to steal your money, SSN, credit card info, address, and identity. We have already found two variants of this spyware with multiple locations for its stolen info upload. We are working with the FBI and Secret Service to track everything back to the source. This article will be updated with any more information we receive or uncover about the ID theft incident.	Copyright © 1998-2005 Ars Technica, LLC	[ Site Info ] [ Privacy Policy ] [ Advertise ]",6);arrFiles[60]=new Array(93,"viruses/Researchers Say Automated IM Worm Is Inevitable.htm","2005-12-05","Researchers Say Automated IM Worm Is Inevitable","News FaceTime Communications Microsoft Corporation","The increased sophistication of instant-messaging worm attacks has triggered fears of the possibility of fully automated attacks that do not require user action.","Researchers Say Automated IM Worm Is Inevitable By Ryan Naraine October 31, 2005 The sudden appearance of a rootkit file in a spyware-laden IM worm attack has set off new fears that malicious hackers are sophisticated enough to launch a fully automated worm attack against instant messaging networks. In the most recent attack aimed at users of America Online Inc. \'s AIM network, the lockx.exe rootkit file was bundled with a new variant of the W32/Sdbot Trojan to create a nasty mix of hidden malware. Read more here about the rootkit attack on AOL \'s Instant Messenger. This is the first detection of SDBot squirming through IM chat windows, and the addition of a rootkit program is causing raised eyebrows among security researchers and worm watchers. The situation is ripe for a fully automated worm to cause some serious damage, said Jose Nazario, senior software engineer at Arbor Networks Inc., a network security firm based in Lexington, Mass. Nazario, a worm researcher and author who tracks malicious activity on the Worm Blog, said the appearance of SDBot in an IM attack highlights a rapidly emerging trend for malware: Bootstrap onto the system, download a number of tools including a rootkit and spyware, use an IRC network to control the botnet, and continue propagating. I \'m really surprised we haven \'t seen the fully automated worm on these IM networks. To me, it \'s begging to happen, Nazario said in an interview with Ziff Davis Internet News. Pretty soon, someone will find a way to package one of these attacks with an unpatched vulnerability to cause some real problems. For advice on how to secure your network and applications, as well as the latest security news, visit Ziff Davis Internet \'s Security IT Hub . Nazario said the IM worm writers have mastered the art of commandeering a user \'s buddy list to spread the malware bundles via URLs that must be clicked. Once we start seeing AIM or MSN Messenger exploits packaged into these, we \'ll see a fully automated IM worm. But, so far that hasn \'t yet happened on a large scale, and I don \'t know why. I think it \'s only a matter of time before some enterprising malware author decides to break down that barrier, Nazario added. Chris Boyd, who broke the SDBot code and discovered the hidden rootkit for FaceTime Communications Inc., echoed Nazario \'s fears. Before long, someone will come up with something capable of doing massive damage. There are some pretty horrific rootkits out there at the moment that are completely undetectable. We \'re now seeing them all coming together and it \'s not looking good, said Boyd, a well-known security researcher who uses the paperghost moniker. I \'ve noticed over the past six months or so, the malware writers are moving away from the standard Web page drive-bys and finding new avenues to deliver the nasties. We \'ve seen it with BitTorrent and we \'re seeing it more and more with IM, Boyd added. Boyd said he believes the inclusion of a rootkit file in the spyware bundle was a deliberate sleight-of-hand tactic to drop the backdoor Trojan on compromised machines. It \'s a very slick move. While we \'re all complaining about the pop-ups and spyware, no one notices the nasty rootkit that puts your entire computer in the hands of someone on IRC, he added. Boyd said the lockx.exe rootkit has been programmed to connect to an IRC [Inter Relay Chat] server to listen for commands from a remote attacker. The Windows kernel rootkit can also be used to hide logins, processes, files, and logs. It may include software to intercept data from terminals, network connections, and the keyboard. Earlier this year, Microsoft Corp. became so worried that its MSN Messenger network could be used in an automated worm attack, it pushed out patched versions of the software as a mandatory update. At the time, exploit code that could be used in widespread attack was circulating on underground Web sites just 24 hours after Microsoft released the software patch. Tyler Wells, senior director of engineering for FaceTime Communications Inc., said buffer overflows in IM applications are a recipe for disaster. We \'ve already seen documentation for some serious code-execution vulnerabilities in IM applications. If you put it all together, you \'ll see we \'re not that far away from an automated IM attack where infections don \'t require the user to click on anything, Wells said. The attackers will start looking for exploits within the IM itself. Now we \'re seeing the IM clients become more than just a text chat tool. AIM now has the ability to load an image on top of the buddy list and play music without a click. All the messaging clients today are bundling a lot of different applications like VOIP, file transfer, image sharing, Internet radio. Those add-ins all have their own security concerns, Wells said in an interview. When you bundle third-party functionality into the program, you expand the client footprint, but you \'re also in inheriting all the security problems, he added. Arbor Networks \' Nazario said there has been detailed research work done to show that an automated IM worm could spread over IM rapidly. In the worst case scenario, research has shown that all vulnerable clients online at a time could get infected in a matter of seconds. Whether we see that in practice is debate. But the results of simulations and analysis were striking. If someone is able to operationalize a worm that propagates without user intervention, we would be in for a very massive attack, Nazario said. A fully automated, rampant IM worm can happen at any time. I \'m actually very surprised it \'s not out there yet. It \'s a very attractive way to drop malware behind an enterprise security system quickly and efficiently, he added. Check out eWEEK.com \'s Security Center for the latest security news, reviews and analysis. And for insights on security coverage around the Web, take a look at eWEEK.com Security Center Editor Larry Seltzer \'s Weblog. Use of this site is governed by our Terms of Use and Privacy Policy	Copyright © 1996-2005 Ziff Davis Publishing Holdings Inc. All Rights Reserved. eWEEK and Spencer F. Katt are trademarks of Ziff Davis Publishing Holdings, Inc. Reproduction in whole or in part in any form or medium without express written permission of Ziff Davis Media Inc. is prohibited.",13);arrFiles[61]=new Array(94,"phishing/Phishers Slip Through Web Loopholes.htm","2005-12-07","Phishers Slip Through Web Loopholes","News eBay Inc PayPal","<b>News Analysis: </b>As shown by a recent attempt on customers of online auctioneer eBay, phishers can still cause serious headaches despite increasing consumer awareness.","Phishers Slip Through Web Loopholes December 6, 2005	By Matt Hines Despite the continued efforts of researchers, security providers and online businesses to discourage phishing schemes and shut down related Web sites, some criminals are still able to flout the system and find ways to keep their illicit operations up and running. An example of one type of phishing attempt that still manages to frustrate do-gooders appeared online in early November, in the form of a Christmas-themed Web site that mimics the name, look and feel of online auctioneer eBay Inc. in an effort to steal its customers \' account and password information. However, unlike the scores of unlawful sites discovered and successfully shuttered by eBay each month, this particular phishing site, which won \'t be named for the sake of protecting consumers, continues to exist as a nuisance. At the heart of the problem of taking this phishing site offline is the fact that the ISP and domain registrar responsible for supporting the Web page reportedly hasn \'t responded to requests from eBay and others demanding that the unlawful operation be pulled from the Internet. The company that sold the domain name, Joker.com, based in Zug, Switzerland, isn \'t returning calls seeking information on the Web site in question, which leaves eBay in the unhappy position of being forced to explore other avenues for getting the site offline, the San Jose, Calif., company said. According to Hani Durzy, a spokesperson for eBay, his company shuts down 80 to 90 percent of the phishing sites it unearths within 48 hours of finding the pages. However, in cases where something like an unresponsive ISP or domain registrar appears as a roadblock, the company \'s hands can be tied. Microsoft expands its anti-phishing database. Click here to read more. Another challenge in stopping this particular phishing scheme is that the fraudulent site appears to be hosted on a number of different computers, potentially without the knowledge of those machines \' owners if the devices have been infiltrated by some form of virus or malicious program, Durzy said. We \'re good at getting things shut down but we \'re not perfect; some ISPs and other unwitting hosts of spoof sites are beyond even our reach, he said. We \'re doing more than ever to fight this type of thing, but sometimes we strike out when it comes to trying to get these sites shut down. Unfortunately, some of the bad guys are smart too, and from the way this site is hosted it may be almost impossible to block it permanently. One of the first people to publicly identify the eBay Christmas phishing site and attempt to make contact with Joker.com was Richi Jennings, a representative for FixingEmail.org, a nonprofit group that works to educate consumers about the dangers of attacks borne by e-mail. Jennings said the site may have been up as early as Nov. 8 and that it has actively moved its host location from day to day. For instance, Jennings said that as of early Monday, the site in question was hosted on a machine using Time Warner Inc. \'s Road Runner broadband service in the United States, but he believes it moved to a computer somewhere in China later in the day, making it much harder to locate the site \'s creators. Jennings said the site was registered through Joker.com with a bogus e-mail address and it will be tough to bring the operation down until someone at the ISP responds. This is a perfect illustration of phishers getting smarter, as the domain registrar is unresponsive to everyone, Jennings said. Usually these types of companies are good at responding to phishing and taking down sites, but in this case the company appears to be a black hole, which is really worrying. Jennings said the attack looks to have been targeted at U.K. consumers, as he received the original spam e-mail advertising the phishing site in an account bearing a .uk domain address. The combination of a believable copy of eBay \'s pages with the unresponsive ISP, and launched during the holidays, when more consumers are shopping online than any other time of the year, proves that phishing schemes are still a serious problem, Jennings said. The main issue here is that the domain registrar is not doing its job and being responsible, he said. If you put yourself in the position of someone who wants to be a successful phisher, you \'re looking for someone like Joker.com with a reputation for being phisher-friendly … then the people start working that angle until someone stops them. Next Page: Fighting phishers through education.	eBay \'s Durzy said the company continues to dedicate the majority of its focus, not to pursuing phishers, but to educating customers about the problem. The firm is also encouraging users to download its Web browser tool bar, which warns users when they visit sites that appear to be eBay spoofs. Durzy said the toolbar application successfully denotes the page in question as fraudulent when someone points the browser to the address. Durzy said eBay also continues to work with law enforcement officials to report and provide information on phishers and other online criminals, to help go after schemers outside the boundaries of the Web. Some experts contend that the phishing problem will continue to haunt the Web, and high-profile e-commerce players such as eBay, as long as criminals can figure out new ways to dupe consumers and avoid prosecution, or as long as the schemes keep paying off. Todd Bransford, vice president of marketing for online-security management services provider Cyveillance Inc. of Arlington, Va., said attacks on eBay and large financials institutions still account for a majority of the phishing threats his company tracks, but the firm also sees phishing moving out in new directions. He said eBay has done a good job of informing and protecting its customers, but he believes that phishers will continue to aim attacks at the auction site and its PayPal division as long as those efforts keep making money.	R ead details here about why some phishers are concentrating on the area of e-banking. It \'s interesting, we still see a disproportionate number of attacks on eBay and PayPal, even though eBay is being very aggressive against it, as those user IDs are like gold to the criminals, Bransford said. But phishers are also moving downstream to credit unions and other financial services companies that might not be as savvy as larger banks, hotels are having more problems with frequent flier programs, and even insurance companies are being phished. While he said consumers have become increasingly savvy about avoiding the fraudulent sites, in part through the customer education efforts of eBay and other frequent targets, Bransford said he sees other problems emerging in the phishing arena, including a growing number of spyware applications loaded onto people \'s computers by the sites. Phishing is moving cross-industry, perhaps because people have gotten smarter, but it \'s moving into new areas all the time, he said. In cases such as this where the criminals have figured out some way to keep their site up longer, you only wonder how many people will get tricked. Check out eWEEK.com \'s Security Center for the latest security news, reviews and analysis. And for insights on security coverage around the Web, take a look at eWEEK.com Security Center Editor Larry Seltzer \'s Weblog. Copyright (c) 2005 Ziff Davis Media Inc. All Rights Reserved.",9);arrFiles[62]=new Array(95,"viruses/Sober Virus Clones Taunt AV Vendors.htm","2005-12-07","Sober Virus Clones Taunt AV Vendors","News Microsoft Corporation","Anti-virus researchers detect a new batch of Sober virus clones seeding botnets for malicious use.","Sober Virus Clones Taunt AV Vendors By Ryan Naraine November 15, 2005	A new batch of Sober virus clones has been spammed around the world to seed botnets for malicious use, anti-virus vendors warned Tuesday.	The appearance of the latest threat comes 24 hours after law enforcement authorities in Germany predicted the Sober mutants would appear as e-mail attachments in German or English. According to F-Secure Corp., an anti-virus vendor based in Finland, at least four new versions of the virus have been detected. All are capable of disabling anti-virus programs, dropping a Trojan horse and opening a backdoor to connect to a remote server. The Sober threat first appeared on the Internet in October 2003 and has been used in recent months to spread German right-wing extremist nationalism. Virus writers have also used the excitement associated with next year \'s World Cup soccer tournament to trick users into executing the virus. In the latest attack, F-Secure researcher Alexey Podrezov said the virus writers left a message in the code that taunts anti-virus vendors. This time the author of Sober worm changed the encryption algorithm for text strings in the worm \'s body. And he included a message for anti-virus vendors in the worm \'s body basically saying that \'Use your debuggers, it \'s fun, \' Podrezov said in an advisory. The latest version also creates several empty files in the Windows System folder to deactivate previous Sober variants. This particular Sober variant checks for the file called \'filesms.fms, \' and if such file is found, the worm deactivates itself, Podrezov said. Upon infection, the virus deactivates security programs installed on the computer, including Microsoft Corp. \'s Windows AntiSpyware and McAfee Inc. \'s Stinger. The virus code includes instructions to use Port 25 to send e-mails and Port 587 to connect to certain Yahoo servers. McAfee \'s AVERT (Anti-Virus Emergency Response Team) has also spotted four new Sober variants—W32/Sober.s@MM, W32/Sober.t@MM, W32/Sober.u@MM and W32/Sober.v@MM. McAfee rates the risk to corporate and home computers as low and published removal instructions to help affected users. F-Secure, Symantec Corp. and other anti-virus vendors have also added signatures for the latest variants. Copyright (c) 2005 Ziff Davis Media Inc. All Rights Reserved.",4);arrFiles[63]=new Array(96,"hacking/bbc_hacker_report.html","2005-12-08","bbc_hacker_report.html","","","",1);arrFiles[64]=new Array(98,"biz_sec/Another data security bill in the works.htm","2005-12-22","Another data security bill in the works","","","Another data security bill in the works	By Anne Broache	URL: http://news.zdnet.com/2100-1009_22-5889229.html WASHINGTON--Yet another new piece of federal legislation aimed at cracking down on breaches of sensitive personal information could appear by week \'s end. Rep. Mike Castle , a Delaware Republican, said at a Visa cardholder security conference here that he plans to introduce in the next couple of days a revised version of the bill that he has been working on since February with the U.S. House of Representatives financial-services subcommittee. Castle said he expected to hold a hearing on the bill by the end of the month. After that, it \'s anybody \'s guess, he said. The measure would join a medley of proposals pending in the U.S. Senate, including one introduced by two Senate Committee on the Judiciary leaders that could go to a vote as soon as Thursday . A series of high-profile breaches this year has prompted the sharp congressional interest. Castle said his legislation would require that all businesses handling sensitive information such as Social Security, driver \'s license or credit card numbers in combination with personal data such as names and addresses must secure that data. This requirement echoes those that many state governments have enacted. The measure would also require prompt investigation of breaches, in which sensitive data may have been compromised, and companies would have to notify business partners, law enforcement and functional regulators right away, Castle said. Businesses that experience breaches would also be required to offer free credit-monitoring services at their expense. This data is valuable to you and to consumers, the Delaware congressman told the audience, which included representatives from the banking, retail, government, law enforcement and high-tech industries. Treat it with care, and safeguard it from abuse or misuse. Visa CEO John Philip Coghlan, speaking after Castle, backed the idea of federal legislation that would establish national rules and eradicate the patchwork quilt of state laws governing data protection standards and breach notification to consumers. Coghlan, whose company found some of its cardholders affected by a wide-ranging breach in June, said existing rules should be broadened to cover not just financial companies but all entities that use sensitive personal information. He threw his support behind the heightening of criminal penalties for identity theft, proposed in a sweeping bill advanced by Sen. Arlen Specter and Sen. Patrick Leahy. Our rules are not enough, our procedures are not enough, and our protections are not enough, he said. All of the technology in the world just isn \'t going to be good enough.",5);arrFiles[65]=new Array(99,"biz_sec/Article Is Your Biz Safe From Internet Security Threats.htm","2005-12-14","Article: Is Your Biz Safe From Internet Security Threats?","","","Is Your Biz Safe From Internet Security Threats? Spyware, viruses and hacker attacks can be devastating to small businesses. Here \'s how to protect your company from internet security threats. July 11, 2005 By Peter Alexander URL: http://www.Entrepreneur.com/article/0,4621,322247,00.html Many small-business owners assume that large corporations are far more vulnerable to internet security threats than they are. In truth, however, it \'s often the other way around. For example, the destructive Mydoom worm affected one out of three small and mid-sized businesses--but only one out of six large enterprises, according to the Internet Security Alliance , a non-profit organization that provides a forum for information security issues. Because they have a false sense of security and assume they’re not at risk, many small-business owners don \'t adequately protect their computers and networks from spyware, viruses, worms, hacker attacks, customer data theft and other security threats. In addition, with so many balls to juggle already, entrepreneurs often put computer security far down on their to-do lists--if it makes the list at all. The result: Nearly half of all small and mid-sized businesses haven’t taken the most basic security precautions, such as installing antivirus and anti-spyware programs, reports research firm AMI-Partners. Why You \'re at Risk There are several reasons why your computers, network and the data that resides on them are at greater risk now than ever before. Enterprise network security is harder to breach. In recent years, many corporations, impacted by internet threats and in order to comply with strict security measures required by the Sarbanes-Oxley Act and other regulations, have significantly bolstered their network security. As a result, criminals are increasingly turning their attentions toward easier hacker targets--small businesses. Unprotected systems are easier to find. Many hackers now have software tools that constantly search the internet for unprotected networks and computers. Once discovered, unprotected computers can be accessed and controlled by a hacker, who can use them to launch attacks on other computers or networks. Computer security threats are more sophisticated--and more damaging. Spyware authors are busy creating pernicious programs that resist removal, perpetually mutate, and spread across the internet in minutes. Meanwhile, blended threats, which assume multiple forms and can attack systems in many different ways, are on the rise. Small businesses without adequate, updated security solutions can easily be victimized by these and other threats. Threats often come from within. All too often, security breaches don’t come from outside the company but from within, either intentionally or unintentionally. For example, an employee may unknowingly download spyware while playing an online game or visiting a website. Small-business systems are more vulnerable to employee tampering simply because they often lack the internal security precautions of a larger enterprise. The resulting impact of a security attack is greater. Small businesses often lack the financial resources that large companies have to bounce back from security attacks. Suppose you \'re an online retailer and a hacker launches a denial-of-service attack against your website. Do you have the necessary insurance or funds to recover from the subsequent loss of revenue--not to mention the damage to your business \'s reputation? What You Can Do Fortunately, there are plenty of ways to protect your business from internet security threats. Change your thinking. Internet security should be a fundamental part of your business survival/continuity plan. Think of it this way: Many small businesses have grown reliant on the internet for communicating with customers and partners; selling or marketing their products or services; and more. How will your business continue to perform those functions if your computers are affected by a devastating virus? Assess your needs. Do you have a full understanding of the security you need vs. what you currently have? If you \'re a harried small-business owner, chances are the answer’s no. The good news is, you may have more protection than you realize. For instance, most home office and small-business local area network (LAN) routers include a built-in firewall--technology that blocks intruders from accessing the computers on the network. Cover the basics. At a minimum, all your business computers should be protected by a hardware or software firewall and antivirus and anti-spyware programs. Some internet security suite solutions geared toward small businesses combine all three protections, as well as offer safeguards against identity theft, spam, phishing scams and more. Get help. Does computer security seem like too a daunting task for you to handle? If so, hire a consultant to perform a security audit of your business systems and network and make recommendations. Your network equipment reseller or technology vendor can also help you determine the security solutions you need. Another option is to outsource the job. A managed service provider can design, implement and maintain your network security solution for a flat monthly fee. Put it in writing. A detailed, written security plan that includes policies and procedures as well as technology requirements is particularly important for businesses with employees. If your security procedures aren \'t set down in writing, they \'re easy for an employee to dispute or disregard. Keep your security updated. New internet threats are emerging daily. Your security solutions won \'t be effective against new viruses, worms or spyware if they \'re not regularly updated. Fortunately, most antivirus software and other security solutions can be updated automatically. Give wireless networks extra protection. On a wireless network, data is transmitted over radio waves, which can be easily intercepted. This means a wireless network is inherently less secure than a wired one. If you or your employees use a wireless connection to access company databases or files, consider taking additional security measures. For instance, a virtual private network (VPN) connection provides a secure way for mobile workers to wirelessly tap into a company \'s network. Don \'t go overboard. A house without any windows or doors would be extremely secure--but who would want to live there? By the same token, the more secure your computer or network is, the more difficult it can be to use. Find the right balance between security and usability, and stick with it. Prepare for the future. A secure network provides businesses with benefits beyond protection from internet threats. Inherently, a secure network is a robust network. And a robust network is an excellent foundation that can support new technologies, such as VoIP, that can greatly increase productivity and reduce operating costs. Ultimately, when your business is secure, it \'s stronger and more agile--and definitely more competitive. Peter Alexander is Entrepreneur.com \'s Tech Trends columnist and vice president of worldwide commercial marketing at Cisco Systems Inc. , the leading supplier of networking equipment and network management for the internet. Copyright © 2005 Entrepreneur.com, Inc. All rights reserved.",10);arrFiles[66]=new Array(100,"biz_sec/Customer Data May be Too Risky to Keep.htm","2005-12-14","Customer Data May be Too Risky to Keep","","","Customer Data May be Too Risky to Keep September 5, 2005 ByDan Gillmor Companies keep finding ways to misplace consumers \' personal data. Courier services lose tapes on their way to long-term storage facilities; malevolent social engineers con their way into access; laptop computers holding multiple databases are stolen. We hear a lot about these kinds of things now because a new California law requires companies to disclose to consumers when their data has been compromised. It should be obvious, though, that data loss has been happening for some time, because the level of security in these cases seems to have been, at best, pervasively inadequate. All of which makes me wonder: Why are companies keeping our data at all? Wouldn \'t they—and we—be better off in the long run if data wasn \'t collected and stored in the first place? This sounds counterintuitive, and it certainly goes against today \'s common business practices. It \'s basically been an article of faith that gathering, storing and massaging ever more data is a good thing. Information can be power. It helps determine risk and reward. It helps a company know its various constituents better, including customers and suppliers. And it \'s worth money. The current model fails in two areas. One, as noted, is with shamefully lax security. The other is the perverse notion that our personal lives are a commodity to be bought, sold and traded without serious regard for privacy or the consequences of sloppy handling. This doesn \'t even take into account the common problem of data that is outright false. It is distressing that most personal information—such as what we spend and where we spend it, not to mention the ultimate skeleton key for identity thieves, our Social Security numbers—can be bartered at all. And when information is compromised or incorrect, consumers are largely responsible for cleaning up the chaos that results. The data collection system is, at long last, beginning to fray at the edges. Consumers are growing more worried and angry over what they \'re learning about shoddy storage and trading practices. A recent survey by Harris Interactive found an increase in identity theft and a decrease in consumer confidence that negatively affected purchasing decisions. The worst practices are drawing the attention of trial lawyers who, in the absence of more serious government enforcement, are prosecuting the promise-breakers. But the California law may be a canary in the coal mine for keepers of data, because it signals the possible reappearance of legislators into an arena they \'ve tried hard to avoid—a natural tendency, given the prodigious amounts of campaign contributions legislators have collected from the data collectors and sellers. It \'s in this context that we should be asking whether the rewards of holding on to consumer data are worth the trouble—and whether it \'s possible to create an infrastructure that gives consumers much more control over their information from the outset. Eric Norlin, a vice president at Ping Identity Corp., and a longtime writer on these matters, advocates federated identity—a decentralized system that would have the effect of giving consumers just this sort of granular control. This is about customers being able to make their identities portable, he says, to allow individuals to present the ID they choose to present to the service provider. For example, if I were buying a plane ticket, I could give the airline permission to charge a certain amount of money to my credit card. But the airline wouldn \'t need access to the actual credit card number if I \'d simultaneously given the card issuer enough information about the transaction to make the transfer. The bank or other card issuer would need my permission to pay the airline, but the entire transaction could take place in a seamless mesh of business logic, using advanced Web services, that lends parts of my identity to those who need it on a temporary basis.	This leaves a single potential point of failure (for this transaction, at any rate) from an identity-theft standpoint: the bank. Even though banks can, and sometimes do, get careless with data, a financial institution that builds and maintains an excellent record for data security will win more business. Competition for customers would bring more business to providers that are the most careful. For such a system to have any chance of working, a variety of technologies is required. Ultimately, consumers and merchants must trust that the parties they \'re dealing with on either side of the transaction are indeed who they \'re supposed to be. Also, data cannot be easy to compromise. So encryption as well as the ability to digitally sign what we send around are crucial. A viable public-key encryption infrastructure meets these requirements, and the technology \'s inventor is Whitfield Diffie, Sun Microsystems \' chief security officer. He questions whether institutions would ever buy into an identity system where the data resided solely with consumers, but says there \'s no fundamental technical barrier. Still, the practical difficulties are not trivial. Mortgage lenders may lose some of their ability to uncover information borrowers may have failed to disclose, and that would mean greater lending risk. One way around the problem might be harsher contract sanctions for failing to give lenders correct information when asked, plus a higher interest rate for more limited kinds of disclosure. In such transactions, people will have to make visible more verified data about themselves than in deals, such as a simple purchase, where the stakes are lower. Another real-world barrier, Diffie notes, is the lack of a ubiquitous key infrastructure. The old AT&T could have created that, given its one-time dominance of communications. Federal agencies such as the National Security Agency had the wherewithal to do it, but the NSA damaged its credibility with the public by trying to exert improper control over encryption. Federated identity advocates are painstakingly building an infrastructure today that they hope will solve the problems of tomorrow. One drawback with user-controlled data has nothing to do with business, and that is the government \'s wish to spy on us. Law enforcement might find its job complicated by an identity system that decentralized control and collection of information. Even so, there is enormous logic and value to society in returning people \'s personal lives to their own control. The credibility of future electronically based commerce may depend on consumers \' trust in the system. They are losing faith already, and a data Chernobyl is in no one \'s interest.	The way we \'re going, however, such a meltdown might be hard to avoid. It would be wise to plan now for the aftermath, wiser still if companies would consider—just consider—the possibility that data retention itself could be the heart of the problem, and seriously analyze the alternatives. That alone would move the ball ahead. Corporate America has an unfortunate addiction to centralized data that it doesn \'t need. Sometimes, losing control is an advantage. This is my first column for CIO Insight. We \'re calling it EdgeWise to reflect the growing decentralization of today \'s information economy. The insights and endeavors that people (and their machines) at the edges of networks feed back to the center, and to each other, are already enormous—and they \'re expanding. We see this phenomenon in open-source software projects. We see it in Weblogs. We see it in grid computing and mass parallel processing. You know more than I do. I hope you \'ll tell me things that you know and I don \'t and that CIOs need to know. Let \'s make this space a conversation, not a lecture. Dan Gillmor is author of We the Media: Grassroots -Journalism by the People, for the People and founder of Bayosphere.com, a San Francisco Bay Area Web site. His next column will appear in December. Copyright (c) 2005 Ziff Davis Media Inc. All Rights Reserved.",10);arrFiles[67]=new Array(101,"biz_sec/Military Picks CA for Hefty Anti-Spyware Contract.htm","2005-12-14","Military Picks CA for Hefty Anti-Spyware Contract","","","Military Picks CA for Hefty Anti-Spyware Contract July 6, 2005	ByPaul F. Roberts Millions of U.S. military computers will be protected from spyware using software from Computer Associates, the company said Wednesday. The Defense Information Systems Agency awarded Science Applications International Corp. and Computer Associates International Inc. a 6.9 million order to provide an enterprisewide spyware detection, eradication and protection product, which DISA calls SDEP. As part of the deal, CA \'s PestPatrol anti-spyware product will be installed on about four million systems owned by the U.S. Department of Defense and branches of the armed services, DISA (the Defense Information Systems Agency) said. The deal is a major win for CA, and it \'s a blow to anti-virus vendors Symantec Corp. and McAfee Inc., which already protect military systems from viruses. The anti-spyware task order is part of I-Assure, a 1.5 billion contract to provide professional IT security services to the Department of Defense, according to a DISA statement on June 30. SAIC (Science Applications International Corp.), which is the prime contractor, will help the military deploy the SDEP software and provide onsite training for military staff, said Sioux Fleming, CA \'s eTrust director of product management. Like many other large organizations, the U.S. military is struggling with spyware, which is a term that is often used to describe legal programs that display advertisements and track surfing behavior, as well as key logging tools and Trojan horse programs. Military networks are often infected after military personnel connect to those networks from poorly secured home systems or public computers, Fleming said. This isn \'t a problem that \'s specific to the military. It \'s a problem for everybody, she said. The deal will almost double the size of CA \'s anti-spyware installation base, which currently stands at about 5.6 million consumer and enterprise seats. Military men and women will be able to download and install the consumer version of PestPatrol at no cost, to use on their home computers which will help prevent infections from affecting systems that the military doesn \'t own, Fleming said. Read more here about Computer Associates \' purchase of PestPatrol. The deal marks a departure for DISA, which has turned to major anti-virus vendors such as Symantec and its partner Northrop Grumman in previous I-Assure bids, including solicitations for desktop and server anti-virus technology and security intelligence services. By putting a high premium on spyware detection and removal capabilities, the SDEP task order may have disadvantaged companies such as McAfee and Symantec, which have traditionally relied on their anti-virus engines to spot spyware and have lagged behind pure-play anti-spyware companies such as Webroot and PestPatrol, Fleming said. Even though spyware detection and removal is very similar to virus detection and removal, leading anti-virus vendors were slow to join the spyware fight and waited to introduce stand-alone anti-spyware tools, said John Pescatore, vice president of Gartner Inc. Symantec, for example, shipped an integrated anti-spyware product for its Norton Internet Security product in May, long after dedicated spyware companies such as Webroot and PestPatrol began selling their wares. We \'ve been talking about spyware for two and a half years, Pescatore said. If Symantec had been building an integrated anti-spyware product from the beginning, there \'s no way they would have lost this contract, he said. Symantec did not immediately respond to requests for comment for this story. The Department of Defense is conducting a 120-day pilot deployment of PestPatrol to hammer out training and deployment issues. Fleming said she has not seen a time table for deployment, but expects the military to move quickly to deploy anti-spyware technology on its systems. Check out eWEEK.com \'s Security Center for the latest security news, reviews and analysis. And for insights on security coverage around the Web, take a look at eWEEK.com Security Center Editor Larry Seltzer \'s Weblog. Copyright (c) 2005 Ziff Davis Media Inc. All Rights Reserved.",5);arrFiles[68]=new Array(102,"biz_sec/PC shipments leap past expectations.htm","2005-12-22","PC shipments leap past expectations","","","PC shipments leap past expectations	By Michael Kanellos URL: http://news.zdnet.com/2100-9584_22-5897839.html PC sales rose again in a quarter that saw Hewlett-Packard regain strength and Dell lose some of its luster. Shipments of personal computers grew by 17.1 percent during the third quarter of 2005, according to IDC, driven by the popularity of notebooks , low-cost systems and international sales. As a result, IDC also boosted its annual forecast for shipment growth to 17.1 percent, well over the 13.3 percent growth rate the research firm predicted in August. Research firm Gartner, meanwhile, expects shipments to grow at 17.2 percent for the year. Roughly 200 million desktops, notebooks and x86 servers will leave factories this year, according to Gartner. The rivalry between HP and Dell took a turn as well. HP grew shipments slightly faster than rival Dell, stemming--at least for now--what had become a widening gap between No. 1 Dell and No. 2 HP. Dell, however, grew shipments only by 17.8 percent according to IDC, and 17.6 percent according to Gartner, nearly the same as the market overall. For Dell, that \'s slow. For the first time in seven years, Dell grew the market rate, said Charles Smulders, an analyst at Gartner. The overall picture for the PC has been somewhat consistent all year. The strength of the euro has fueled sales of consumer and business PCs across Europe, while China and other emerging nations in Asia have continued to invest heavily in PCs. Even established markets like the United States and Japan have been experiencing turgid growth. In the third quarter, PC shipments in the United States grew by 11 percent, according to IDC. As a result, forecasters have had to up their predictions at a regular clip. In November 2004, IDC predicted that PC shipments would grow 9.4 percent this year. It upped that estimate to 13.3 percent in February and then 13.3 percent in August. Despite price cuts, revenue is climbing as well, at least according to IDC. Value, or revenue, will grow around 8 percent or 9 percent in 2005, higher than an earlier prediction of 4.9 percent in value. In 2003, price cuts all but erased any gains from increased shipments . We \'ve had some really amazing results in the past few quarters, said Loren Loverde, an analyst at IDC. Smulders disagreed, stating that price cuts have all but erased the gains from unit shipments. The high levels of shipments this year could also hurt sales next year, he added. People are replacing PCs earlier than in the past, partly because of price cuts, he said. Although the rankings of the major computer manufacturers didn \'t change, HP probably has the most to crow about it. The company grew about the same rate as Dell. In the last several quarters, HP has grown at a slower rate, allowing Dell to expand its lead. In the third quarter, HP \'s shipments grew by 17.9 percent, slightly higher that Dell, according to IDC. Dell saw its worldwide market share climb from 17.9 percent in the third quarter of 2004 to 18 percent in the same quarter this year, relatively slow for the company. Meanwhile, HP saw its market share go from 15.9 percent to 16 percent. In the last three months, HP has been at the forefront of discounts, offering 499 laptops and 199 desktops in limited quantities. It was a very strong quarter for HP, Loverde said. Acer, meanwhile, continued at the torrid pace it has seen for more than a year . The company saw shipments grow by 53.7 percent worldwide, boosting its global market share from 3.6 percent to 4.7 percent. Acer is the fourth-largest PC maker in the world. Apple Computer and Gateway also continued to rebound. Apple \'s shipments in the United States grew by 44.6 percent. It saw its U.S. market share rise from 3.3 percent to 4.3 percent, according to IDC. Apple has a 2.3 percent market share worldwide. Gateway, meanwhile, saw its U.S. market share rise from 5.2 percent to 6.4 percent through a growth rate of 35.2 percent. (Gateway sells few PCs overseas.) The only major PC maker to see its market share slip was Lenovo. The Chinese-U.S. company saw shipments rise by 13.1 percent--taking into account the merger with IBM \'s PC unit--slightly less than the market as a whole. As a result, Lenovo-IBM dipped from 8 percent to 7.7 percent. Still, the company is just coming off the merger. Typically, market share dips are much larger after a merger.",6);arrFiles[69]=new Array(103,"cybercrime/Black Market in Stolen Credit Card.htm","2005-12-14","Black Market in Stolen Credit Card Data Thrives on Internet - New York Times","","","June 21, 2005 Black Market in Stolen Credit Card Data Thrives on Internet	By	TOMZELLER Jr. Want drive fast cars? asks an advertisement, in broken English, atop theWeb site iaaca.com . Want live inpremium hotels? Want own beautiful girls? It \'s possible with dumps fromZo0mer. A dump, in the blunt vernacular of a relentlessly flourishingonline black market, is a credit card number. And what Zo0mer is peddling isstolen account information - name, billing address, phone - for Gold Visa cardsand MasterCards at 100 apiece. It is not clear whether any data stolen from CardSystems Solutions, thepayment processor reported on Friday to have exposed 40 million credit cardaccounts to possible theft, has entered this black market. But law enforcementofficials and security experts say it is a safe bet that the data willeventually be peddled at sites like iaaca.com - its very name a swaggeringshorthand for International Association for the Advancement of CriminalActivity. For despite years of security improvements and tougher, more coordinated lawenforcement efforts, the information that criminals siphon - credit card andbank account numbers, and whole buckets of raw consumer information - is boldlyhawked on the Internet. The data \'s value arises from its ready conversion intoonline purchases, counterfeit card manufacture, or more elaborate identity-theftschemes. The online trade in credit card and bank account numbers, as well as otherraw consumer information, is highly structured. There are buyers and sellers,intermediaries and even service industries. The players come from all over theworld, but most of the Web sites where they meet are run from computer serversin the former Soviet Union, making them difficult to police. Traders quickly earn titles, ratings and reputations for the quality of thegoods they deliver - quality that also determines prices. And a wealth ofinstitutional knowledge and shared wisdom is doled out to newcomers seekingentry into the market, like how to move payments and the best time of month tocrack an account. The Federal Trade Commission estimates that roughly 10 million Americans havetheir personal information pilfered and misused in some way or another everyyear, costing consumers 5 billion and businesses 48 billion annually. There \'s so much to this, said Jim Melnick, a former Russian affairs analystfor the Defense Intelligence Agency who is now the director of threatdevelopment at iDefense, a company in Reston, Va., that tracks cybercrime. Thestory that needs to be told is the larger, long-term threat to the Americanfinancial industry. It \'s a cancer. It \'s not going to kill you now, but slowly,over time. No one is willing to estimate how many cards and account numbers actuallymake it to the Internet auction block, but law enforcement agents consistentlydescribe the market as huge. Every day, at sites like iaaca.com and carderportal.org , pseudonymousvendors do business in an arcane slurry of acronyms. Cobs, or changes of billings, are a hot commodity. Typically, a peddler ofcobs is offering fresh bank or credit card accounts, along with the ability tochange the billing address through a pilfered PIN. In other cases, a vendorselling cobs is offering to change billing addresses himself, as a service.Sometimes the address is changed to a safe drop, which might be an emptyapartment in a local building, or some other scouted locale where goods can bedelivered. (Information on reliable drops is also bought and sold.) Lengthy tutorials posted at online carding forums indicate that the cob artform is highly developed. A patient criminal will wait until the day a victimreceives a billing statement. That way you have a full 30 days before thevictim is likely to look over his account again, explained one frank tutorialcollected by the F.B.I. A user going by the name mindtrip had cobs for sale recently: I \'m sellingcobs from at this time only banks Discover and AmericanExpress t \'ill further notice, he wrote in brusque English. The cobs comewith full info including MMN (mother \'s maiden name). Discover Card cobs withany balance were on special: 50. American Express, a more exclusive andpotentially more lucrative account, commanded 85. Alongside advertisements for cobs are pitches from malicious-code writers,who sell their services to the con artists, known as phishers, who contract withspammers to send out millions of increasingly sophisticated phony e-mailsdesigned to lure victims into revealing their account information. A successful phishing operation might bring in thousands of fresh accountnumbers, along with other identifying details: names, addresses, phone numbers,passwords, PIN \'s, and mothers \' maiden names. The richer the detail (and thehigher the account balance), the better the asking price. A user by the nickname Sirota is peddling account information so detailed,and so formatted, that it clearly came from a credit report. He is asking 200per dump on accounts with available balances above 10,000, with a minimum orderof five if the buyer wants accounts associated with a particular bank. Also, Ican provide dumps with online access, he wrote. The price of such dumps is 5%of available credit. Every day brings more. These things have a short shelf life, said DanLarkin, the unit chief at the F.B.I. \'s Internet Crime Complaint Center in WestVirginia. The criminal value of a compromised credit card is very short term,so there \'s a constant need to keep backfilling their resources. A Full-Service Black Market Those buying fresh batches of account numbers may try to make purchasesonline, having goods delivered to a drop and then fencing them through onlineauctions. More sophisticated thieves will seek out a vendor of encoding devices, andothers who sell plastic, or blank credit cards, and algos, algorithms thatare needed to properly encode the magnetic strip and produce a usable card. Andcash out services can be arranged with those offering to take the encodedplastic to a cash machine and make daily withdrawals until the account isdepleted. (The cash-out risk commands a premium - often 50 percent or more ofthe total balance.) Traders - whether they deal in plastic, algos, cobs or other booty - buildreputations first by earning the right to advertise, and then, in a black-marketversion of eBay buyer feedback, augment their status by receiving published kudos from othermembers. No one is permitted to post product or service offers at most of theseWeb sites without first having their wares vetted by site administrators, or bythose who have been selected as trusted reviewers. At iaaca.com, for example, those wishing to sell cobs or cob services willbe required to provide ten (10) change of addresses, to be distributed to tworeviewers, who will test this service by either phone or Internet. Newvendors of credit card numbers will be required to furnish 20 VALID dumps (5Classics, 5 business, 5 platinums, 5 corporate; 50 percent Visa, 50 percentMasterCard), according to the site administrators. The testers will determinethe quality, in a percentage of valid numbers. Once the wares are vetted, a vendor might then pay a fee to peddle them on asite \'s message boards. Banner ads can also be purchased. Contacts among deal makers almost always move off the boards and onto ICQ,the instant-messaging program of choice among cyberthieves because of its easyanonymity (no names, no registration, no e-mail required). Payments often changehands in relative anonymity (and with little regulation) by e-gold, anelectronic currency that purports to be backed by gold bullion and issued bye-gold Ltd., a company incorporated on the island of Nevis in the Caribbean.(Secret Service agents have expressed skepticism over the gold backing.) Transactions might also be made in WMZ \'s, electronic monetary unitsequivalent to American dollars and issued by WebMoney Transfer, a company basedin Moscow. Plenty of noncriminal entities use such services to move money, SecretService analysts said - although they added that the agency had conversationswith some of the e-currency issuers to discuss ways to address the problem. Thefts at Data Aggregators Mark Rasch, the former head of cyberinvestigations for the Justice Departmentand now the senior vice president of Solutionary, a computer security company,said the numbers taken in the CardSystems breach - at least 200,000 are said tohave been in stolen files - are almost certain to end up in one of these tradingposts. CardSystems represented a vital hub through which millions of account numberspassed. ChoicePoint ,a data aggregator, was another gold mine; it announced in February thatthousands of records had been downloaded from its databases by thieves posing aslegitimate business clients (no hacking required). The pattern in the last six months is going after aggregators, Mr. Raschsaid. It used to be you \'d get a few numbers from a few merchants and aggregatethem yourself - a few numbers from a lot of people. But at some point they said, \'Wait a minute, there are other people who aggregate this stuff. \' And, Mr. Rasch pointed out, it is nearly impossible to stop. For all theinformation that law enforcement and security experts can glean from sites likeiaaca.com, there are whole marketplaces of bulletin board systems and chatsthat are invisible, he said. Still, law enforcement has made inroads. In October, the Justice Departmentand the Secret Service announced the internationally coordinated arrest of 28individuals in eight states and several countries, including Sweden, Britain,Poland, Belarus and Bulgaria. Among those arrested were Andrew Mantovani of Scottsdale, Ariz., DavidAppleyard of Linwood, N.J., and Anatoly Tyukanov of Moscow. The JusticeDepartment says they are the ringleaders of Shadowcrew.com , the largest English-language Web bazaar trading ineverything from stolen credit card, debit card and bank account numbers tocounterfeit drivers \' licenses, passports and Social Security cards. The investigation, called Operation Firewall, broke up a 4,000-memberunderground that, according to the Justice Department, bought and sold nearlytwo million credit card account numbers in two years and caused over 4 millionin losses to merchants, banks and individuals. But eight months later, the traders have adapted and resumed business. Theyare a bit more skittish now, said John Watters, the chief executive of iDefense,which generates cybercrime intelligence for government and financial industryclients. Operation Firewall did take out some of the low-hanging fruit, Mr.Watters said. But that has only caused the pricing models to become morerefined, and the characters in this black-market economy to become moresophisticated. A New Market for New Identities Mr. Watters said there was also a small but growing market for the type ofraw consumer information that has been pilfered from ChoicePoint, LexisNexis andother general data aggregators. We \'ve observed people paying for identities, Mr. Watters said, describingWeb forms where criminals could tick off the fields they had to sell or wantedto buy: address, date of birth, Social Security number, driver \'s license number,mother \'s maiden name. And as the traders slip deeper underground - or ontoservers in regions with lax laws, overburdened or uninterested law enforcementand no real working relationship with American authorities - the odds of pullingoff another Operation Firewall get worse. The next battle will be substantially harder, Mr. Watters said. It \'sgetting harder for us to do our job. Asked at a symposium on cybercrime late last month if law enforcement waslosing the battle against cybercriminals, Brian Nagel, assistant director forinvestigations at the Secret Service, said no, according to published reports. But another panel member, Jody Westby, the managing director of security andprivacy practice at PricewaterhouseCoopers, disagreed, insisting that based onFederal Trade Commission statistics on identity and credit card theft, onlyabout 5 percent of cybercriminals are ever caught. In an interview, Ms. Westby offered an assessment no less bleak. We \'re notmaking an impact, she said. The criminals are too hard to track and trace, toohard to prosecute, and the information they steal is too easy to use. At one Russian-language site over the weekend, a user called Lexus celebratedthe CardSystems breach, saying that judgment day has come for the bourgeoisie.Another, Zer0, suggested on the site that the hacked numbers might represent newopportunities in the underground. It is a good occasion for us, Zer0 said. Happyhunting. Copyright 2005 The New York Times Company",15);arrFiles[70]=new Array(104,"cybercrime/Dutch 'bot herders' may have controlled 1_5 million PCs.htm","2005-12-22","Dutch   \\'bot herders  \\' may have controlled 1.5 million PCs","","","Dutch \'bot herders \' may have controlled 1.5 million PCs	By Joris Evers URL: http://news.zdnet.com/2100-1009_22-5906896.html Three suspected Dutch cybercriminals could face a stiffer penalty with new evidence that they hacked about 1.5 million PCs worldwide, more than 15 times the original estimate. The three individuals, whose names have not been disclosed, were arrested two weeks ago on suspicion of commandeering more than 100,000 PCs. They allegedly gained control over the systems with a Trojan horse called Toxbot and used the network of zombie PCs to steal credit card numbers and other personal data, and to blackmail online businesses. But the number of PCs hijacked is much larger than initially thought, the Dutch prosecutors said Thursday. Additional data gathered by the Dutch Computer Emergency Response Team and Internet service providers indicates that more than 1.5 million PCs were involved, 30,000 of which were in the Netherlands. This will certainly play a role when determining the penalty, Wim de Bruin, a spokesman for the Dutch National Prosecutor \'s Office, said Friday. It does make a difference if you break a window in a single house or the entire street. Under various computer crime laws, the three could face up to six years in prison, de Bruin said. A court in Breda, Netherlands, on Thursday extended custody of the 19-year-old main suspect and a 27-year-old accomplice by a month. The third suspect, a 22-year-old, was released because of confidential personal reasons, de Bruin said. Under Dutch law, suspects can be held for up to three months before a first public court appearance. Networks of hijacked computers, known as botnets, are considered one of the most serious security threats on the Internet. While the dismantled botnet is one of the largest ever seen, the takedown is merely a drop in the bucket, experts have said. Botnets are often rented out by their owners, called bot herders, to relay spam and launch phishing scams to steal sensitive personal data for fraud. Botnets have also been used in blackmail schemes, where the criminals threaten online businesses with a denial-of-service attack to extort money. A denial-of-service attack would disable a targeted Web site. In the Dutch case, investigators suspect the individuals of hacking into computers, destroying computer networks and installing adware and spyware . The suspects are also thought to have sold their services to others, including writing viruses that were designed to steal login data for online banking, prosecutors said. The investigation also suggests that the suspects hacked into accounts at payment service PayPal and online auction giant eBay and extorted unidentified U.S. businesses The Dutch investigation is ongoing and more arrests are expected in The Netherlands, de Bruin said. A court date has yet to be set for the current suspects.",5);arrFiles[71]=new Array(105,"cybercrime/Lexis-Nexis Ground Zero.htm","2005-12-14","Lexis-Nexis: Ground Zero for War vs. Data Thieves","Article","The theft of identity info on more than 300,000 people was the largest setback for Lexis-Nexis as it battles to keep its data secure from data pirates.","Lexis-Nexis: Ground Zero for War vs. Data Thieves September 5, 2005 ByDan Briody I don \'t think I \'m being paranoid. I think I \'m being realistic, says Allan McLaughlin, senior vice president and CTO of LexisNexis Group, the New York City-based data aggregator. But you can \'t be too careful anymore, he continues. Worst-case scenario: There are vendors selling security products that, on the face, look strong, but are actually designed to be weak. They \'re made by somebody malicious, designed to weaken your security. It \'s like putting a screen door on a submarine. Before you know it, you \'re sunk. I \'m not paranoid. The world has changed. It would be easy to chalk up McLaughlin \'s high anxiety to one too many viewings of The Matrix. But his perspective on security is more informed than most. Just this past March, McLaughlin, and his company, experienced the sinking feeling of learning that the personal records—including names, Social Security numbers, and driver \'s license numbers—of 310,000 individuals had been stolen from the LexisNexis databases. The discovery came just a month after the world had learned that LexisNexis \' biggest competitor in the data-aggregation market, ChoicePoint Inc., had compromised the personal information of 145,000 people. Like ChoicePoint, LexisNexis collects all kinds of information on millions of individuals. The information—ranging from public data such as	real estate records and published telephone numbers to nonpublic information such as Social Security numbers, financial data and criminal records—is used by everyone from direct marketers to law-enforcement agencies. Add to that LexisNexis \' databases of legal filings, newspapers articles, and periodicals (for which it is better known), and you \'ve got a healthy 2.1 billion information services business. That \'s why LexisNexis has suddenly become a great big target for identity thieves and idle teen hackers alike. The kind of data it collects and sells is highly valuable, both to the black-market operators who promote identity theft by trafficking in personal information as well as to the company \'s 4.5 million legitimate customers. Unfortunately for LexisNexis, not all of those legitimate customers take security as seriously as McLaughlin does. And that provides an open invitation to the enterprising hacker. A full complement of a person \'s name, address and credit card number can fetch 100 on the Web. More detailed information is even more valuable. The Federal Trade Commission estimates that about ten million Americans have their personal information stolen each year, costing businesses a jaw-dropping 48 billion annually. This particular saga began in February, when a group of young hackers sent out a blast of junk e-mail promising an attached file of pornographic images. According to published reports, someone in a police department in Port Orange, Fla., and someone in a constable \'s office in Denton County, Tex., took the bait. By clicking on the link, the two victims downloaded key-logging software onto their computers that recorded every keystroke and every click of their mouse. And when they later logged into their LexisNexis accounts, which police use to obtain background information on criminal suspects, their passwords and user names were captured by the hackers. McLaughlin was made aware of the activity weeks later, when one of the two police departments (he won \'t say which) noticed an unusual amount of activity on their account and contacted a sales rep. They basically said, \'Gee, I don \'t remember running up this bill. Can you help me understand it? \' says McLaughlin. He was lucky the customer caught the mistake. You \'d be amazed at how many businesses don \'t look at their invoices, he adds. Kurt Sanford, CEO of U.S. corporate and federal markets at LexisNexis, was brought on the case immediately. Given the bad press ChoicePoint had received a month earlier for failing to notify people in a timely manner that their data had been compromised, Sanford took the bull by the horns: He called the Secret Service and the Federal Bureau of Investigation, notified the press, and began an internal investigation into a recently acquired subsidiary called Seisint Inc., which managed the database that had been breached. (LexisNexis itself is a division of Anglo-Dutch publisher Reed Elsevier.) At first blush, it appeared that the fraudsters had made off with about 30,000 names. But after an exhaustive month-long search through the Seisint databases, LexisNexis found that ten times that number of names had been stolen, in 59 separate incidents, over a two-year period. LexisNexis issued another press release, began notifying the people whose personal data had been taken, and launched a public relations effort in hopes of mitigating the damage to its image.	But the real work had only begun. The hardest lesson learned by LexisNexis in the aftermath of the theft was that it isn \'t enough to protect your internal network. In our brave new networked world, companies must also take responsibility for the security of their customers and business partners, as either can provide a point of entry for an eager hacker. I mean, nothing against the customers. They all do really good things, says McLaughlin. But it \'s naďve to think you can trust the security of your customers \' environments. LexisNexis has embarked on an aggressive campaign to tighten up customer security. But it is an effort that does not always align itself with the business goals of the company. And there is a limit to how much LexisNexis can ask of its customers and still expect their continued patronage. We have been thinking a lot about that, says Tammy Wright, vice president of sales operations at LexisNexis. It \'s a line that hasn \'t been tested yet in our industry. The Customer Conundrum In February, Leo Cronin, senior director of information security at LexisNexis, was in the middle of a tennis match when he got the call from McLaughlin, his boss. Allan told me there were a couple of issues with Seisint, and I would have to go down to [Seisint headquarters in] Boca Raton to check it out, Cronin recalls. The database showing the anomalies was called Accurint, an information service specifically designed for government officials, financial institutions and law enforcement agencies that includes detailed personal and non-public information. Customers with access to Accurint are required to undergo a thorough vetting process before they are permitted to subscribe. And the fact that customers had billing questions about this specific database was of particular concern to LexisNexis. For years, LexisNexis had been focused on shoring up security inside its own network. We were very preoccupied with perimeter security—you know, viruses and worms, Cronin says. We were putting in network security architecture, intrusion and detection software, that kind of thing. What they weren \'t doing was worrying about how they could address their vulnerabilities on the edges of the network—and particularly, how they could make their customers more secure. They learned that lesson the hard way. If you look at the network, it \'s clear that it \'s there to serve the applications, which are there to serve the customer, says Cronin. So we need to treat that as an extension of the network. But that network includes more than 4.5 million LexisNexis customers and business partners, a large chunk of which comes from one of the most technologically challenged industries in the world: government. Both local and federal government agencies are notoriously backward when it comes to technology in general. Indeed, the Government Accountability Office issued this scathing assessment of federal information security in July: Pervasive weaknesses in the 24 major agencies \' information security policies and practices threaten the integrity, confidentiality, and availability of federal information and information systems. For evidence of that on the local level, look no further than Denton County, Tex., the probable point of origin for the Lexis-Nexis data theft. It was at a constable \'s office in this county of 500,000, in the north-central part of the state, that the unforgivable security sin of clicking on an unknown attachment took place. It can happen to anyone, of course, but it is clear that when it comes to sophisticated and targeted attacks of this nature, the Denton County constable \'s office is overmatched. We continually try to educate people, says Kevin Carr, director of IS for Denton County. And we have a fairly intelligent workforce. But it \'s real easy to send an e-mail that looks legitimate and get the information from anyone you want. Next thing you know, you \'ve got a Trojan or a worm. The Secret Service thought so highly of Denton County \'s information security that when they came to town to investigate, they didn \'t even bother to interview Carr. In fact, Carr was only vaguely aware of the LexisNexis data theft: I \'ve heard here and there about some things that happened around here, he said. And there are very few IT security resources for the likes of Denton County. The International Association of Chiefs of Police, a 20,000-member professional organization, admits that there is only so much they can do. We make sure this stuff is part of education and training, says Matt Snyder, administrator of the IACP technology center. But realistically, we are touching a small percentage of organizations. The small agency is always going to require additional assistance. Compounding the monumental task of securing even the most clueless of customers, LexisNexis has an additional problem. It \'s one thing for a bank to encourage customers to protect against identity theft, because a bank \'s customers are the actual people at risk from identity theft. But in LexisNexis \' case, its customers are not the same people whose names and identities are at risk. So its customers have little incentive to spend their own money and time fixing what amounts to a gaping security hole in LexisNexis \' own network. The bottom line on privacy is that there is a big flaw in this business model, says Marc Rotenberg, executive director of the Electronic Privacy Information Center, a consumer advocacy group in Washington, D.C. The customers of these data aggregation companies are not the ones that bear the risk. This industry needs to find a way to align the benefits of data collection and sale with the individuals whose personal information is being collected and sold. The Plan In April, shortly after the news of the data theft became public, CEO Kurt Sanford was called before Congress to testify on securing personal data. He told the Senate Judiciary Committee that LexisNexis had provided a consolidated credit report and credit monitoring services to the people whose names were stolen from the Accurint database. They are also offering credit counselors and 20,000 worth of identity theft insurance to anyone who ultimately becomes a victim of fraud as a result of the theft. We have learned a great deal, Sanford told Congress. Less than a month after the theft took place, the company rolled out a new initiative called the LexisNexis Customer Security Program. The program is designed to push more of the burden for the security of LexisNexis \' information out to its customers. It consists of four relatively simple changes: stronger log-in requirements, monthly user verification, IP address restriction (allowing access from predesignated IP addresses only), and restricted access to full Social Security numbers and driver \'s license information. (See Four-and-a-Half Million Fingers, page 48.) Some of the changes are mandatory for all LexisNexis customers, while others, such as IP address restriction, are voluntary. Some are already in place. Others roll out later this year. For the most part, the impact on customers has been minimal. (This magazine, which uses the LexisNexis newspaper and periodical database, was asked to change its password and to add a security question and answer as part of the effort. It took less than five minutes to complete the change.) We want to make it as painless as possible, says Wright. Security hasn \'t always been this big a part of the job, but once it crossed the line outside of our walls and to our customers, that \'s when I got involved. Many of LexisNexis \' customers are already well aware of the threat of identity theft, either through the constant media coverage the topic receives, or because of the nature of their businesses. Ron Morano is a collections strategist at Creditor \'s Interchange Inc., a third-party collection agency based in Buffalo, N.Y. He uses LexisNexis to get phone numbers, home addresses and mortgage information on people who are behind on their loan payments, and he often finds himself trying to collect on accounts that are overdue because their owners have been the victims of identity theft. I \'m more than aware of it, Morano says.	But even with his intimate knowledge of identity theft, Morano still finds the additional security to be a nuisance. We \'ve limited our Accurint searches to one IP address, and that disables access from any other computer, he explains. It has become more of an inconvenience. Wright downplays the effects of asking customers to tighten security on LexisNexis \' behalf. A lot of our customers are already required to do this stuff because of the regulated industries they \'re in, she says. The majority of our customers are delighted, and some have even gone to great lengths on their own. LexisNexis is even considering helping them take the next step. The company is currently working with antivirus and antispyware companies to potentially provide some kind of bulk discount to its customers. An effort of this kind would not cost LexisNexis a great deal of money, says Cronin, given the eagerness of software vendors to gain new business. Aftershocks In late May, FBI and Secret Service agents served warrants at the homes of several hackers in Minneapolis, Winston-Salem, N.C., and elsewhere, seizing computers and disks they believe to be related to the LexisNexis case. According to a report in the Washington Post, the hackers gained access to the Accurint database, created a number of sub-accounts, looked up themselves, friends and celebrities, and then began selling Social Security numbers to data thieves. The investigation is ongoing, but one suspect told the newspaper that the Feds got everybody. Though the criminal investigation seems to be wrapping up, the shock waves from the break-in continue to reverberate throughout the LexisNexis ecosystem. Have you seen what \'s happened to ChoicePoint \'s stock price? asks Mark Marcon, a financial analyst with Milwaukee-based Robert W. Baird & Co., which downgraded ChoicePoint in June to neutral from outperform. ChoicePoint \'s stock lost more than a quarter of its value in the months following the disclosure of its security breach. Because LexisNexis is part of a much larger holding company, it \'s hard to say what effect the theft has had on investors. Still, parent company Reed Elsevier \'s shares have been in steady decline since March. These guys do a lot of business with the government, so it \'s important to have a good public image, says Marcon. It \'s one of many factors that go into valuing a company. Just ask John Perry, CEO of CardSystems Solutions, the credit card transaction processing company from whom 40 million credit card records were stolen in June. He told Congress that because of the security breach, his company faced imminent extinction—the result of its two biggest customers, Visa and American Express, having canceled their contracts with the Atlanta-based company. CardSystems is being driven out of business, he said. High Profile Yet another negative side effect of a highly publicized data breach is that it significantly increases the size of the bull \'s-eye on LexisNexis. The media coverage has made more people aware of the company and the type of information it sells. What keeps me up at night? asks LexisNexis \' Cronin. This whole thing has raised the profile of the company, so we need to be even more vigilant now. People are trying to make us their little project. The government has also taken notice. It \'s not every day that Kurt Sanford has the uncomfortable experience of testifying before Congress, defending an industry that has flown well beneath the radar and, thus far, been loosely regulated. But the heat is being turned up on ChoicePoint, LexisNexis and the data-aggregating industry in general. Privacy advocates are calling for wholesale changes to the personal information business. I think, at the very least, their business model should require them to incorporate the risks as well as the benefits of collecting and selling personal data, says EPIC \'s Rotenberg, who believes that companies such as LexisNexis need to be legally and financially responsible for the loss of personal data. It \'s like a car company saying they can sell automobiles and not worry about whether the brakes work. The argument against tight regulation of data aggregators is less convincing. Critics of federal intervention believe that the flow of personal information is the lifeblood of the free-market economy, and that to restrict the flow could severely inhibit the ability to approve credit and market products effectively. Regulation is always good at protecting people \'s privacy, says LexisNexis \' Wright. But individual consumer transactions fuel our economy. Yet as the public clamor over identity theft rises, it \'s becoming increasingly likely that heavier regulation is in LexisNexis \' future. On the positive side, it has been easier for CTO McLaughlin to get budget approval of new security spending. He won \'t say just how much the data theft has cost the company thus far, but it \'s not cheap. In talking with him, you can \'t help but get the feeling that no matter how much he spends on security, it will never be enough. You can \'t ever stop, he says. Whether you like it or not, you have to spend more money to try to stay one step closer. Because it \'s impossible to stay one step ahead. Lexis-Nexis CTO: Malicious Searches Hard to ID September 5, 2005 ByDan Briody When it comes to protecting the data held on LexisNexis \' voluminous databases, CTO Allan McLaughlin has nothing but the best intentions. Unfortunately, the same cannot be said of everyone gaining access to that information. In the battle against malicious intruders, McLaughlin says the key is discerning intent, identifying anomalies and acting quickly. CIO Insight: How do you solve the problem of customer security? McLaughlin: Well, first you have to find every possible way to educate people. Second, you have to take whatever controls you have as far as possible, without building hurdles that get in the way of the customers using the service. Also, educating your own employees is crucial. And as you build your products, you have to take advantage of much faster evolving technologies, like what I call fences in the environment, that can find anomalies in real time, rather than after the fact. How do you find those anomalies today? Most of the world finds anomalies as a part of an after-batch process, when they \'re looking at logs or looking at bills. But by that time, whatever bad things you were trying to prevent have already happened. Do those real-time technologies exist today? They are getting better and better, but it \'s still not real time. The problem is, who knows what people using the database are looking for? These systems are there for people to access information. So how do you determine the difference between someone who is looking with malicious intent versus someone using it for the purpose that it was designed for? I don \'t know. How? If a guy walks into a bank wearing a mask, you have a pretty good idea what he \'s there for. You might be wrong 1 percent of the time. But 99 percent of the time, he \'s not there for good things. Many times, for instance, the first thing bad people do is look for stuff about themselves. Who knows about me? And what do they know? So you build algorithms, mathematically and manually, that look for patterns that are outside the two or three standard deviations of the typical user of that service, whether it \'s a billing system, an alumni listing, an e-mail listing or an information provider. When it happens, you raise the flag. Someone looks into it, hopefully within hours or minutes rather than weeks or months, and determines if it \'s legit. And if it is, then you adapt your algorithm accordingly. But people walk into online databases wearing masks all the time, and you can \'t see that. Right. So one of the things we do is avoid signing contracts with people who write scripts that can search the databases automatically. Because we charge by the number of transactions, so if you see an account or an ID that is processing a hundred transactions a second, who can type that fast? So we \'re getting better at that algorithm approach. Because the monitoring stuff, that \'s a rearview mirror. Lexis-Nexis Bolsters Customers \' Data Defenses September 5, 2005	As part of its effort to shore up the defenses of its 4.5 million customers \' networks, LexisNexis Group has made some quick changes to its access policy. In addition, the company is looking into working with antivirus and antispyware vendors to provide discounted versions of their products to LexisNexis customers. The four-part Customer Security Program is outlined below. Part 1 Password Protocols and User ID Suspensions	New password security protocols require system administrators and users to have alphanumeric passwords and to change those passwords at designated times. This helps prevent unauthorized use as well as attempts to compromise customer passwords. In addition to stronger passwords, LexisNexis will begin suspending user IDs after 90 days of inactivity and after five unsuccessful login attempts for all users. All reactivated users will then be required to change their password upon their next login. Part 2 Monthly User Verification	Monthly user verification requires system administrators to verify, every month, that all user ID holders are current employees with a continued need for the LexisNexis services. Customers will need to appoint a qualified system administrator. A tool for the user verification process is under development. Part 3 IP Address Restriction and Multifactor Authentication	IP address restrictions will be required wherever possible. This security measure will help identify users who try to enter systems from locations not authorized by the customer, such as home IP addresses or consumer-oriented ISPs (e.g., AOL). Lexis-Nexis is also developing multifactor authentication, using tokens for customers where IP address restrictions cannot be implemented. Part 4 Removing Qualified Access from LexisNexis Research Software	Users that access the LexisNexis services via the desktop research software interface will see truncated Social Security numbers and masked driver \'s license numbers in their results. Users that access from the Web interface will see full results. Source: LexisNexis Group Copyright (c) 2005 Ziff Davis Media Inc. All Rights Reserved.",32);arrFiles[72]=new Array(106,"cybercrime/New focus on cyber-terrorism.htm","2005-12-14","New focus on cyber-terrorism","","","from the August 16, 2005 edition - http://www.csmonitor.com/2005/0816/p01s02-stct.html New focus on cyber-terrorism At risk: computers that run power grids, refineries. By Nathaniel Hoopes | Contributor to The Christian Science Monitor Buried deep in America \'s new energy legislation is a requirement that power companies step up their safeguards against computer attack. Why does a law aimed at boosting energy production address the dangers of hackers, software worms, and computer viruses? Because the automatic networks that run so-called critical infrastructure are emerging as a vital - and weak - link in America \'s defense against terrorism. Networks run everything from water-treatment plants and oil refineries to power grids and transport networks. They constantly read data and adjust, opening a valve here, closing a tank there, often keeping the facility operating 24/7. In the wrong hands, however, such systems could be compromised. People downplay the importance of cyber-security, claiming that no one will ever die in a cyber-attack, but they \'re wrong, says Richard Clarke, a former terrorism and cyber-security czar in the Bush administration. This is a serious threat. In March, for instance, hackers gained access to the electronic control systems of the nation \'s electric power grid, says Dave Powner a cyber-security specialist at the US Government Accountability Office (GAO). In 2003, a computer worm on the Internet may have helped delay power companies \' response to the major Midwest and Northeast power outage, although the electric industry says it has found no evidence of a cyber-related effect. In all, the first half of 2005 saw 237 cyber-attacks worldwide - a 50 percent rise from the same period last year, according to IBM \'s global security intelligence team. From a national security viewpoint, the real danger is that a determined and talented cyber-terrorist could break into a utility or chemical plant \'s computer network and manipulate the sensor-control systems, experts say. That could set off an accident that could kill not just workers at the plant, but thousands of civilians in the surrounding area. Nearly 300 critical-infrastructure facilities lie in densely populated regions with 50,000 or more local residents, according to the Department of Homeland Security (DHS). An attack on the scale of the Bhopal disaster in India is not impossible, says Mr. Clarke, citing the chemical leak that killed some 3,800 people in 1984. Despite such a nightmare scenario, federal officials are more immediately focused on the threat of a dual attack, says Mr. Powner of the GAO. There is a lot of concern in government about what the FBI calls a swarming terrorist attack. You have a physical attack and a simultaneous cyber-attack on critical infrastructure - that really hurts your ability to respond. The cascading effect of such an attack could cost the nation billions of dollars. And getting the incredibly complex systems up and running again wouldn \'t be easy, security experts say. Many experts say that DHS is still relatively unprepared to protect America \'s critical infrastructure against a cyber-attack. In government, when it came to senior level focus after Sept. 11, 99.9 percent was skewed towards physical protection, and cyber-security took a back seat, says Paul Kurtz, director of the Cyber Security Industry Alliance and a former Bush administration official. But he is optimistic that attitudes are changing. Facing mounting pressure, DHS is creating a national cyberspace response system. Supporters claim it will help the government work with the private sector to prevent, detect, and respond to cyber incidents. In November, DHS will launch its first major national exercise - code-named Cyberstorm - to test the government \'s ability to partner with the private sector in response to a major cyber incident. Last month, DHS Secretary Michael Chertoff created a new post, assistant secretary of cyber and telecommunications security, a position that Mr. Kurtz says will carry the necessary clout. But Clarke points out that the position hasn \'t been filled yet. So far it \'s been all talk, he says. Power companies aren \'t waiting around for governments to protect them. Ultimately industry has to be responsible for protecting its own assets, says Ellen Vancko of the North American Electric Reliability Council. The council is developing cyber-security standards, which its members will have to uphold. The industry has a lot to address, Clarke says. Every time the government has tested the security of the electric power industry, we \'ve been able to hack our way in - sometimes through an obscure route like the billing system, he says. Computer-security officers at a number of chemical plants have indicated privately that they are very concerned about the openness of their networks and how easily they might be penetrated. Full HTML version of this story which may include photos, graphics, and related links www.csmonitor.com | Copyright © 2005 The Christian Science Monitor. All rights reserved. For permission to reprint/republish this article, please email Copyright",9);arrFiles[73]=new Array(107,"cybercrime/Organized Crime Invades Cyberspace.htm","2005-12-14","Organized Crime Invades Cyberspace","","","Organized Crime Invades Cyberspace	Once the work of vandals, viruses and other malware are now being launched by criminals looking for profits. News Story by Dan Verton AUGUST 30, 2004 (COMPUTERWORLD) - Antivirus researchers have uncovered a startling increase in organized virus- and worm-writing activity that they say is powering an underground economy specializing in identity theft and spam. The July outbreak of MyDoom.O was yet another reminder that spammers are now using sophisticated, blended threats that mix spam, viruses and denial-of-service attacks, according to Andrew Lochart, director of product marketing at Postini Inc., an e-mail security services provider in Redwood City, Calif. In July alone, Postini \'s customers reported more than 16 million directory harvest attacks, which are attempts by spammers to hijack a company \'s entire e-mail directory. The link between viruses, worms and the underground criminal economy, however, goes back to long before the latest version of MyDoom, says Mikko Hypponen, antivirus research director at F-Secure Corp. in Helsinki, Finland. Starting with the initial outbreak of MyDoom in January, Hypponen began to notice that what had previously been considered little more than a rogue virus-writing subculture actually had a significant link to organized efforts to use malicious code to make money. MyDoom got press coverage because of the denial-of-service attack it launched against SCO and Microsoft Corp., says Hypponen. But nobody was paying attention to what was happening behind the scenes. And what was happening, according to Hypponen, was the beginning of a concerted, unabashed effort to turn virus and worm infections into cash. Eight days after MyDoom.A hit the Internet, somebody scanned millions of IP addresses looking for the back door left by the worm, said Hypponen. The attackers searched for systems with a Trojan horse called Mitglieder installed and then used those systems as their spam engines. As a result, millions of computers across the Internet were now for sale to the underground spam community. Image Credit: Anastasia Vasilakis	Of course, spamming viruses aren \'t new. Security professionals have been dealing with them for years. However, the appearance of MyDoom and more recent viruses and worms signaled the beginning of much larger problems, says Hypponen. By the end of January, Internet users were busy dealing with the Bagle mass mailer. And although the first version wasn \'t particularly successful, at least a dozen variants soon followed, including variants that carried Mitglieder. But the real clues that organized gangs were using Bagle and MyDoom to sell spam proxies -- as well as links to phony Web sites that exist only to harvest identities and personal financial information -- came when the writer behind Netsky.R posed a direct challenge to the so-called professional virus writers. In addition to attempting to remove Bagle and MyDoom from infected computers, Netsky conducted a denial-of-service attack against Web sites known to be fronts for identity thieves, according to Hypponen. When F-Secure analysts decoded the encrypted messages hidden within a subsequent version of Bagle (Bagle.J), they discovered a threat of a virus war if the Netsky author continued to ruin the business of the professional virus writers. We have information that the writers of both MyDoom and Bagle may be Russian immigrants living in various European countries, says Hypponen. Whoever is behind it, they are organized and running a thriving business, says Hypponen. Brian Dunphy, director of global analysis operations at Symantec Corp. \'s Security Operations Center in Alexandria, Va., acknowledges that it \'s difficult to discern the intent behind many viruses and worms in the wild. In addition to planting back doors, some worms, such as the latest MyDoom variant, have embedded peer-to-peer updating capabilities, he says. What we used to see are worms and viruses that did not have a reach-back-and-call-home capability, says Dunphy. What we saw with MyDoom, however, was that infected systems were aware of other infected systems, and they automatically built a peer-to-peer network of sorts. In fact, Symantec \'s analysis of the recent MyDoom.M outbreak discovered a mechanism that \'s used to maintain a list of all known infected systems and permits the worm \'s author to update all MyDoom.M-infected systems with new arbitrary malicious code with little risk of its network being hijacked by rival worm authors, says Alfred Huger, senior director of Symantec Security Response. In addition to propagating spam proxies and setting up peer-to-peer networks, viruses and worms are being used to install Web servers on vulnerable systems. Those Web servers are then used to host everything from pornography and pirated software sites to fake banks, Hugos says. Underground bartering and selling is conducted on Web sites such as a Russian site that, among other things, sells subscription services to compromised computers. Various other Russian and Chinese message boards exist for the sole purpose of selling spam hosts. Accepted payment methods, shown clearly on the Web pages, include E-gold transactions and WebMoney and Western Union money transfers. Ironically, organized e-criminals don \'t accept credit cards. For Sale: Your ID Viruses and worms carrying Trojan horse code are also powering massive identity theft rings. At sites like www.oemcd.biz , www.mega-oem.biz , http://huge-sales.info and www.atlantictrustbank.com , among hundreds of others, users are presented with the opportunity to buy popular software at tremendous discounts, sometimes at one-tenth the retail price. And while these sites look authentic, Hypponen offers a word of caution. The one thing all of these sites have in common is that none of them exist, he says. If you buy something from them, you \'ll get nothing, and they will never charge your credit card. But what they will do is steal your identity. In fact, identities and bulk credit card dumps are available to the highest bidder at some sites. Tracking down virus writers and other online criminals can be more difficult than anybody ever imagined. It \'s particularly difficult in the case of fraudulent domain-hosting schemes, which often use IP addresses that expire every two minutes, Hypponen says. If you refresh these sites, the domain name points to a different IP address every two minutes, he explains. And then if you look at the IP addresses, you \'ll see that they are in places like Japan, Portugal, Brazil, Canada and elsewhere. Hackers and malicious-code writers are increasingly automating the Internet shell game that keeps many of them one step ahead of law enforcement. The Kuwaiti hacker group Q8See is a case in point. On March 8, a Russian source reported to F-Secure analysts the existence of a Trojan horse created by Q8See called Slacke. But what made Slacke unique was the extraordinary lengths to which its authors went to hide their tracks and the mystery that remains about the group \'s intent. First, the worm downloaded code from a Web site hosted in Sao Tome and Principe, a small island nation located off the Atlantic coast of Africa. Analysis by F-Secure, however, showed that the domain rights for the Web site had been sold to a company in Sweden. But registration information listed the company name as JordanChat and the location as Irbid, Jordan. The contact name was TeR0r. As thousands of infected computers downloaded the malicious code from the Web server in Sao Tome and Principe, they were then linked to an Internet Relay Chat system operated by CNN in Atlanta. Once logged into CNN \'s IRC server, the systems connected to an IRC channel in Mexico called Noticias. And when Hypponen and his analysts studied the channel, they were astonished at what they saw. There were 20,000 clients just sitting on the channel doing nothing. They looked like people, but they were bots, he says, referring to programs that perform repetitive, automated functions. The bots, however, weren \'t alone. According to Hypponen, three Kuwaiti users, presumably members of Q8See, were sitting on the channel and sending commands to the bots to scan various ranges of IP addresses. And while CNN eventually shut down the chat server, nobody knows for sure what the hackers were doing. We may never know, says Hypponen. Whether or not this is traditional organized crime doesn \'t matter -- because they are organized, and what they are doing is criminal. for Sponsored links-------- HAS THE BANNER AD --	Copyright © 2005 Computerworld Inc. All rights reserved. Reproduction in whole or in part in any form or medium without express written permission of Computerworld Inc. is prohibited. Computerworld and Computerworld.com and the respective logos are trademarks of International Data Group Inc.",22);arrFiles[74]=new Array(108,"cybercrime/Report Crooks behind more Net attacks.htm","2005-12-22","Report: Crooks behind more Net attacks","","","Report: Crooks behind more Net attacks	By Robert Lemos URL: http://news.zdnet.com/2100-1009_22-5455225.html Organized gangs are more likely than ever to be behind online attacks, according to a new VeriSign report. The trend appears to be towards more sophisticated attacks by more organized groups , VeriSign said in its twice-yearly Internet Security Intelligence Briefing, released on Tuesday. The criminal groups increasingly rely on massive numbers of compromised home PCs to launch their attacks, said Mark Griffiths, vice president for Mountain View, Calif.-based VeriSign. It \'s gone away from kids having fun to criminals trying to get some financial benefits from what they are doing, he said. Attackers can make money by holding online businesses ransom over threatened denial-of-service onslaughts, through credit card fraud or from spam income. The report \'s findings are based on the data generated by the Internet services company \'s handling of online registrations, domain look-ups, credit card transactions and corporate network security. The analysis suggests that PCs belonging to broadband subscribers based in the United States are unwittingly being used as a launching point for attacks. The number of security incidents has increased some 150 percent over the third quarter a year ago, and computers located in the United States account for more than 90 percent of the probes and attacks, the report found. It is so hard to trace these people (the attackers) back, Griffiths said. Those computers (in the United States) are ones that are sending the attack, which likely makes them bots. Compromised PCs, known as bots within the security community , have software surreptitiously installed by an attacker that allows the attacker to remotely control the machine. The collections of controlled machines, or bot nets, are typically used to prevent authorities from tracing the source of spam e-mail and online attacks. The VeriSign report found that bulk e-mail, or spam, accounted for nearly 80 percent of all messages handled by its clients. However, bulk e-mail also tends to be smaller in size than legitimate messages, and accounted for only 21 percent of the total bandwidth used by e-mail traffic, the report found. The company also found that e-commerce continues to expand, with the number of transactions up 25 percent from a year ago, and that the United States still accounted for the largest absolute number of fraudulent transactions. However, countries such as the former Yugoslav republic of Macedonia, the African countries of Nigeria and Ghana, and Vietnam are homes of a higher percentage of fraud, VeriSign \'s analysis of data indicated. The company labels any credit card transaction from an IP address sourced in Macedonia as risky, and more than 85 percent of such transactions from the other three countries are not be trusted, the company stated. The United States \' favored status among online criminals, however, underscores that the country has to do much more to protect its online citizens, Griffiths said. Those users are not as sophisticated as they should be and aren \'t defending their systems adequately, he said. That means we need more end-user education. He added that Internet service providers need to take a role in making customers \' PCs secure.",5);arrFiles[75]=new Array(109,"cybercrime/The new way thieves attack your computer.htm","2005-12-22","The new way thieves attack your computer","","","Money The Basics The new way thieves attack your computer There \'s a new twist on \'phishing \' scams: \'pharming. \' You type in a legitimate Web address but get directed to a bogus site that steals your data. By Christian Science Monitor The pharmers are coming! The pharmers are coming! Hang warning lanterns all over the Internet: It \'s under attack by a new scam.	For two years users have been hearing about phishing, the sending of bogus e-mails -- allegedly from a bank or other online business -- by criminals who hope to hook the unwary. Those who bite by clicking on a hyperlink in the e-mail are shipped off to a phony but authentic-looking Web site and asked to enter sensitive information. If they type in their passwords or account numbers, thieves get that data.	Now phishers have been joined by pharmers, who make the ruse more sophisticated by planting a seed of malicious software in the user \'s own computer -- or poisoning servers that direct traffic on the Internet. The result: You type in the correct address of a Web site, but the software sends you to a bogus one.	It \'s a rapidly growing threat, and one we \'ve been seeing a lot more discussion about among Internet security experts and people in the banking industry, says Lance Cottrell, founder and president of Anonymizer Inc. in San Diego, an Internet privacy and security firm. Phishing attacks rely on some gullibility of and participation by the victims, Cottrell says, since they must be persuaded to click on a link within the e-mail. But not clicking on such links is no protection against a pharming attack.	Here \'s how the scam works.	The thieves rely on the fact that the word address you use, such as www.my-bank.com , is connected to a distinct numerical address, like a browser to the right Web site. Pharming replaces the number with a fraudulent one, sending you to a criminal site instead of the real one.	Besides keeping antivirus and antispyware programming up to date on their PC, users have few other ways to defend themselves from pharming.	But any site that conducts financial transactions should be able to maintain a secure Web site, Internet security experts say. The corner of the browser should display a padlock symbol, and the address in the address bar should begin with https, not simply http. Are you being scammed?	To determine if you \'re at the real site, click on the lock symbol and make sure it displays the address you expect, says Mikko Hyppönen, chief research officer of F-Secure, an Internet security company in Helsinki, Finland.	Another kind of pharming, sometimes called domain spoofing, domain poisoning or cache poisoning, attacks the servers that route traffic around the Internet. These so-called domain-name system (DNS) servers also link the word address to its underlying numerical address.	To corrupt a DNS takes significantly more expertise, more access than attacking PCs, says Peter Cassidy, secretary-general of the Anti-Phishing Working Group, which has offices in Cambridge, Mass., and Menlo Park, Calif. That \'s why thieves first will try to get into individual computers.	They \'re the low-hanging fruit, he says. But they \'ll try anything that works. Some servers are hard to crack, he says, but others don \'t keep their defenses up-to-date.	Unlike the traditional landline telephone system, which was built from the outset to be a commercial enterprise, the Internet was designed to make sharing of information between scholars and researchers fast and easy, not to secure financial transactions.	It was built in a laboratory by guys who knew each other and married each other \'s sisters, Cassidy says. Now new layers of security continually must be added, as criminals probe for weak points. Spreading fraud	The Anti-Phishing Working Group reports that the number of new phishing messages rose by an average 38% per month in the last six months of 2004.	And pharming was one of the top five Internet scams in March 2005, says a recent report from the National Cyber-Forensics & Training Alliance, a nonprofit arm of the Direct Marketing Association. Internet fraud in general, which includes phishing and pharming, cost merchants 2.6 billion in 2004, 700 million more than in 2003, according to CyberSource, which processes Internet financial transactions. Gone \'phishing \' Phishing means sending out official-looking e-mails to tempt users to visit a bogus Web site and type in personal or financial data. Here are key points from a March report: Since July 2004, the number of Web sites linked to the scam rose an average 28% a month. The United States hosted a third of the phishing sites - more than any other nation - followed by China (12%) and South Korea (9%). Financial services are the most frequent target, with 4 of 5 phishers appropriating the brand of a bank or some other financial institution. Such sites only last an average 5.8 days before they \'re taken down. A new version of the scam - pharming -- plants malicious software on PCs to direct users to bogus sites.	While Cassidy has seen some disturbing pharming attack reports from Britain, we haven \'t seen it taking over the universe, he says. We have seen significant attacks, but not rapid proliferation, partly because it does take a little more expertise.	One pharming technique is to flood the DNS server with messages to trick it into saving false information that will send users to a phony site, Cottrell says. Then in many cases (the criminals) try to bounce you back to the real bank \'s Web site, so that you \'re not aware that anything has happened.	Phishers and pharmers set up their fake Web sites for only a few days or even a few hours, then move on before they can be found out.	Cottrell \'s company, Anonymizer, runs all its clients \' Internet traffic through its own secure DNS servers, which he says can protect clients from pharming. Keyboard trouble	But even if crooks can \'t get at your PC or the DNS server, they can always hope that you just can \'t spell.	F-Secure discovered recently that a malicious Web site had been set up at www.googkle.com , just one keystroke away from the famous http://www.google.com/ site. Users who accidentally went to the site using the popular Internet Explorer browser immediately were inundated with spyware, adware and other malicious software that tried to secretly load itself onto their PCs.	Before long, the site had disappeared. But Hyppönen still warns people not to try to visit it out of curiosity. These things sometimes pop up again, he says.	The technique isn \'t new. Similar attack sites have been created just a slip of the finger away from sites such as CNN.com, AOL.com and MSN.com, Hyppönen says.	The people behind the malicious sites can be anywhere from South Korea to Brazil to Russia. The PC operating the site could be somebody \'s grandmother \'s computer in Canada being remotely controlled without her knowledge, he adds.	Source: Anti-Phishing Working Group © 2005 Microsoft MSN Privacy Legal Advertise Feedback Help",16);arrFiles[76]=new Array(110,"fam_sec/Are You Responsible for Internet Security.htm","2005-12-14","Are You Responsible for Internet Security?","","","Topics > Privacy & Security > Online Security > Are You Responsible for Internet Security? Web surfers must share the burden with technology companies, industry execs say. Joris Evers, IDG News Service Friday, February 04, 2005 MOUNTAIN VIEW, CALIFORNIA -- In the battle against online scams, consumers have a responsibility to use the tools provided by technology vendors to protect their personal data, privacy executives from EBay, Hewlett-Packard, Microsoft, and Truste said this week. Phishing schemes are prevalent and EBay users are regularly targeted. Phishing scams typically use spam e-mail messages to drive people towards Web pages that look like legitimate e-commerce sites, but in fact steal sensitive information such as user names, passwords, and credit card numbers. The online auctioneer introduced a toolbar about six months ago that tells customers if they are actually on the EBay Web site or on a spoof site. The toolbar has been downloaded 1 million times, while EBay has about 135 million users. Protect Yourself While technology companies can provide tools to help, Internet users are responsible for protecting their data, executives from EBay, Microsoft, HP, and Truste said in a panel discussion Thursday at Microsoft \'s Mountain View, California, campus. The customer has a responsibility to help protect information as well as the technology companies, said Scott Shipman, privacy counsel for EBay, of San Jose, California. Tools available for customers include the toolbar as well as authentication methods such as fingerprint scanners, he said. Fran Maier, executive director at Truste, agreed. We have to get people to understand that they have a duty to protect their information, she said. Truste certifies Web sites as trustworthy when the companies adhere to certain rules. User education is a big part of the solution to online scams, the panelists said. Education will help Internet users find the appropriate security tools and learn how to identify fraudulent e-mail messages and fake Web sites. Educational tools are starting to get the message out there, said EBay \'s Shipman. TV commercials help, such as those by Citibank on identity theft in the U.S., but more needs to be done, said Truste \'s Maier. We have to leverage the word of mouth and, unfortunately, the bad experiences we all know about. It has to be in \'The Sopranos, \' \'Law and Order \' and other [popular TV shows]. That is how you reach a lot of people. Challenging Subject Scams, particularly phishing scams, are so complex that educating users is a major challenge, said Barbara Lawler, chief privacy officer at HP. How do you really educate someone to recognize a phishing scam? It is really hard to tell, she said. A couple of years ago we were not even talking about spyware, we were not talking about phishing. These are pretty new issues. ... The challenge is putting that in the language of the average person and that is, I think, where the industry still has work to do, Lawler said. Microsoft, which has been criticized for delivering software that enables scams such as phishing, also offers tools and information to protect users, said Peter Cullen, chief privacy strategist at the Redmond, Washington-based software maker. One of the ways is via a Web site that teaches how to identify scams such as phishing. But it comes back to users taking advantage of the tools and information made available to them. Cullen likened the adoption of security tools to when seatbelts were first introduced in cars. At first, not many drivers used the seatbelts, but usage rose after a concerted public information campaign. Daunted by the talk about online scams and the lack of a silver bullet from technology vendors, one attendee suggested that maybe the vendors should take a step back and develop products that are not prone to phishing. If EBay, HP and Microsoft can \'t fix the problem, I am pulling the DSL line out of my home, said the attendee, who did not give his name. Related Topics: Scams & Hoaxes , Cybercrime",11);arrFiles[77]=new Array(111,"hacking/Are hackers using your PC to spew spam and steal.htm","2005-12-19","Are hackers using your PC to spew spam and steal?","","","Posted 9/8/2004 12:54 AM Updated 9/8/2004 11:04 AM Are hackers using your PC to spew spam and steal? By Byron Acohido and Jon Swartz, USA TODAY Betty Carty figured she ought to be in the digital fast lane. Last Christmas, Carty purchased a Dell desktop computer, then signed up for a Comcast high-speed Internet connection. But her new Windows XP machine crashed frequently and would only plod across the Internet. Dell was no help. The PC maker insisted — correctly — that Carty \'s hardware worked fine. But in June, Comcast curtailed Carty \'s outbound e-mail privileges after pinpointing her PC as a major source of e-mail spam. An intruder had turned Carty \'s PC into a zombie, spreading as many as 70,000 pieces of e-mail spam a day. The soft-spoken Carty, 54, a grandmother of three from southern New Jersey, was flabbergasted. Someone had broken into my computer, she says. Since early 2003, wave after wave of infectious programs have begun to saturate the Internet, causing the number of PCs hijacked by hackers and turned into so-called zombies to soar into the millions — mostly in homes like Carty \'s, at small businesses and on college campuses. And, much like zombies of voodoo legend, they mindlessly do the bidding of their masters and help commit crimes online. Personal computers have never been more powerful — and dangerous. Just as millions of Americans are buying new PCs and signing up for ultrafast Internet connections, cybercrooks are stepping up schemes to take control of their machines — and most consumers don \'t have a clue. We thought things were bad in 2003, but we \'ve seen a sharp uptick in 2004. I \'m worried things will get much worse, says Ed Skoudis, co-founder of consulting firm Intelguardians Carty \'s PC could have been taken over in myriad ways. She could have been fooled into opening a virus-infected e-mail. She might have innocently surfed to a Web page bristling with contagious code. Or she may have done nothing at all. One of dozens of network worms, voracious, self-replicating programs that pinball around the Web searching for security holes in Windows PCs, may have found one on her new PC. Profitable attacks Cyberintrusions traditionally have been the domain of socially inept males launching electronic attacks for fun and bragging rights, often creating a huge, if transient, nuisance for companies and consumers. But things are changing: More PCs are being taken over purely for profit. Over the past eight months, USA TODAY interviewed more than 100 tech-industry executives, consultants, analysts, regulators and security experts who say top-tier code writers now create malicious programs mainly to amass networks of zombie PCs. They then sell access to zombie networks to spammers, blackmailers and identity thieves who orchestrate fraudulent for-profit schemes. Most consumers are slow to grasp that an intruder has usurped control of their PC. We have a large population that is easily tricked, says Dave Dittrich, senior security engineer at the University of Washington \'s Center for Information Assurance and Cybersecurity. One measure of the swelling tide of zombie PCs: E-mail spam continues to skyrocket, with zombies driving the increase. In July, spam made up 94.5% of e-mail traffic, nearly double from a year before, says e-mail management firm MessageLabs. Postini, another big e-mail handler, estimates nearly 40% of spam now comes from zombie networks. Using zombies to broadcast spam for Viagra or quickie loans has emerged as a huge business. Yet spreading ordinary spam is actually one of a compromised computer \'s more benign tasks. Bigger spoils lie in using zombies in elaborate phishing scams, in which e-mail directs consumers to bogus Web pages to trick them into surrendering personal information. And zombie networks are perfectly suited to flood targeted Web sites with data requests, in so-called distributed denial-of-service, or DDoS, attacks. Cybercrooks use the threat of a DDoS attack to extort protection money from businesses keen to keep their Web sites running. Few laws, few arrests Until recently, little has been done to stop such attacks. The Justice Department \'s Operation Web Snare netted 160 arrests in August that could lead to more busts, offering encouraging news to cybersecurity experts who have criticized law enforcement for not doing enough. Still, detractors point out there are few federal cybersecurity laws with stiff penalties. Federal, state and local law enforcement officials face daunting jurisdictional hurdles trying to corner, much less extradite, suspects. Chasing bad guys equipped to commit virtual crimes in several countries simultaneously has proved problematic, as has the sheer volume of incidents. It \'s easier trying to catch Osama bin Laden, says Steve Jillings, CEO of e-mail security firm FrontBridge Technologies. Zombie victim Carty took matters into her own hands: She did research on how to clean up and protect her PC and diligently updates programs that scan her computer for various types of malicious code. Her PC now runs clean. I had no clue at Christmas that I would become a security expert, she says. Consumers remain seduced by the Internet \'s convenience. E-commerce is bigger than ever, and most casual computer users overlook safety practices. The vast majority don \'t use firewall software to block intruders, patch vulnerabilities or keep anti-virus subscriptions current. Consumers seem almost bizarrely unconcerned by security in general, says James Governor, founder of research firm RedMonk. People will practically give out their Social Security number as easily as their phone number. Low and slow thievery Heather Hall can trace the start of her online banking nightmare to the day she received what she thought was a legitimate e-mail request from Bank of America asking her to click a link to a bank Web page. The 27-year-old health services worker typed in her login, password and account number. Not long afterward, Hall noticed an unauthorized withdrawal on her banking statement for 6.50. The withdrawals increased in frequency and amounts, to as much as 108. Hall was the victim of a low and slow phishing scam, in which cybercriminals purposely steal small amounts of cash — sometimes as little as 20 cents at a time — to avoid detection. Though data are scarce, experts estimate millions of dollars are being skimmed from thousands of online banking accounts. About 23.6 million people had online accounts at the nation \'s top 10 banks in the second quarter of 2004, up 28% from the year before, says ComScore Networks. Sneaky cybercrooks are finding it profitable to be patient and nick an account for a long time, says Dan Larkin, unit chief of the FBI \'s Internet Crime Complaint Center. Bank of America agreed to reimburse the money stolen from Hall \'s account, but only after she badgered them. They wanted me to believe it was my fault, says Hall. Bank of America does not comment on specific cases. It reimburses victims of fraud and changes their online name and password, spokeswoman Betty Riess says. First seen more than a year ago, phishing scams begin with e-mail messages broadcast to potential victims. The e-mail directs them, often under the guise of doing a security check, to a bogus Web page with the identical look and feel of an authentic page. A network of zombie PCs e-mails the original request to tens of thousands of potential dupes. A separate zombie, usually a more powerful PC, often sitting in a remote country, perhaps in an obscure nook at a university, serves up the counterfeit Web page. Another zombie, in yet another country, perhaps in the basement of a small shop, stores the stolen account details and conducts the theft. Computer networks make this easy to do since they form a virtual world in which footprints and fingerprints are easily erased at a distance, says the University of Washington \'s Dittrich. Experts say clues point to loosely organized crime syndicates, probably in Russia, Latvia, Kazakhstan and China, coordinating phishing scams with other schemes to quickly turn stolen account information into tangible booty. In what feds call one of the biggest phishing busts, a Romanian man was arrested last year and convicted for using an elaborate network of bogus Web pages and escrow accounts to fleece Americans out of 500,000. Typically, filched financial information, such as credit card numbers, is sold on Web sites. Buyers often use card numbers to make long-distance phone calls, sign up for pornographic sites and buy computers over the Internet. Unique phishing attacks have surged more than 10 times since January, to 1,974 in July, and show no sign of slowing. In early August, MessageLabs intercepted more than 125,000 phishing e-mails containing links to a replica of a well-known U.S. bank \'s Web site within the first five hours of its appearance. U.S. banks are in a delicate position. Their customers lost an estimated 2.4 billion from phishing in the 12 months ending in April, according to market researcher Gartner. Citibank, a frequent target, warned users of a dozen examples of phishing solicitations on its Web sites in the first half of June. Few, however, are willing to discuss such matters in detail out of fear of scaring customers and undercutting trust in online banking, in which they \'ve invested hundreds of millions of dollars, says John Pironti, a security consultant at Unisys. Now, free, do-it-yourself phishing kits are surfacing on the Internet. Would-be cybercrooks can choose from a dozen kits containing bogus Web sites, programming code and spam tailored toward customers of Citibank, eBay and PayPal, says analyst Chris Kraft of security firm Sophos. The same zombie network used in phishing scams can also bombard a Web site with data requests. When that happens, no one else can get to the targeted Web site, effectively shutting it down. Such an assault is known as a distributed denial-of-service, or DDoS, attack. Cybercrooks threaten DDoS attacks just as racketeers wave truncheons. Last January, a series of such attacks began against major Internet gambling operators in the United Kingdom. The attacks were preceded with e-mail messages demanding 10,000 to 40,000. Some operators paid — and were immediately attacked again, according to a report from the Association of Remote Gambling Operators. The blackmail attempts continue. LadbrokesCasino.com, one of the UK \'s largest online gambling Web sites, recently reported coming under attack from 518,000 zombie computers. New methods of attack Seattle screenwriter Alex Tobias figured her laptop was immune to attacks. After all, she and her husband, Martin, a venture capitalist, worked from home a lot. To protect their home network, Martin installed top-notch firewall and anti-virus software. Yet last fall, Alex \'s laptop slowed until she couldn \'t use e-mail or the Internet. It took extensive troubleshooting to determine that it had been turned into a spam-spreading zombie, and it took half a day to clean it up. I don \'t know what she got or how she got it, says Martin. The bottom line is she got it. Their experience underscores the notion that there are many ways for malicious code to slip past firewalls and anti-virus programs. E-mail viruses, for instance, rely on tricking the victim into opening an infectious attachment. Another widely used tool is harder to fight: direct planting of contagions, known as come-and-get-it viruses, on popular Web sites. Such contagions commonly lurk on peer-to-peer sites, where music and movies are exchanged. They trick the computer user into giving up personal information, and they can activate other invasive programs unseen by the PC owner. Web contagions are turning up on high-traffic Web pages across the Internet. Most do the basics: plant a back-door Trojan horse and turn over full control to an intruder who might be sitting half a globe away. Some have begun implanting spyware called keystroke loggers, which are designed to notice whenever the PC user types anything that looks like account information. It grabs the information and sends it to a zombie computer for storage and risk-free access by the crooks. The scariest type of attack is one most consumers aren \'t aware of. Scores of sophisticated programs, called worms and bots, continually scour the Internet for Windows PCs with security holes. There are hundreds of Windows vulnerabilities, and new ones turn up regularly. Microsoft issues software patches, or fixes, each month for the most troublesome. But most home users, and many businesses, don \'t keep up to date on patches. Consumer outrage needed Not long ago, securing the Internet meant cleaning up after so-called script kiddies, youths who use pre-written malicious code, available free on the Web, to pull digital pranks. But security has metastasized into an almost fatalistic endeavor. Hackers can do almost anything with a compromised PC, and there isn \'t much we can do about it, says Keith Lourdeau, deputy assistant director of the FBI \'s Cyber Division. That will change only as tech suppliers who profit from the Internet simplify networks and collaborate on implementing universal security standards that may run counter to their current business strategies. Many experts say such a shift is at least five years away. The one thing that could make tech suppliers move more quickly is consumer outrage. Consumers should demand what they do of other utilities, says Kip McClanahan, CEO of security firm Tipping Point. When I pay my water bill, I expect my water to be drinkable out of the tap. Today, when you pay your Internet bill, the data you get is not consumable. Tomorrow: The tech industry begins to fight back	© Copyright 2005 USA TODAY, a division of Gannett Co. Inc.",22);arrFiles[78]=new Array(112,"hacking/Attack of Comcast's Internet zombies.htm","2005-12-14","Attack of Comcast  \\'s Internet zombies","","","Attack of Comcast \'s Internet zombies	By Declan McCullagh http://news.com.com/Attack+of+Comcasts+Internet+zombies/2010-1034_3-5218178.html	Story last modified Mon May 24 04:00:00 PDT 2004 Comcast \'s high-speed Internet subscribers have long been rumored tobe an unusually persistent source of junk e-mail. Now someone from Comcast is confirming it. We \'re the biggest spammer on theInternet, network engineer Sean Lutner said at a meeting of an antispam workinggroup in Washington, D.C., last week. Lutner said Comcast users send out about 800 million messages a day, but amere 100 million flow through the company \'s official servers. Almost all of theremaining 700 million represent spam erupting from so-calledzombie computers --a breathtaking figure that adds up to six or sevenspam-o-grams for each American family every day. Zombie computers arise when spammers seize on bugsin Microsoft Windows --or from naive users who click on attachments--to takeover PCs and transform them into spambots. Comcast users send out about 800 million messages a day, but a mere 100 million flow through the company \'s official servers.	No hard numbers exist, butsome estimates say that about one-thirdof spam comes from zombie computers with broadband connections. The ownersof the zombie PCs typically don \'t even notice what \'s happening. Because home computers are more likely to be infected than business PCs, andbecause Comcast has about 6 million high-speed customers, it may have beeninevitable that the cable provider became a haven for remote-controlled zombiesthat churn out junk e-mail. Lutner pointed to IronPort Systems \' statisticsfor comcast.net . It shows that while the company \'s six official mail servershave a monthly outgoing e-mail index of 6.2, there are at least 44 Comcastsubscribers with similar scores of 5.8 or higher. Overall, Comcast is the singlebiggest source of all types of e-mail, with a higher volume than the next two,Time Warner \'s Road Runner and Yahoo, combined. Brian Martin, a computersecurity consultant in Denver, experienced Comcast zombies firsthand. Lastyear, a Comcast subscriber apparently infected by zombieware disgorgedapproximately 10,000 e-mail messages an hour to Martin \'s e-mail address. It took two weeks of almost daily complaints to Comcast \'s abuse departmentbefore the deluge stopped. I don \'t think that they really care about spam orvirus infections, Martin said. They don \'t want to put any personnel on it,because it takes away from the bottom line. Slowing the spam I don \'t mean to pick on Comcast. At leastnowadays, its technicians appear to be more responsible: In March, it begansending warnings to suspected zombie infectees. In terms of the percentage ofits users infected by zombies, Comcast is far from the worst--it \'s just thesheer number of subscribers that makes the company such an awesome source ofspam. Comcast could block zombies by preventing outgoing mail from leaving itsnetwork before it flows through its servers. That technique is called blockingport 25, the port used by the venerable SimpleMail Transport Protocol . It \'s just the sheer number of subscribers that makes the company such an awesome source of spam.	It has the benefit of makinge-mail departing Comcast \'s network easier to monitor so that network technicianscan spot zombie PCs more quickly. It \'s not rocket science, JohnLevine , co-chair of the Internet Engineering Task Force \'s antispam researchgroup, said of this technique. Basically, you count the mail, and you giveeveryone a quota. If Grandma usually sends six messages a day and now tries tosend 10,000 messages a day, what are the odds that she made that many newfriends? Some Internet providers, including EarthLink, Cox Communications and a numberof universities, block port 25. But because it inconveniences people who rely onremote e-mail providers or the Linux aficionados who run their own mail servers,it \'s still a controversial response. (Eventually, all e-mail clients willsupport the workaround of outgoingconnections through port 587 .) Based on my conversations last week, Comcast \'s network engineers would liketo be more aggressive. But the marketing department shot down a ban on port 25because of its circa 58 million price tag--so high partially because somesubscribers would have to be told how to reconfigure their mail programs topoint at Comcast \'s servers, and each phone call to the help desk costs 9. Instead, Comcast \'s engineers plan to try the innovative approach ofidentifying the zombie PCs and surreptitiously sending the subscriber \'s cablemodem a new configuration routine that prevents outbound connections on port 25.Zombie-infected users won \'t even notice, the thinking goes, because most peopleuse Comcast \'s mail servers for outgoing e-mail. Anyone wrongfully blocked cancall and complain. That \'s a clever idea, and it might even work. More importantly, it shows thatthe Internet \'s biggest spammer is finally trying imaginative ways to save ourin-boxes from its subscribers. Copyright ©1995-2005 CNET Networks, Inc. All rights reserved.",8);arrFiles[79]=new Array(113,"hacking/Going price for network of zombie PCs.htm","2005-12-22","Going price for network of zombie PCs: 2,000-3,000","","","Posted 9/8/2004 12:36 AM Updated 9/8/2004 1:33 AM Going price for network of zombie PCs: 2,000-3,000 By Byron Acohido and Jon Swartz, USA TODAY In the calculus of Internet crime, two of the most sought-after commodities are zombie PCs and valid e-mail addresses. One indication of the going rate for zombie PCs comes from a June 11 posting on SpecialHam.com, an electronic forum for spammers. The asking price for use of a network of 20,000 zombie PCs: 2,000 to 3,000. Such networks typically are used to broadcast spam and phishing scams and to spread e-mail viruses designed mainly to create yet more zombies. Zombie networks can be sophisticated. Last fall, a small Internet service provider asked cybersleuth Don Bowman to find out which of its 70,000 subscribers were broadcasting spam. Its network was generating so much spam, other ISPs threatened to blacklist it. Bowman discovered that e-mail would blast from 20 PCs for a brief period. After a pause, another fire-hydrant-like surge gushed from a different group of 20 PCs. On average, each machine disgorged 630 pieces of e-mail an hour. It wasn \'t natural, says Bowman, chief software architect for security firm Sandvine. No one can type that fast. His conclusion: An intruder was deploying squads of zombies in rotating waves. Why? Probably so the unwitting zombie owner would tolerate performance slowdowns that came and went — and investigate no further. To put a zombie network to work, an attacker needs a list of targets in the form of e-mail addresses. Lists can be purchased from specialists who harvest anything that looks like an e-mail address from Web sites, news groups, chat rooms and subscriber lists. Compiled on CDs, such lists cost as little as 5 per million e-mail addresses. But you get what you pay for: Many CD entries tend to be either obsolete or spam traps — addresses seeded across the Internet by spam-filtering companies to identify, and block, spammers. Valid e-mail addresses command a steep price. In June, authorities arrested a 24-year-old America Online engineer, Jason Smathers, and charged him with stealing 92 million AOL customer screen names and selling them to a spammer for 100,000. Recent e-mail viruses have begun probing for new ways to flush out valid e-mail addresses from search sites such as Google and Lycos.	© Copyright 2005 USA TODAY, a division of Gannett Co. Inc.",6);arrFiles[80]=new Array(114,"hacking/Hacker Steals Air Force Officers.htm","2005-12-14","Hacker Steals Air Force Officers  \\' Personal Information","","","washingtonpost.com Hacker Steals Air ForceOfficers \' Personal Information By Jonathan Krim Washington Post Staff Writer Tuesday,August 23, 2005; D01 Social Security numbers, birth dates and other private data on roughly 33,000Air Force officers -- about half the branch \'s officer corps -- were stolen froma military computer database, the service informed its personnel late lastweek. Officials of the Air Force Personnel Center, based at Randolph Air Force Basein San Antonio, said the intrusion occurred sometime in May or June, apparentlyby someone who used a legitimate user \'s log-in information to gain access to thesystem. The exposed data did not include financial records, but contained suchpersonal information as marital status, number of children and academic records.No incidents of identity fraud have been tied to the theft, the military said,but officers were warned that Social Security numbers could be used to get otherprivate data. Affected Air Force personnel were advised to monitor their credit reportsclosely. The theft is the latest in a spate of data breaches over the past two yearsinvolving government agencies, universities, commercial firms and data brokers,resulting in the exposure of tens of millions of consumers to potentialfraud. The Air Force information was contained in an online system designed to helpofficers manage their assignments and careers. The Air Force detected the breachafter we determined that there was one individual who was reviewing a lot ofthese records . . . it was very uncharacteristic, Maj. Gen. Anthony F.Przybyslawski said in an interview. The incident is being investigated by both military and civilianlaw-enforcement agencies. We are conducting a wall-to-wall review of ourpersonnel-related data systems to maximize the security of the systems,Przybyslawski wrote in a letter on Friday to Air Force personnel. He wrote that the career-management system was shut down when the intrusionwas discovered, but that personnel were not immediately notified pending aninitial investigation. The system was restored with enhanced security, the letter said, adding thatidentity theft and other fraudulent uses of our resources steal from ouroperational budgets. John E. Pike, director of GlobalSecurity.org, said the breach is part of apersistent problem with cyber-security that the Pentagon has been unable toovercome. While Pike said the military has a strong record of protectingclassified information related to its mission, it has had less success guardingsensitive data about its people. They have historically done much better atprotecting operational systems than at protecting administrative systems, Pikesaid. The problem, he said, is that the Pentagon doesn \'t make security for thosesystems a top priority. Robust security can be expensive, and it can beannoying to implement, he said. Three years ago, a San Diego security firm out to demonstrate vulnerabilitiesused the Internet to access government and military computers withoutauthorization. Consultants for the firm used free, publicly available softwareto browse through files containing military procedures, e-mail, Social Securitynumbers and financial data. In December, Bank of America lost tapes containing financial data on about1.2 million federal employees, including some U.S. senators. About 900,000 ofthose exposed worked for the Department of Defense. Bruce Schneier, chief technology officer for the security services companyCounterpane Internet Security Inc., said the Air Force \'s problems are hardlysurprising given the string of security breaches at commercial firms this year.He said that data security has been weak, and the Pentagon is no different thanChoicePoint, CardSystems or Time Warner. People aren \'t taking it seriously, sothis happens, he said. Schneier said that while affected Air Force officers may be vulnerable toidentity theft as a result of the intrusion, he doesn \'t think this breach is anymore dangerous than others. Knowledge of an Air Force officer \'s Social Securitynumber, he said, is unlikely to help the culprit get access to Air Forcefacilities or weaponry. It takes a lot more than knowing who you are for that,he said. Staff writer Griff Witte contributed to this report. ©2005TheWashington Post Company",6);arrFiles[81]=new Array(115,"hacking/hackers admit to wave of attacks.html","2005-12-14","Wired News: Hackers Admit to Wave of Attacks","","","Hackers Admit to Wave of Attacks By Kevin Poulsen Story location: http://www.wired.com/news/privacy/0,1848,68800,00.html 02:00 AM Sep. 08, 2005 PT An Ohio computer hacker who served as a digital button man for a shadyinternet hosting company faces prison time after admitting he carriedout one of a series of crippling denial-of-service attacks ordered by awealthy businessman against his competitors. In a deal with prosecutors, Richard Krashed Roby, 20, pleadedguilty in federal court in Toledo last month to intentionally damaginga protected computer, after launching a 2003 attack on an onlinesatellite TV retailer that caused at least 120,000 in losses. There were a lot of big-time people making a lot of money whopicked up on him and persuaded him to do this, without a lot in it forhim, says Mark Weinberg, Roby \'s attorney. He \'s one of these peoplewho are brilliant in one area but absolutely lacking in common sense inothers. Jay Echouafni, the 38-year-old satellite TV mogul who allegedlyordered and funded the cyberhits, went on the lam last year, andremains a fugitive from a federal indictment out of Los Angeles. In a related deal, 31-year-old Paul Ashley, former operator of theFoonet hosting service, admitted to recruiting three other computerintruders to carry out Echouafni \'s orders. He has not yet entered aguilty plea. Under federal sentencing guidelines, Ashley faces 70 to 87months in prison for his role in the attacks, but the terms of his pleaagreement make him eligible for a reduced sentence in exchange for histestimony against other defendants. If Ashley were to cooperate with the government and, for example,testify against Echouafni, he could get a departure from his sentence,said Los Angeles assistant U.S. attorney James Aquilina, who \'sprosecuting the case. Roby faces 18 months to two years in prison under sentencing guidelines. Until it was shuttered by an FBI raid last year, Ashley ran Foonetfrom a basement server room in his suburban Ohio home. The enterpriseenjoyed a double-edged reputation for providing hosting that couldstand up to distributed denial of service, or DDOS, attacks, even as itgave safe harbor to members of the computer underground drawn to thebulletproof service. Every script kiddy on IRC had a shell there, says Andrew Kirch, asecurity administrator for the Abusive Hosts Blocking List. Spamming,hacking, phishing, DDOS networks -- you want to run scans for a largeamount of IP space for prevalent Windows vulnerabilities? Set upthere. In his plea agreement, Ashley admitted he knowingly allowed clientsand employees to control networks of compromised Windows machines, orbots, from Foonet. That came in handy in October 2003, when Echouafni, a Foonet client, offered Ashley 1,000 to snuff out two websites. Echouafni, who was CEO of Massachusetts-based Orbit Communication atthe time, allegedly claimed that competitors RapidSatellite.com andWeaKnees.com had stolen his content and attacked his online business,which sold satellite TV gear over the web. Ashley took the money and, according to his plea agreement,recruited three associates to do the dirty work: Jonathan Hall, LeeWalker and Joshua Schichtel, known online as Rain, sorCe and Emprespectively. Hall, who is not currently charged in the case, says the offermarked a change in Ashley \'s business practices. Prior to Jay askingfor all that crap, Paul Ashley never really asked me to launchlarge-scale attacks like that, Hall said in a telephone interview. Roby was pulled into the gang by Schichtel, who found his network of3,000 bots inadequate to take down Miami-based RapidSatellite,according to court records. Roby \'s resources were more formidable: Theyoung hacker controlled approximately 15,000 Windows machines that he \'dtaken over with a variant of the Spybot worm. Schichtel allegedly promised Roby a free Foonet shell account inexchange for turning those hacked PCs against RapidSatellite.Foolish, says attorney Weinberg. The FBI described the ensuing attack as a tenacious, 10-day delugethat tracked RapidSatellite through three ISP changes, and brieflyblocked Amazon.com and the website of the Department of HomelandSecurity, which had the poor luck of sharing service providers withEchouafni \'s rival. A concurrent attack allegedly launched by the other members of thecrew took a similar toll on WeaKnees.com. Apparently pleased with theresults, Echouafni went on to purchase Foonet from Ashley, retainingAshley as an employee and hiring Hall to handle cybersecurity for thecompany. In February of last year, Echouafni allegedly ordered a thirdattack on another competitor, ExpertSatellite.com. Prosecutors filed the first round of charges against Ashley and hisalleged co-conspirators last year, then dropped them during pleanegotiations with some of the defendants. Schichtel could not be reached for comment for this story, andAshley \'s attorney failed to return repeated phone calls. Roby \'s lawyersays the young hacker had little to offer prosecutors in exchange for asweeter deal. When you \'re at the bottom of the barrel, there \'s not much you cantell them, says Weinberg. Usually the people who are at the top havethe ability to provide the most substantial assistance. Aquilina says prosecution is proceeding against Walker in the United Kingdom, where Walker lives. Hall is a resident of flooded New Orleans. Speaking with Wired Newsfrom the Houston hotel to which he evacuated with his family, he sayshe never participated in the attacks, even after Echouafni ordered onepersonally, as his boss. The first time he asked me to launch some stupid-ass attack, heclaimed that the company had hacked his database and wiped it out,says Hall. I knew it was bullshit. When Echouafni threatened to fire Hall, the then-teenaged hackerpromised to carry out the order, but never did, he claims. He keptcatching on that the attacks weren \'t going through, and he keptclimbing up my ass and saying that they \'re not working. But I neveractually did it.... Jay was an asshole. Hall says he stopped attacking computers when he was 16. Echouafni skipped out on 750,000 bail secured by his house inMassachusetts last year. Law enforcement officials believe he \'s nowliving in his native Morocco. © Copyright 2005, Lycos, Inc. All Rights Reserved. Lycos® is a registered trademark of Carnegie Mellon University.",9);arrFiles[82]=new Array(116,"hacking/Hacking for dollars.htm","2005-12-14","Hacking for dollars","","","Hacking for dollars	By Joris Evers http://news.com.com/Hacking+for+dollars/2100-7349_3-5772238.html	Story last modified Wed Jul 06 04:00:00 PDT 2005 Hackers have traded fame for financial gain, experts say. In the past, lone hackers defaced Web sites or launched global worm attacks,mainly to gain notoriety among their peers. Today, they use their skills for profit. They hunt for security flaws andfind ways to exploit them, hijack computers and rent those out for use as spamrelays, or participate in targeted attacks that steal sensitive information fromindividuals or spy on businesses. What \'s new:	In the past, hackerswanted to gain notoriety by writing the biggest worm they could. These days,they \'re more likely to be motivated by money. Bottom line:	Though the shift could lead to a drop-off in global worms,it still spells trouble. The targeted attacks crafted by businesslike hackersare likely to hit harder. In the last year, we have seen a dramatic shift to hacking for financialgain, said Oliver Friedrichs, a senior manager at Symantec Security Response.The benefit of creating a widespread worm on the Internet has really beensuperseded by the potential of monetary gain. Though the shift could mean the end of big worms like last year \'s Sasser ,it still spells trouble. The targeted attacks crafted by businesslike hackerscan hit individuals and organizations harder--and in the pocket, rather thanjust in the PC. There is an underground market. A hacker who finds a way to exploit asecurity hole in Windows could earn up to 1,000, or much more if the hole isnot yet known to Microsoft or anyone else, said Dmitri Alperovitch, a researchengineer at security vendor CipherTrust. That flaw could then be used to hijack PCs. These compromised systems, calledzombies, can then be used to relay spam, to host malicious Web sites or tolaunch denial-of-service attacks--at a price. Spammers, phishers and others whowant to rent out a network of about 5,500 zombies typically pay about 350 aweek, according to security company Symantec. These zombienetworks , known as botnets, are sometimes used to extort companies, whoare threatened with a denial-of-service onslaught aimed at hurting theirbusiness. British online payment processing company Protx went offline after anattack and was warned that problems would continue unless a 10,000 payment wasmade, according to a recent report in The New York Times. The FBI has also seen an increase in hacking for money. We have seen a risein the cases where the motivation appears not just to be for purposes ofbragging in chat rooms, but to actually profit financially, said FBI spokesmanPaul Bresson. Underground markets for selling credit card numbers, software vulnerabilitiesor renting out botnets are also on the rise, he said. We \'re seeing a lot moreof that today then we ever have, Bresson said. New breed	As the motive of those involved has changed, sohas their profile , Symantec \'s Friedrichs said. In the past, they wereteenagers or others who did it to gain notoriety. Today \'s hackers arewhite-collar criminals and criminals in foreign countries, he said. Among that group, though, are coders who realized that they could take thehobby they had for years and turn it into a profitable business, CipherTrust \'sAlperovitch said. Unless they are really good at it, they probably won \'t becomemillionaires. But it is a good side business, he said.	The change has been accompanied by an increasingingenuity in crafting attacks. Phishingscams , for example, are becoming aimed at smaller groups of victims. Also,companies are being targeted with Trojan horses meant to get access to corporatenetworks or to enable industrial espionage. The deception techniques are getting better, and the payload is also gettingmore sophisticated, said Dan Hubbard, a senior director at Websense, a SanDiego, Calif.-based security vendor. As more money gets made, the attacks getmore sophisticated. All this means that stakes are higher for individuals and for businesseswhose systems suffer an attack. With a worm, they might have had to apply apatch or reinstall a PC. With financially motivated threats, victims could havesensitive corporate information or their identitystolen . One fraud area seeing a rise in activity--and therefore, a likely lift inscam revenue--is phishing. These scams typically combine spam and fake Web pagesthat look like trusted sites to try to trick the victim into divulging sensitiveinformation such as passwords or credit card numbers. The number of phishinge-mails tracked by IBM \'s Global Business Security Index reached an all-time highin May, the company said. It saw 9.14 million messages sent to its customers, upfrom a previous high of 7.7 million in January. Credit card data sells for up to 100 per account, according to a report onthe economy of phishing, released in June by San Francisco antispam providerCloudmark. The price depends on how high the limit is and how much supportinginformation is supplied, though--an account with little supporting informationwill go for much less. American Express cards fetch more, as those come withouta preset spending limit, experts said. Symantec has seen a clear change in the malicious code, such as Trojanhorses, used in attacks. In the final six months of last year, 54 percent of theattack code was targeted at obtaining personal data. That is up from 36 percentin the same period in 2003.	Themotivation behind today \'s new e-mail-borne threats is far more sinister thantraditional large-scale attacks.	--MarkSunner, chief technology officer, MessageLabs But as victims lose more money, consumers \' defenses in general go up,Websense \'s Hubbard said. Many people now realize the importance of installingsecurity software and patches, and technology to fight phishing, such as browsertoolbars , is becoming increasingly popular. Also, Microsoft has said it willinclude phishing protection in Internet Explorer 7, a test version of which isdue out this year. MessageLabs, an e-mail security company, has also spotted the trend oftargeted attacks--but this time, aimed at businesses. Last week, the companysaid it had stopped e-mail messages containing a malicious attachment that wassent to only 17 addresses at a global company. It appeared to be an attempt togain access to the company \'s network. The motivation behind today \'s new e-mail-borne threats is far more sinisterthan traditional large-scale attacks, Mark Sunner, chief technology officer atMessageLabs, said. Hackers are getting paid to create the malicious programs, which could thenbe used in industrial espionage or to collect sensitive company data. In late May, Israeli police made 18 arrests in a case of industrial espionageusing Trojan horses. The programs were designed to spy on computer systems andhad been planted on the computers of some of the country \'s top companies. Sneaky worms	The underground market means that programs thatexploit security holes in software are worth too much these days to waste on anattention-grabbing worm. Such major outbreaks get detected soon, triggering masspatching by users and investigations by law enforcement agencies. Instead, hackers are more likely to create a slow, stealthy attack that willget malicious software installed on many machines, said Steven Hofmeyr, thechief scientist at Sana Security.	In other news: Office standards battle grinds on NASA focuses on 3D view of the sun Newsmaker: Taking on rootkits with hardware Year in review: Data security Perspective: Must we renew the Patriot Act? There is no real incentive to write those kinds of mass worms other than thegraffiti incentive, Hofmeyr said. The lure of money likely is not solely responsible for the lull in large wormoutbreaks, experts said. After a string of worms in 2003 and Sasser last year,many people realized the importance of security software and patching theirsystems. Also, Microsoft, whose software is often the target of worms, has been workingto improve its act . Windows XP Service Pack 2, a large security-focusedupdate for the desktop operating system, was released last year. On the server,Windows Server 2003 is deemed more secure than its predecessors. The world has become much more aware of malicious activity, Debby FryWilson, a director at Microsoft \'s Security Response Center, said. In the future, intrusionprevention products could play a part in protecting systems against targetedsecurity threats. Some tools look at the behavior of software and block suspectactivity. Other products look more closely at the data leaving a corporatenetwork and can block the transmission of credit card data, for example. Attacks have changed, not vanished. Security companies and Internet usersface increasing challenges to fight the sophisticated threats that often flyunder the radar. With money as a spur, hackers are motivated to keep creatingnew attacks--and to keep one step ahead of the competition. I call it the chess game, where the bad guys have the white pieces andalways get to go first, Gartner analyst John Pescatore said. Copyright ©1995-2005 CNET Networks, Inc. All rights reserved.",15);arrFiles[83]=new Array(117,"hacking/US networks attacked by Chinese military.htm","2005-12-19","US networks attacked by Chinese military","","","US networks attacked by Chinese military Security institute warns By : Nick Farrell Thursday 15 December 2005, 07:48 THE CHINESE military is trying to penetrate USgovernment and industry computer networks, the head of a security instituteclaims. Alan Paller, the director of the SANS Institute, an education and researchorganisation focusing on cybersecurity said a number of attacks had been tracedto the Chinese province of Guangdong. He said that the techniques the hackers have been using make it unlikely thatthey have came from any other source than the military. Paller said that the attacks are carried out by someone with intensediscipline, which is something rarely seen in hacker outfits normally. He said that during the attacks, the perpetrators were in and out with nokeystroke errors and left no fingerprints, and created a backdoor in less than30 minutes. Paller said the US government was downplaying the attacks, which hadnot helped the situation. Things that had been taken included US military flight planning software fromits Redstone Arsenal, he said. More in the Sydney Morning Herald , here . µ",2);arrFiles[84]=new Array(118,"idtheft/Think your PC is safe online - Think again.html","2005-12-19","Think your PC is safe online? Think again","","","MSNBC.com Think your PC is safe online? Think again Study finds most home PCs don \'t have basic security software By Bob Sullivan Technology correspondent MSNBC Updated: 8:22 p.m. ET Dec. 14, 2005 WASHINGTON - While most Internet users think they are safe online, they \'re not, according to a new study released Wednesday by America Online and the National Cyber Security Alliance . In fact, about 80 percent are exposed to common Internet threats, the study found. More than half of the participants either had no anti-virus protection or had not updated it within the last week, researchers found.  About half did not have a properly-configured firewall, and four in ten didn \'t have spyware protection. Taken collectively, more than 4 in five consumers lacked at least one of the three types of basic protection. Still, 83 percent told researchers they were safe from online threats, the study found. The results mirror a similar study conducted last year by AOL and Cyber Security Alliance. The sweeping study is thorough; researchers follow-up survey responses with in-home visits, and technicians inspect consumers \' PCs.  Among the key findings — consumers often falsely believe their computers have up-to-date Internet pest protection when they don \'t. People have a false sense of security, said Tatiana Platt, senior vice president at AOL. Researchers also asked participants to save all their e-mails for a month, and found that about one in four had received an e-mail scam — a phishing e-mail — that attempted to lure sensitive personal information.  Perhaps more alarming, some 70 percent of those consumers thought the e-mails were from legitimate companies. Of those receiving the phony e-mails, most thought they might be from legitimate companies — seven in 10, or 70 percent, were fooled by the e-mails, said the report. Keeping consumers safe is becoming even more critical as more engage in Internet commerce and financial transactions, Platt said. The study found nearly three-quarters of those surveyed use their computers for sensitive transactions such as banking, stock trading or reviewing medical information. Still, there is much confusion about what consumers need to do to keep their computers safe, said Ron Teixeira, executive director, National Cyber Security Alliance.  For example, many never update the antivirus software that comes loaded with their PCs, he said.  We do need to make sure if people are not Internet security experts that it \'s easy to keep the software up to date, Teixeira said.  A lot of programs have automatic updates, but they just need to be turned on. There was some good news in the survey. More consumers are keeping antivirus software up to date than last year, the study found.  A year ago, only 33 percent had updated their antivirus software in the past week. This year, 44 percent had.  And twice as many consumers (56 percent compared to 28 percent ) had properly configured firewalls, thanks in part to changes in Microsoft \'s Windows XP program that turn on the firewall by default. (MSNBC is a Microsoft-NBC joint venture.) But new technology and new attacks are making it a tough battle. The study found that while more homes are connecting to the Internet using wireless networks, too few of them are properly set up to keep out intruders. More than one out of four homes had a wireless network (26 percent), and nearly half of these homes (47 percent) failed to encrypt their connection, a safety precaution needed to protect wireless networks from outside intruders. The study also confirmed at least a casual link between spyware infections and children \'s surfing habits: 69 percent of homes with children under age 18 had spyware/adware, as opposed to 58 percent of households without kids. Corporations continue to work on ways to make computers safer, but Teixeira said all that new technology can be foiled by users with unsafe Internet habits The security is only as good as the user, he said. The researchers conducted in-home interviews with more than 350 Internet users nationwide. The researchers also reviewed the e-mails received by those households. The Federal Trade Commission has several tips to keep from getting hooked by phishers: If you get an e-mail asking for personal information, call the company directly or type in the company’s correct Web address. Do not click on the link provided in the e-mail. Use antivirus software and a firewall. This can protect a user from accepting unwanted files that could harm a computer or track a consumer’s Internet activities. Don’t e-mail personal or financial information. Additional information about the National Cyber Security Alliance, including tips to stay safe online, and the complete results of the AOL/NCSA Online Safety Study are available at www.staysafeonline.org . The Associated Press contributed to this story. © 2005 MSNBC.com",8);arrFiles[85]=new Array(119,"phishing/Some Get Phishing E-Mails Monthly.html","2005-12-09","WJACTV.com - Print This Story - Some Get Phishing E-Mails Monthly","","","WJACTV.com Some Get Phishing E-Mails Monthly POSTED: 11:27 am EST December 7,	2005 WASHINGTON -- Experts say Internet scammers are pretty effective at mimicking online businesses. A study out Wednesday from America Online and the National Cyber Security Alliance says about seven in 10 people who get phony e-mails think they may be legitimate. The survey also found that about one in four Internet users get e-mail phishing scams each month. The crooks try to lure recipients into providing sensitive personal information. A vice president at AOL said scammers are taking advantage of the fact that more and more people are doing business by computer. The legitimate transactions generate e-mail the con artists copy. The study found that despite that vulnerability, more than four in five home computers lack at least one of three important safeguards: updated antivirus software, spyware protection or a secure firewall. Experts, including the FTC say that you can help avoid phishing scams by typing in full Internet addresses or calling companies, rather than following links sent in e-mail. Copyright 2005 by TheAssociated Press . All rights reserved. This material may not bepublished, broadcast, rewritten or redistributed.",2);arrFiles[86]=new Array(120,"safety/AOL survey finds rampant online threats, clueless users - Computerworld.htm","2005-12-22","AOL survey finds rampant online threats, clueless users","","",">Return to story AOL survey finds rampant online threats, clueless users	It found a virus or worm on 20% of home computers News Story by Paul Roberts OCTOBER 25, 2004 (IDG NEWS SERVICE) - A survey conducted by Internet service provider America Online Inc. found that 20% of home computers were infected by a virus or worm and that various forms of snooping programs such as spyware and adware are on a whopping 80% of systems. Even so, more than two-thirds of home users think they are safe from online threats. The survey reveals a gap between users \' perceptions and the prevalence of threats on the Internet. That gap causes many home computer users to forgo security precautions such as antivirus and firewall software, and could pose a threat to the integrity of sensitive personal and financial information, which survey respondents said they are increasingly using their computer to manage, according to a statement from AOL. The National Cyber Security Alliance (NCSA), a nonprofit group that seeks to raise public awareness of cybersecurity issues, also helped with the survey. Technical experts examined 329 home computers connected to the Internet with either broadband or dial-up connections in September and October. Participants were interviewed about their awareness of online threats. Following their interview, AOL technicians examined the firewall and antivirus settings on participants \' computers and looked for virus infections and for the presence of spyware and adware. More than 70% of those who participated in the survey falsely believed they were safe from viruses and online threats, even though almost 20% of those were currently infected by a virus and 63% acknowledged being infected in the past, the survey found. Spyware was an even more common and underacknowledged problem than viruses, the survey showed. Spyware or adware programs were found on 80% of the computers analyzed. Spyware is a broad term that describes a category of programs, such as keylogging software, that illegally monitors a computer user \'s activity, often capturing and transmitting that information. Adware describes legally installed software, including Web page cookies, that track user behavior such as Web surfing, often for the benefit of online advertisers. About 90% of those whose computers were infected with spyware didn \'t know about the infections and didn \'t know what spyware programs are, the survey showed. In addition to finding widespread ignorance about threats, AOL technicians uncovered lax security on many of the systems they inspected. While 85% of those surveyed installed antivirus software on their machine, 67% of those surveyed lacked up-to-date antivirus signatures that could stop the latest threats, AOL said. A majority of users, 67%, also go without firewall software that can protect Internet-connected machines from attacks, AOL said. Confusion about the purpose and necessity of security programs may be part of the problem. A majority of users said they did not understand what a firewall is or how it works, and 58% of those interviewed couldn \'t explain the difference between a firewall and antivirus software, the company said. Users also were confused about or unaware of the symptoms of infections by spyware and other malicious code. For example, 63% of those with pop-up blocking software said they still receive pop-up messages. Around 40% of those surveyed reported their Web browser \'s home page or search results being changed without their permission -- all classic symptoms of spyware or virus infection. While those sobering numbers appear to suggest that security software makers aren \'t reaching technically unsophisticated users, an NCSA representative said that user complacency was the biggest problem. A lot of people believe it \'s not going to happen to them, said Ken Watson, president of the NCSA. It \'s like thinking that you \'re never going to get in a car wreck either, or get sick -- they have the same attitude toward computer security. Computer security is a shared responsibility. Software makers are doing their part to make software products more secure, he said, citing the recent security improvements in Microsoft Corp. \'s Windows XP Service Pack 2 release. The NCSA is backed by the U.S. Department of Homeland Security and leading security software makers including Microsoft, RSA Security Inc., Symantec Corp. and McAfee Inc. The group published a list of 10 cybersecurity tips on its Web site and is hoping that news of the survey prompts more users to visit the site and follow its guidance on protecting Internet-connected machines, Watson said. Better security on home machines is becoming more urgent as more individuals use computers for managing sensitive information such as financial and health data, AOL said. As with the introduction of any new, widely adopted technology, increased computer use requires users to become more threat-savvy, Watson said. It \'s like the introduction of cars and new roads in the last century -- people need to use them wisely and safely, he said.	Reprinted with permission from	For more news from IDG visit IDG.net	Story copyright 2005 International Data Group. All rights reserved. for Sponsored links-------- HAS THE BANNER AD --",11);arrFiles[87]=new Array(121,"safety/Online banking use widespread, study finds.htm","2005-12-22","Online banking use widespread, study finds","","","Online banking use widespread, study finds	By Elinor Mills URL: http://news.zdnet.com/2100-9588_22-5759890.html A majority of adults are comfortable monitoring their finances and paying bills over the Internet, while older people remain more cautious, according to a Yahoo-commissioned study released Thursday. In an online survey of 2,687 people, 64 percent said they check their bank account balances primarily online and 56 percent said they use the Internet as their primary way to check their investment portfolios. The percentage who said they pay their bills primarily over the Internet (43 percent) was the same as for those who said they pay bills through the mail. Half said they trade investments mostly online, while only 15 percent said they still make investment trades in person, the study found. Meanwhile, identity theft worries have increased in response to recent high-profile security breaches. Two-thirds of single and married adults with dependent children said they were more concerned about online identity theft now than they were a few years ago, as did eight out of 10 retirees, or so-called empty nesters who have grown children, said Richard Kosinski, who works with Yahoo \'s advertisers in the financial services sector. However, the increase in e-mail fraud and phishing--techniques used to get sensitive information by, for instance, luring people to fake Web sites and prompting them to type in their data--is not so worrisome that it is scaring people away, he said. One in five single or married people with dependent children surveyed said such fraud has not caused them to avoid accessing their financial information online, while one in three retirees and empty nesters said the same. One of the key findings of the study is that the Internet is the leading medium for most financial activities, Kosinski said. Another study released Thursday found confidence in online commerce slipping . Three out of four Web shoppers say they are more cautious about where they buy goods online, while one in three report buying fewer items than they would otherwise because of security concerns, market researcher Gartner said. The survey covered 5,000 consumers in the United States. The Yahoo study was co-commissioned by OgilvyOne Worldwide and conducted by Forrester Research and Flamingo International. For the quantitative portion, Forrester sent out online surveys in April.",4);arrFiles[88]=new Array(122,"spyware/november tops for spam.htm","2005-12-14","November Tops for Spam, Zombies on the Rise","","","www.esecurityplanet.com/trends/article.php/3568726 Back toArticle November Tops for Spam, Zombies on the Rise By Michael Hall December 6, 2005 A messaging security company says November has been the worst month of the year for spam thanks mainly to a widespread virus outbreak. According to CipherTrust the latest Sober virus outbreak ratcheted up the total number of bogus messages. The virus has, according to the company, accounted for more than 500,000 total infections since its latest outbreak. CipherTrust draws its data from deployed IronMail appliances, the company \'s e-mail security product. Based on data received from more than 4,000 of the devices,the company reported several other spam trends. Most noteworthy, the company noted that over the last six months, its software has been identifying an average of 170,000 new infected zombie computers each day. Since the Sober outbreak, the number of new zombies sending spam and virus messages increased by nearly 50 percent, bringing the average total number to more than 250,000 new infected IPs each day, the company said in a statement. This article was first published on Enterprisenetworkingplanet.com . Copyright 2005 Jupitermedia Corporation All Rights Reserved.",3);arrFiles[89]=new Array(123,"spyware/Spyware Researchers Discover ID Theft Ring.htm","2005-12-16","Spyware Researchers Discover ID Theft Ring","","","Spyware Researchers Discover ID Theft Ring August 8, 2005	By Ryan Naraine Spyware researchers picking apart one of the more notorious spyware programs have stumbled upon what appears to be a massive identity theft ring hijacking confidential data from millions of infected computers. Sunbelt Software Inc., makers of the enterprise-grade CounterSpy spyware protection product, made the discovery during an audit of CoolWebSearch, a program that routinely hijacks Web searchers, browser home pages and other Internet Explorer settings. During the research, Sunbelt researcher Patrick Jordan deliberately installed the CoolWebSearch application on a machine and immediately noticed that the infected system became a spam zombie that was placing callbacks to a remote server. When Jordan visited the remote server, he was shocked to find that it was being used to distribute sensitive personal information from millions of PC users infected by the spyware application. We found the keylogger transcript files that are being uploaded to the servers. We \'re talking real spyware stuff…chat sessions, usernames, passwords, bank account information, full names, addresses, said Sunbelt president Alex Eckelberry. Read more here about the many faces of spyware. In an interview with Ziff Davis Internet News, Eckelberry said the sophistication of the operation suggests it \'s the work of a massive identity theft ring that used keystroke loggers to grab confidential information that could be used to create fake online identities. I \'m not being dramatic. This is the most repulsive thing I \'ve ever seen. It \'s very painful to see what \'s in these log files that are being uploaded in real time. We \'re seeing a lot of bank information and usernames and passwords to get in, Eckelberry said. He said the log files included logins to one business bank account with more than 350,000 and another small company in California with over 11,000, readily accessible. There are lots of eBay account information and names and addresses of the people owning those accounts. Names, passwords, all matched up, Eckelberry added. Read more here about Sunbelt \'s acquisition of a Google-like spyware sniffer. He said the server, which is hosted out of a data center in Texas, was effectively a massive repository of stolen data that was being replenished in real time. As the [log] file gets to a certain size, it gets taken down and a new file starts generating. This goes on nonstop. We \'ve been watching it for a few days while trying to get to the FBI, and it just keeps growing and growing. While the site is being hosted in the United States, Eckelberry said the domain name is registered to an offshore company. Eckelberry said the huge size of the log files is a clear indication that thousands of machines are pinging back daily. In some cases, where users appeared to be at immediate risk of losing a considerable amount of money, Sunbelt has contacted the affected individuals. Eckelberry said the CoolWebSearch payload included a typical adware download that immediately scanned the infected machine for e-mails to use for spam runs. It then sets up a very intelligent keylogger that looks for very specific information. This won \'t get caught by a typical anti-spyware application, he said, noting that the keystroke logger was able to pick up identity-related data for delivery to the remote server. Anti-virus vendor Trend Micro Inc. provides a free online scanning tool that detects and deletes the CoolWebSearch application. The tool is available for the Microsoft Windows XP, Windows 2000, Windows Millenium Edition and Windows 98 operating systems. Editor \'s Note: This story was updated to include information on Trend Micro \'s scanning tool. Check out eWEEK.com \'s Security Center for the latest security news, reviews and analysis. And for insights on security coverage around the Web, take a look at eWEEK.com Security Center Editor Larry Seltzer \'s Weblog. Copyright (c) 2005 Ziff Davis Media Inc. All Rights Reserved.",8);arrFiles[90]=new Array(124,"viruses/Cell phone virus tries leaping to PCs.htm","2005-12-22","Cell phone virus tries leaping to PCs","","","Cell phone virus tries leaping to PCs	By Dawn Kawamoto URL: http://news.zdnet.com/2100-1009_22-5876664.html A Trojan virus that attempts to spread from smart phones to users \' PCs was discovered Wednesday, marking one of the first cases of virus cross-sharing between the two devices, according to security firm F-Secure. Cardtrap.A, a Trojan that attacks Symbian mobile phone operating systems, attempts to infect users \' PCs if they insert the phone \'s memory card into their computers. Though this latest threat is considered low-level because it requires user interaction and fails to launch on a number of Windows systems, including XP, it may be a precursor to more sophisticated viruses designed for transfer between mobile devices and PCs, said Mikko Hypponen, F-Secure chief research officer. A name game Name that worm--plan looks to cut through chaos	Plethora of different handles for the same threat can confuse security efforts. Common-identifier scheme looks to fix that. We expect to see more of this on the mobile front, Hypponen said. We may begin to see Windows viruses spreading to PDAs that are synched up to computers, or go from PCs to mobile phones with the memory card. Cardtrap.A copies two worms, Win32/Padobot.Z and Win32/Rays, to a phone \'s memory card. Once that card is inserted into the PC, Padobot.Z will attempt to start automatically on Windows-based machines via the autorun.inf file. The Ray worm, meanwhile, will create a bogus system folder on the user \'s desktop. Clicking on the folder unleashes a worm into the user \'s computer system. The Ray worm is more likely than Padobot.Z to take root in a system, because the Padobot worm may only launch on older versions of Windows, or be restricted to just a few memory card readers. Windows does not generally support auto-run from a memory card, which means that a virus won \'t automatically be transferred from a memory card to a user \'s PC and then launched. But in some instances, memory cards appear to the PC as CD-ROM drives, which would trick the auto-run feature into running the file, Hypponen said.	The volume of mobile-device malicious software has been rising rapidly, with 83 different viruses emerging within just a 14-month period, he added. Among the threats were the Fontal.A Trojan horse in April , the CommWarrior Trojan and the infamous Cabir virus .",4);arrFiles[91]=new Array(125,"viruses/Report Cons, not vandals, now write viruses.htm","2005-12-22","Report: Cons, not vandals, now write viruses","","","Report: Cons, not vandals, now write viruses	By Reuters URL: http://news.zdnet.com/2100-1009_22-5872501.html Computer hackers seeking financial gain rather than thrills or notoriety are increasingly flooding the Internet with malicious software code, according to a semi-annual report from security company Symantec. Symantec \'s Internet Security Threat Report said that during the first half of 2005, the number of new viruses targeting Microsoft Windows users jumped 48 percent to nearly 11,000 compared with the previous six months, as hackers used new tools and a growing sophistication to create malicious code. Issued on Sunday, the report also found that viruses exposing confidential information made up three-quarters of the top 50 viruses, worms and Trojans, up from 54 percent in the last six months of 2004. The report also said an increasing amount of menacing software allows spam to be relayed automatically from computer to computer . Such Trojan programs can download and install adware to display pop-up ads in a person \'s Web browser. More so-called robot, or bot networks, which are created when a hacker illegally gains control of a large number of computers, are now available for sale or rent in the underworld of the Internet, Symantec said. As financial rewards increase, attackers will likely develop more sophisticated and stealthier malicious code that will attempt to disable antivirus, firewalls, and other security concerns, the report said. Vincent Weafer, a security expert at Symantec, said early generations of cybervandals tended to unleash viruses as a way to bolster their reputations in the murky hacker world but now the motivation has turned to financial gain using more targeted malicious software. The number of headline-grabbing viruses has slowed since the MSBlast worm outbreak in 2003 , which targeted Microsoft software and devastated hundreds of thousands of computers worldwide. Instead, there is now a surge in people trying to gain control over a network of computers to launch attacks as well as a growing number of phishing scams that trick people into clicking onto a Web site that contains infected code, he said. We are seeing a very significant change where we are seeing far fewer large pandemics, Weafer said. However we are seeing a large volume increase in cyberattacks, viruses and variants. Indeed, Symantec saw an average of 10,532 active bot network computers per day, an increase of more than 140 percent over the prior six months. It also said phishing messages grew to an average 5.7 million messages a day, up from 2.99 million. What we are saying is that attackers are increasingly targeting your assets and your private information, Weafer said.",4);arrFiles[92]=new Array(126,"viruses/Report Says Military Computers Helped Spread Witty Worm.htm","2005-12-16","Report Says Military Computers Helped Spread Witty Worm","","","Report Says Military Computers Helped Spread Witty Worm May 25, 2005	ByPaul F. Roberts A new analysis of last year \'s Witty worm by three university researchers documents the worm \'s spread and claims that U.S. military computers and inside knowledge about vulnerable systems were an early propellant for the worm. The report, which was published by Abishek Kumar, a student at the Georgia Institute of Technology (Georgia Tech), claims to use a novel method to retrace the spread of the worm—which targeted vulnerable products from Internet Security Systems Inc.—by locating a machine in Europe that was the first computer infected by the worm. The techniques that the researchers developed could help with future worm studies, the authors say. The study was lead by Kumar, who at the time was working as a summer intern at the International Computer Science Institute (ICSI) at the University of California at Berkeley. Kumar and two ICSI researchers used network telescopes to analyze Witty \'s spread.	Read more here about the spread of the Witty worm. Telescopes collect traffic sent to unused portions of the Internet \'s machine address space that inadvertently collect traffic generated by fast-moving Internet worms. Telescopes have been used in the past to estimate the number of systems infected by worms and the rate at which worms can scan for vulnerable computers. In their analysis of Witty, the researchers discovered that they could develop an even more accurate picture of a worm \'s spread by analyzing the machines sending traffic to telescopes, according to the report. The success of the experiment surprised the researchers, Nicholas Weaver, an ICSI scientist, said in an e-mail. According to the paper, the authors began by disassembling the worm \'s code and reverse-engineering the component called a PRNG (pseudo-random number generator) used to generate a list of computers to attack. Once they cracked Witty \'s PRNG, researchers were able to use network telescope data from Witty \'s spread to recreate the state of the PRNG on each Witty-infected machine, providing a very detailed picture of Witty \'s spread from a single infected machine to more than 12,000 hosts in just over an hour in March 2004. Despite infecting a small number of hosts, Witty was better-written than the earlier SQL Slammer worm and could have rocketed around the world as fast as Slammer, if it had targeted a more widespread platform than ISS \' products, Weaver said. Researchers also captured heretofore inaccessible data, such as the network uptime of infected hosts, the number of disks they contained and their network connections, Weaver said. It is very difficult to create a survey of end hosts and their characteristics. That we were able to create such a survey, as a side effect of how the worm was constructed, was unique, he said. The detailed picture of the worm \'s spread allowed the researchers to spot an infected computer connected to the Internet through a European ISP, which they believe is the first host infected by the worm and used to launch Witty. The researchers passed on the address of that machine to law enforcement, according to the report. That machine was running a slightly different version of Witty, causing it to stick out from other infected systems, he said. Another controversial finding of the report is that a set of 135 hosts at a U.S. military installation were infected near the beginning of the worm \'s spread and were critical to its spread. Researchers postulated that the Witty author specifically targeted the systems because he or she knew that they were vulnerable to the exploit Witty used to infect systems. An ISS employee may have had advance knowledge of the vulnerable hosts and tipped off the worm author, and Witty even could have been the creation of somebody working for ISS, the report said. An ISS spokesman declined to comment on the allegation. Even if the research doesn \'t lead to the capture of the Witty author, researchers hope that the analysis strategy they developed could be used to study other Internet worms, and the Internet itself. The ability to take an incident [such as a worm] and discern information about the larger Internet is very fascinating and something we would like to explore in the future, Weaver said. Check out eWEEK.com \'s Security Center for the latest security news, reviews and analysis. And for insights on security coverage around the Web, take a look at eWEEK.com Security Center Editor Larry Seltzer \'s Weblog. Copyright (c) 2005 Ziff Davis Media Inc. All Rights Reserved.",6);arrFiles[93]=new Array(127,"viruses/Study Unpatched PCs compromised in 20 minutes.htm","2005-12-22","Study: Unpatched PCs compromised in 20 minutes","","","Study: Unpatched PCs compromised in 20 minutes	By Robert Lemos URL: http://news.zdnet.com/2100-1009_22-5313402.html Don \'t connect that new PC to the Internet before taking security precautions, researchers at the Internet Storm Center warned Tuesday. According to the researchers, an unpatched Windows PC connected to the Internet will last for only about 20 minutes before it \'s compromised by malware, on average. That figure is down from around 40 minutes, the group \'s estimate in 2003. The Internet Storm Center, which is part of the SANS Institute, calculated the 20-minute survival time by listening on vacant Internet Protocol addresses and timing the frequency of reports received there. If you are assuming that most of these reports are generated by worms that attempt to propagate, an unpatched system would be infected by such a probe, the center, which provides research and education on security issues, said in a statement. The drop from 40 minutes to 20 minutes is worrisome because it means the average survival time is not long enough for a user to download the very patches that would protect a PC from Internet threats. Scott Conti, network operations manager for the University of Massachusetts at Amherst, said he finds the center \'s data believeable. It \'s a tough problem, and it \'s getting tougher, Conti said. One of Conti \'s administrators tested the center \'s data recently by placing two unpatched computers on the network. Both were compromised within 20 minutes, he said. The school is now checking the status of computers before letting them connect to the Internet. If a machine doesn \'t have the latest patches, it gets quarantined with limited network access until the PC is back up to date. We are giving the people the ability to remediate before connecting to the network, Conti said. The center also said in its analysis that the time it takes for a computer to be compromised will vary widely from network to network. If the Internet service provider blocks the data channels commonly used by worms to spread, then a PC user will have more time to patch. On the other hand, university networks and users of high-speed Internet services are frequently targeted with additional scans from malware like bots, the group stated. If you are connected to such a network, your \'survival time \' will be much smaller. In a guide to patching a new Windows system , the Internet Storm Center recommends that users turn off Windows file sharing and enable the Internet Connection Firewall. Microsoft \'s latest security update, Windows XP Service Pack 2, will set such a configuration, but users will have to go online to get the update, opening themselves up to attack. One problem, experts say, is network administrators \' reliance on patching and their assumption that users will quickly patch systems. Speaking recently at the Microsoft TechEd developer conference in Amsterdam, Microsoft security consultant Fred Baumhardt said the day is likely to come when a virus or worm brings down everything. Nobody will have time to detect it, he said. Nobody will have time to issue patches or virus definitions and get them out there. This shows that patch management is not the be-all and end-all. Baumhardt stressed the importance of adaptability, using the human immune system as an example: Imagine if your body said, \'Hmm, I have the flu. I \'ve never had this before, so I \'ll die. \' But that doesn \'t happen: Your body raises its temperature and so on, to buy time while other mechanisms kick in. If the human body did patch management the way (companies do), we \'d all be dead. Matt Loney of ZDNet UK reported from London.",5);arrFiles[94]=new Array(128,"viruses/Zotob worm linked to credit card fraud ring.htm","2005-12-22","Zotob worm linked to credit card fraud ring","","","Zotob worm linked to credit card fraud ring	By Joris Evers URL: http://news.zdnet.com/2100-1009_22-5844672.html Turkish authorities have linked one of the suspects in the Zotob worm case to individuals thought to be part of a credit card fraud ring, according to the FBI. Atilla Ekici, a 21-year-old Turk who used the nickname Coder, may be affiliated with people thought to be part of a credit card fraud ring in Turkey, an FBI representative said on Tuesday. Ekici was one of two men arrested last week for allegedly unleashing several computer worms, including the Zotob worm that disrupted businesses worldwide two weeks ago. Turkish authorities have identified about a dozen individuals thought to be involved in credit card fraud. It is believed that these individuals have links to Coder, the FBI representative said. The investigation is still ongoing, but there is no indication these people actually wrote or distributed the Zotob worm. Zotob attacked computers running Microsoft \'s Windows 2000 operating system. The worm and its offshoots hit PCs and servers worldwide two weeks ago, including machines at ABC, CNN and Daimler Chrysler. Ekici along with Farid Essebar, an 18-year-old Moroccan national born in Russia, are believed to be responsible for Zotob and the earlier Mytob and Rbot worms. Essebar was arrested in Morocco on Thursday of last week, the same day authorities nabbed Ekici. The suspected link to a credit card fraud ring expands the possible financial motivation for the Zotob and Mytob worm attacks. The FBI last week said that it believes Essebar wrote both worms and then sold them to Ekici. Both Mytob and Zotob attack Windows computers and feature backdoor capabilities. Criminals could use this backdoor to install software that spies on users or to install bot programs that create botnets, networks of hijacked PCs that are rented out to relay spam or attack other systems. Meanwhile, experts at antivirus company Sophos say they believe Essebar may have had a hand in more than 20 computer pests. The teen \'s handle, Diabl0, appears in more than 20 other viruses and worms, including Mydoom-BG and many versions of Mytob, which are currently dominating worldwide virus reports, according to Sophos. Zotob and its variants exploited a security hole in the plug-and-play feature in the OS, for which Microsoft provided a fix earlier this month. Zotob included some of the code used in Mytob, an e-mail worm that first started spreading in March . To date, more than 100 variants of Mytob have been spotted. The worm is distributed via mass e-mail campaigns. The investigation into the Mytob and Zotob worms is ongoing and other suspects may be arrested, according to the FBI.",5);arrFiles[95]=new Array(129,"biz_sec/Record Bad Year for Tech Security.html","2006-01-02","Record bad year for computer security: Report - Dec. 29, 2005","","2005 saw the most computer security breaches ever, subjecting millions of Americans to potential identity fraud, according to a report published Thursday.","Record bad year for tech security Paper says 2005 saw the most computer security breaches ever; more than 55M Americans exposed. December 29, 2005: 9:03 AM EST NEW YORK (CNNMoney.com) - 2005 saw the most computer security breaches ever, subjecting millions of Americans to potential identity fraud, according to a report published Thursday. Over 130 major intrusions exposed more than 55 million Americans to the growing variety of fraud as personal data like Social Security and credit card numbers were left unprotected, according to USA Today . The Treasury Department says that cyber crime has now outgrown illegal drug sales in annual proceeds, netting an estimated 105 billion in 2004, the report said. At the same time, the Department of Homeland Security \'s 2005 research budget for cybersecurity programs was cut 7% to 16 million. It is difficult to gauge the true number of security failures because many companies are unaware they \'ve been hacked, the paper said. __________________________ Find this article at:	http://money.cnn.com/2005/12/29/technology/computer_security/index.htm",4);arrFiles[96]=new Array(130,"cybercrime/Getting Mobbed.htm","2006-01-02","Getting Mobbed - Despite Busts, Web Mobs Keep Growing","","","Despite Busts, Web Mobs Keep Growing December 13, 2005 By Deborah Gage On Oct. 26, 2004, after a year-long investigation, the U.S. government brought down the Shadowcrew—a Web mob engaged in the booming business of auctioning off stolen and counterfeit credit cards and identification cards. While key members were engaged in simultaneous online chats arranged by an informant who had secretly penetrated the group, the Secret Service, the FBI and local police knocked on their doors and arrested them. The Shadowcrew ran a worldwide online marketplace for 4,000 members, in which 1.5 million credit card numbers, 18 million e-mail accounts, and scores of identification documents—from passports to driver \'s licenses to student IDs—were offered to the highest bidder, according to the Secret Service. Losses to banks and credit-card issuers were 4 million and climbing at the time of the arrests. The Shadowcrew was just one of a number of organized cybercrime rings the government has pursued and shut down. The others had equally ominous names such as Carderplanet, Stealthdivision and Darkprofits. New alliances continued to pop up in 2005, however. In October, for example, three men were arrested in the Netherlands on suspicion of infecting 1.5 million computers with bots—robotic pieces of code that can be ordered to send spam and commit other mischief. And the practitioners of cybercrime are growing more skillful at avoiding law enforcement, according to Christopher Painter, deputy chief of the Computer Crime and Intellectual Property Section in the criminal division of the U.S. Department of Justice, whose office helped investigate the Shadowcrew. These emerging cybercrime organizations are using new tools, engaging new partners—and creating new fears among businesses and consumers alike. Painter cites the rise of botnets, armies of robotic pieces of code like the ones used in the Netherlands that are for sale online and may be used by cybercriminals to attack companies \' networks as a way to extort money. Before, there were tech-savvy hackers in it for glory and less-competent fraudsters in it for money—those two have merged, Painter told a meeting of the High Technology Crime Investigation Association in Monterey, Calif., in August. They are sharing information and teaching tools of the trade. There are organized groups online, and it \'s always international. Furthermore, fewer companies are reporting cybercrimes to law enforcement, mostly because they fear negative publicity, according to the 2005 Computer Security Institute/FBI survey, which cites a multi-year decline in such reports. But such fear hampers law enforcement \'s ability to solve these crimes, according to Painter. In the Shadowcrew case, victimized companies quietly cooperated with investigators, Painter says. The case is now working its way through U.S. District Court in Newark, N.J. By early December, a half-dozen of the 19 defendants—Rogerio Rodrigues, Wesley Lanning, Kim Taylor, Jeremy Zielinski, Jeremy Stephens and Omar Dhanani—had pleaded guilty to one count of conspiring to transfer stolen identification documents with intent to commit unlawful activity. A sixth, Andrew Mantovani, whom the Secret Service identified as one of the leaders of the Shadowcrew, pleaded guilty to an additional count of transferring 18 million e-mail accounts with unlawful intent. In its indictment, the government describes the group as being organized into administrators who controlled the direction of the Shadowcrew, moderators who ran discussion forums, reviewers who evaluated the products to be auctioned on Shadowcrew \'s site, vendors who sold products to other members of the group, and general members who mostly used the site to gather information on committing fraud. Painter promises there will be more cases like the Shadowcrew. But he says law enforcement cannot successfully prosecute them without cooperation from private industry. The twentysomethings who make up the bulk of these groups are technically savvy—and careful. The Secret Service says the Shadowcrew used a number of methods to evade the law. They hid behind computer nicknames, or nics, such as BlackOps and Kingpin. They bounced their messages through more than one Web server, which made their communications harder to trace. As an added precaution, members also encrypted their electronic messages, scrambling the text so it couldn \'t be read by spies, i.e., law-enforcement agencies. One of the group \'s defenses was the use of proxy servers to make their online activities hard to trace. A proxy sits between a sending and a receiving server. When someone accesses a Web site through a proxy server, the site records the Internet protocol (IP) address of the proxy, not the IP address of the computer that initiated the original Web request. This has the effect of hiding the IP address of a computer making a Web page request. The use of proxies was often augmented by anonymizers, according to court documents. One type: a virtual private network that lets many computers connect to it at the same time. They share one IP address, and if a person tries to trace a page request, he finds the IP address of the VPN, not the computer that initiated the session. They had this comfort level, says Secret Service Special Agent Larry Johnson, thinking \'nobody would catch us. \' But the Secret Service, which tracked the group for a year, had a couple of aces in the hole as it began to dig in 2003. One was its ability to override the VPN defense. Another was an inside source who fed information to the agency. The informant, who was highly placed in the organization and ran one of the group \'s servers, helped the agency set up and run its undercover operation. The Secret Service operated the VPN that many of the Shadowcrew defendants used. The agency filtered traffic through software that could trap and trace its contents—basically capturing a message and stripping out and recording the sender \'s IP address. Then, using the public Whois database, which provides Internet domain registration information, they could map those IP addresses back to the Internet service provider that owned and assigned the numbers. The provider would then be served with a subpoena that required it to disclose customer records and billing addresses. Another ace was a reported Title III wiretap, which the Secret Service had to get approved by a Federal judge to record electronic messages between Shadowcrew members. But the biggest break was the informant, whom the Secret Service won \'t identify. They can get to you fairly easily, says Johnson about the Web mobs. Prevention and Defense The electronic infrastructure that could help catch Web mobsters does not yet exist, say technology experts such as David Jevans, chairman of the Anti-Phishing Working Group. But many of today \'s computer security problems aren \'t really new—just trickier, nastier and more pervasive. Here are some of the more serious threats, along with countermeasures to protect yourself from participating, unwittingly, in the activities of a Web mob. PROBLEM: You have a glut of forged or spoofed e-mail addresses saying their messages come from your Internet domain when they do not. RESOLUTION: Monitor bounce-backs to your e-mail servers—messages that come back with subject lines such as Mail delivery failed: returning message to sender, says Johannes Ullrich of the SANS Internet Storm Center. Inspect them for clues for where the e-mail actually originated, such as routing data in the message header. PROBLEM: A Web site masquerades as a legitimate one—yours. RESOLUTION: Identify fake sites and alert your customers. Log the referrer header, part of the invisible data automatically transmitted to your Web server, when a user clicks through or is forwarded to your site from an unknown site. Once you discover a criminal site, you can display a warning to consumers who are referred from that address. PROBLEM: User names and passwords are your best defense. RESOLUTION: Consider reusable passwords. The federal government, for example, wants banks to require two forms of ID for online transactions by the end of 2006. Alternatives include one-time passwords, hardware security tokens and digital certificates. PROBLEM: Your servers and computers are turned into bots, controlled remotely to send spam, generate automated page requests that flood sites, or participate in other Internet attacks. RESOLUTION: Keep your antivirus and intrusion detection systems in top shape. Stay current on patches to your operating systems and applications. Set your firewall to block Internet Relay Chat connections, which attackers frequently use to communicate with their bots. Also consider a defense in depth strategy that requires each computer on a network to have its own protection as well. —David F. Carr Copyright (c) 2005 Ziff Davis Media Inc. All Rights Reserved.",12);arrFiles[97]=new Array(131,"viruses/Microsoft scrambles to fix severe security flaw.html","2006-01-02","Microsoft scrambles to fix   \\'severe  \\' security flaw","","","MSNBC.com Microsoft scrambles to fix \'severe \' security flaw Previously unknown flaw leaves PCs vulnerable to spyware, viruses By Brian Krebs Special to The Washington Post Updated: 11:46 a.m. ET Dec. 30, 2005 A previously unknown flaw in Microsoft Corp. \'s Windows operating system is leaving computer users vulnerable to spyware, viruses and other programs that could overtake their machines and has sent the company scrambling to come up with a fix. Microsoft said in a statement yesterday that it is investigating the vulnerability and plans to issue a software patch to fix the problem. The company could not say how soon that patch would be available. (MSNBC is a Microsoft - NBC joint venture.) Mike Reavey, operations manager for Microsoft \'s Security Response Center, called the flaw a very serious issue. Security researchers revealed the flaw on Tuesday and posted instructions online that showed how would-be attackers could exploit the flaw. Within hours, computer virus and spyware authors were using the flaw to distribute malicious programs that could allow them to take over and remotely control afflicted computers. Unlike with previously revealed vulnerabilities, computers can be infected simply by visiting one of the Web sites or viewing an infected image in an e-mail through the preview pane in older versions of Microsoft Outlook, even if users did not click on anything or open any files. Operating system versions ranging from the current Windows XP to Windows 98 are affected. An estimated 90 percent of personal computers run on Microsoft Windows operating systems. Microsoft has found itself under attack on several instances and has been forced to issue a number of patches to keep computers running Windows safe. Mac and Linux computer users are not at risk with this attack, even if their computers run Microsoft programs such as Office or the Internet Explorer Web browser. Reavey encouraged users to update their anti-virus software, ensure all Windows security patches are installed, avoid visiting unfamiliar Web sites, and refrain from clicking on links that arrive via e-mail or instant message. The problem with this attack is that it is so hard to defend against for the average user, said Johannes Ullrich, chief research officer for the SANS Internet Storm Center in Bethesda. At first, the vulnerability was exploited by just a few dozen Web sites. Programming code embedded in these pages would install a program that warned victims their machines were infested with spyware, then prompted them to pay 40 to remove the supposed pests. Since then, however, hundreds of sites have begun using the flaw to install a broad range of malicious software. SANS has received several reports of attackers blasting out spam e-mails containing links that lead to malicious sites exploiting the new flaw, Ullrich said. Dean Turner, a senior manager at anti-virus firm Symantec Corp. of Cupertino, Calif., said the company has seen the vulnerability exploited to install software that intercepts personal and financial information when users of infected computers enter the data at certain banking or e-commerce sites. Eric Sites, vice president of research and development for anti-spyware firm Sunbelt Software, said he has spotted spyware being downloaded to a user \'s machine by online banner advertisements. Pretty much all of the spyware guys who normally use other techniques for pushing this stuff down to your machine are now picking this exploit up, Sites said. Because the vulnerability exists within a faulty Windows component, security experts warn that Windows users who eschew Internet Explorer in favor of alternative Web browsers, such as older versions of Firefox and Opera, can still get their PCs infected if they agree to download a file from a site taking advantage of the flaw. Richard M. Smith, a Boston security and privacy consultant, said he was particularly worried that the vulnerability could soon be used to power a fast-spreading e-mail worm. We could see the mother of all worms here, Smith said. My big fear is we \'re going to wake up in the next week or two and have people warning users not to read their e-mail because something is going around that \'s extremely virulent. Brian Krebs is a washingtonpost.com reporter. (C) 2006 MSNBC.com",6);arrFiles[98]=new Array(132,"cybercrime/2004 Year of the Cyber-Crime Pandemic.htm","2006-01-05","2004: Year of the Cyber-Crime Pandemic","","","2004: Year of the Cyber-Crime Pandemic January 1, 2005	Remember scoffing at people who didn \'t know any better than to click on e-mail attachments from unknown senders, thus exposing their systems to computer viruses? Boy, has Internet crime and security gotten more complicated in the past year. In November alone, there were 8,459 new, unique phishing e-mail messages reported to the Anti-Phishing Working Group. That \'s nearly four times the number received in August and represents an average monthly growth rate of 34 percent since July. What \'s uniquely alarming about this epidemic is that phishing is such an alluringly lucrative cyber-crime: It involves duping victims into revealing personal financial data, including credit card numbers, account user names and passwords, and/or Social Security numbers. The sophistication of these attacks has grown by leaps and bounds. For example, as eWEEK.com \'s Matthew Broersma reported in December, researchers have found that most Web browsers handle pop-up windows in a manner that makes them vulnerable to a simple phishing technique that allows fake content to look genuine. Even fully patched, standard versions of globally used browsers including Internet Explorer, Firefox, Opera, Konqueror and Safari—used by trusted sites such as banks—allow malicious sites to insert their own content into any pop-up window, as long as the target name of the window is known. Over the past year, experts also warned of new attacks that not only circumvent DomainKeys but, adding insult to injury, even exploit the fledgling e-mail signing technology for their nefarious ends. As eWEEK \'s Dennis Fisher reported, the technology once regarded by many in the security community as one of the best hopes for preventing e-mail address forgery is now being used to make bogus messages appear legitimate, thus undercutting confidence in the system. It proves that people will get to the point where they can \'t trust e-mail from anywhere, one security expert, who requested anonymity, told Fisher. During a quarter in which analysts declared a 500 percent increase in global phishing activity over the previous quarter, Veterans Day was the nadir. Beginning in the early morning and continuing into the weekend, the	Internet exploded with attacks against companies including eBay, Citibank and other financial institutions. Indeed, financial institutions are traditionally the likeliest targets of Internet crime, yet chief security officers in the industry said they got scant help from the Feds over the past year, eWEEK \'s Fisher reported. Dave Cullinane, president of the Information Systems Security Association, gave a speech at the CSO Interchange gathering, during which he said that the FBI and other federal agencies are generally unresponsive to requests for help from banks on phishing attacks unless the bank can show substantial financial losses. If you \'re running on the assumption that calling the FBI will get you assistance, it won \'t, he said. Next Page: The growing threat of spyware. Beyond the phishing epidemic, spyware was on track to replace mass-mailing worms as the biggest security threat in the coming year. This technology, which uses covert techniques to install itself on computers and track user activity, is dangerous because malicious code can be executed on infected systems. As eWEEK.com \'s Ryan Naraine reported, spyware, also known as adware, has become the preferred way to deliver malicious Trojans, which can relay information to other computers or Web locations, thus putting user passwords, log-in details, credit card numbers and other personal information at risk. Notwithstanding financial chief security officers \' complaints, the Feds spent a good deal of the past year studying cyber-crime, pondering and passing legislation to thwart it, and even handing down the first-ever felony conviction of a spammer. The spammer, Jeremy Jaynes, received a sentence of nine years in prison when a jury in AOL \'s home county convicted him and his sister. Meanwhile, a federal sweep, named Operation Web Snare, nabbed 150 individuals and 117 criminal complaints between June and August. As eWEEK \'s Dennis Callaghan reported, the effort, largely directed against phishers, was thought to be the largest one yet taken against cyber-criminals. Reactions to the cyber-criminal sweep were mixed, however, as some legal and online fraud experts opined that it was too little, too late. Finally, if there \'s any silver lining to the dark cloud of cyber-crime that \'s blossomed in the past year, it is this: Congress is finally taking these issues seriously. As eWEEK \'s Caron Carlson reported, the Senate in June approved legislation aimed at stopping identity theft by increasing criminal penalties and creating a new crime of aggravated ID theft, which the president has since signed into law. The	House took on the task of probing spyware in April, and legislation targeting spyware was introduced into the Senate and House, with Utah ahead of the curve in enacting an anti-spyware law. The House in September approved legislation that prohibits taking control of a computer, surreptitiously modifying a Web browser \'s home page, or disabling anti-virus software without proper authorization. With all of these busts, and with all of this legislative pondering, does it finally mean we have some tools to beat down the alarming rise of cyber-crime? eWEEK.com \'s Larry Seltzer earlier in the year had read various versions of bills pending at the time, and he wasn \'t optimistic, given that the legislative language had too much wiggle room. The upshot: In 2005, you \'ll have to be more vigilant, you \'ll have to demand more from vendors vis-à-vis secure products, and you \'ll have to go through legislative wording with a fine-toothed comb. Is that different from other years? No. But take it much, much more seriously this year. Check out eWEEK.com \'s Security Center for the latest security news, reviews and analysis. And for insights on security coverage around the Web, take a look at eWEEK.com Security Center Editor Larry Seltzer \'s Weblog. Related articles: Pop-up Loophole Opens Browsers to Phishing Attacks Finance CSOs: Feds Are No Help with Phishing Scammers Exploit DomainKeys Anti-Phishing Weapon Veterans Day Sees a Phishing Frenzy Spyware: The Next Real Threat Virginia Seeks to Send Spammer to Slammer Federal Sweep Nets Spammers, Cyber-Criminals Reactions Mixed to Federal Fraud Sweep U.S. House Passes Anti-Spyware Bill Congress Passes ID Theft Bill House Panel to Probe Spyware Gates: Microsoft to Tackle the Spyware Problem Microsoft \'s Anti-Virus Strategy Keeps Users Guessing Study: Tools Let Spyware Slip Through Cracks Copyright (c) 2005 Ziff Davis Media Inc. All Rights Reserved.",9);arrFiles[99]=new Array(133,"hacking/high school computer hacked.htm","2006-01-05","High School Computer Hacked","","","Last modified Friday, December 16, 2005 10:59 PM PST La Costa Canyon High School computer hacked By: PHILIP K. IRELAND - Staff Writer CARLSBAD ---- Someone hacked into the computer system at La Costa Canyon High School, San Dieguito Union School Superintendent Peggy Lynch said Friday. School district and law enforcement officials were tight-lipped on the intrusion and the ensuing investigation, which began Thursday afternoon with the arrival of a special San Diego County Sheriff \'s Department computer crimes unit and continued through noon Friday, according to Principal Amy Carlin. Details on the extent of the break-in could not be ascertained Friday. School officials said speculation would be inappropriate at this early stage in the investigation. They would not say when the breach was discovered or give details on the contents of the school \'s computer system, although Lynch said that no sensitive personal information had been compromised. Members of the Computer and Technology Crimes High-Tech Response Team interviewed students, while Carlin said she could not comment further because the investigation was in the hands of law enforcement. Lynch confirmed the security breach. We have a variety of different systems, said Lynch, who arrived on campus just before noon Friday. And I can tell you that no sensitive personal information such as addresses and phone numbers has been compromised. The district maintains records in its systems for nearly 12,000 middle and high school students and hundreds of teachers. Carlin and Lynch declined to provide more details of the break-in at the 10-year-old school that has a student population of 2,600. Standing in the school lobby Friday, Sheriff \'s Department Detective Mark Kelly, a member of the multiagency team that investigates computer crimes in San Diego, Imperial and Riverside counties, declined comment. Kelly said he could not say how long the investigation might take because the school closed Friday for the winter recess. Classes resume Jan. 3. High school junior Mat Walter said he had heard of the incident from a teacher, who told the entire class about the break-in. Somebody jacked and hacked into the computer system, the mainframe of the district, Walter said, adding that the teacher told the class the district planned to shut the system down to reissue log-in codes. The La Costa Canyon High School Web site was up and running Friday. However, the site contained a notice stating that the La Costa Canyon site, as well as all district sites, would be down for maintenance between Dec. 17 and Dec. 23. Any e-mail would be bounced back to the sender on those days, the site stated. Inquiries to the district \'s information systems office were directed to the superintendent \'s office Friday. Contact Philip K. Ireland at (760) 901-4043 or pireland@nctimes.com .",6);arrFiles[100]=new Array(134,"idtheft/computer age allows criminals.htm","2006-01-05","Print Article","","","Article Last Updated: 12/20/2005 07:29 AM Computer age allows criminals to cash in on identity theft Carla Bova Marin Independent Journal After enjoying tacos with friends at a beachfront restaurant in Cabo San Lucas, Kelly O \'Haire of Novato paid with her credit card, and before long, her 25 lunch tab turned into an 18,000 medical bill. By the time O \'Haire returned home from the long weekend, someone had charged to her account thousands of dollars in medical services at a clinic in Chihuahua, Mexico. She suspects her credit card number was stolen at the restaurant. It took 45 minutes to get the card back, so I was a little suspicious when that happened, she said. I had to go find the waiter and get my card. A former officer for 10 years at the San Rafael Police Department and a current Marin deputy district attorney, even O \'Haire could not escape the nondiscriminating, widespread reach of identity theft and the damage it caused. I used my credit card there for convenience so I did not have to get pesos, plus you get a better exchange rate, she said. It caused me a lot of trouble. With the prevalent use of computers, anonymity of the Internet and difficulty in catching suspects who are often transitory, it is no wonder identity theft has been called the fastest-growing financial crime in America. About 90 identity theft cases were filed with the Marin County District Attorney \'s Office from June 2003 to November 2005. People who want to take advantage of folks look and see where the money is, and Marin is a potential target-rich environment because of our affluent population, Marin District Attorney Ed Berberian said. I am concerned about identity theft spilling over into the elder financial abuse area. We have got an aging population É (and seniors) are often most willing to trust people. According to the Identity Theft Survey Report, which was sponsored by the Federal Trade Commission and released in September 2003, about 9.9 million people nationwide were victims of identity theft with the total monetary loss reaching nearly 48 billion. Identity theft is convenient and connected to how we live our lives right now because it is cyber-oriented. É There are no barriers, said Vallejo police Lt. Rick Nichelman, operations manager for the Northern California Computer Crimes Task Force. It is low-risk, high-yield and easy to do compared to a bank robbery of yesteryear. You do not have to arm yourself, walk into a bank and hold it up to get a lot of money. The crime is hard for investigators to track, Nichelman said. By the time we gain pertinent information on the suspect, maybe we are months in arrears, Nichelman said. This is such a problem, and it is not going to go away. In O \'Haire \'s case, her credit card number was stolen, but identity theft can occur when an array of personal information - including name, date of birth, address, Social Security number, bank account number, driver \'s license number - is taken without permission and used to commit a fraud or theft. Dumpster to \'Phishing \' Identity theft can strike anyone - even Berberian, whose credit card number was stolen while traveling in Paris and used on charges in Singapore and Thailand. But victims don \'t have to be overseas to get hit. There are so many opportunities for thieves to steal coveted personal information right here - when you are at home throwing out the trash or trading stock online; when you are at the doctor \'s office filling out forms; when you leave your purse unattended at work; when you are out shopping or getting gas. Any transaction in which information is shared is a potential chance for identity theft, authorities say. And the ways thieves steal information is just as varied, ranging from high-tech computer hacking to stealing mail. You have people who do Dumpster dive, said Vallejo police Sgt. Ken Weaver, supervisor of the task force \'s identity theft unit. That is probably the easiest way for them to get numbers. Authorities notice a strong connection between identity theft and the methamphetamine world, where drug dealers barter with users to exchange information for drugs. Dealers say, \'I will supply your meth, but you need to go out and break into some cars and bring back people \'s wallets and purses that might be left behind, \' Weaver said. Bring back the information, and I will give you your dope. Dealers then use the information themselves or sell it for fast cash to people who will put various fraud schemes into operation. Authorities said thieves can be friendly store clerks who handle credit cards. They can pose as a landlord or government worker to view personal records. They bribe medical office employees who have access to sensitive records. Often the problem is you have a 20-year-old making minimum wage in a bank and look what they have access to - too much, Nichelman said. If that person leaves, is disgruntled and wants to compromise that office, they could. Others use sophisticated, yet easy-to-get, devices such as pinhole cameras that are disguised to blend in and are focused on the keypad of an ATM machine or gas station pump. They capture credit card numbers and PIN numbers as they are punched in. Investigators have seen a skimming device placed over the entry port of an ATM machine where a credit card is inserted. It looks professional and legit but has been put there by a thief to scan and record credit card numbers first before it enters the bank \'s ATM machine, Weaver said. Another skimming device looks like a pager and can fit in the apron pocket of a waiter who swipes customers \' credit cards twice - once to pay the restaurant bill and a second time to record the number in his device. Some devices can store nearly 3,000 credit card numbers. Someone will pay that person 5 for every credit card number, Weaver said. Still others do telemarketing or Internet scams such as bogus sweepstakes or phony lotteries in which the victim must provide personal information to get his reward. In a scheme known as the Nigerian money offer, thieves promise millions of dollars in exchange for helping to transfer an inheritance from a war-torn part of the world to a victim \'s bank account for safekeeping. Some perpetrators go phishing by sending out e-mails in which they pretend to be affiliated with a legitimate business - for example a bank or eBay, the online auction house - and ask potential victims to confirm account numbers or update personal records. A hacker duplicates a legit company \'s Web site. It looks just like eBay \'s, so when you log in to fill out the form with your name and bank routing number, you have just sent it off to a hacker, Weaver said. He sends out those e-mails hundreds of thousands of times across the country, across the world, hoping someone will bite. Time to spend Once the information-gathering tricks are successful, it doesn \'t take long for thieves to put the information to use. They print false checks, use existing credit cards or apply for new ones, open new bank accounts, apply for loans, buy merchandise orservices. Once they get that information, whatever direction they head is varied and runs the whole gamut, Nichelman said. They can spend a couple hundred bucks to thousands and thousands. It can encompass a car purchase at dealerships. We had people buy Mack trucks. It can be watches on eBay. Clothes, jewelry, appliances, electronics. Anything. It can be homes before they catch up with you. Meanwhile, it can be months before unsuspecting victims discover they have fallen prey to identity theft, and the effects can be devastating to a person \'s good name and good credit. Some learn sooner, when they open a monthly statement. For others, it could take years. Then they apply for a car or house loan only to discover mounting unpaid bills and credit cards they did not know they had. Effects damaging O \'Haire, 40, was lucky because an employee at Ceramic Tile World in Novato notified her within 10 days of returning from Mexico that her credit card was overcharged. The biggest issue for me was that my house was being remodeled, so I had ordered a range, a fan, a sink, fixtures, tile and had used this credit card at all these local companies, O \'Haire said. The card was over limit, so the companies either sent back the items or did not order them at all. I had all these workers at my house with no materials. They were not very happy. O \'Haire alo had used the credit card to set up automatic billing with companies such as Comcast, which would not get paid once her card was overdrawn. It was embarrassing to say my credit card was stolen, O \'Haire said. Who believes that? Damaging notations marred her credit reports. It said I had too many accounts and that my limit was too high, O \'Haire said. The fact that I had negative comments made me mad. She worried the comments would affect the rate of her loan as she was trying to buy a house at the time. She spent at least 40 hours over two months making calls during her lunch breaks trying to sort out the mess. I don \'t think it got all cleared up and off my record for a year, O \'Haire said. According to the Federal Trade Commission \'s Identity Theft Survey Report, identity theft victims spent an average of 30 hours and 500 resolving the problems that arose from the misuse of their personal information. Individuals are not the only victims. Businesses and financial institutions such as banks and credit card companies often absorb the monetary loss. O \'Haire \'s credit card company, for example, reversed the 18,000 charge. It is often considered a business loss because it is more cost-effective to write it off than investigate the crime, Weaver said. The FTC report states, for most victims of identity theft (63 percent) there was no loss of money out-of-pocket. The relatively early notice O \'Haire received enabled her to react quickly, taking steps recommended by authorities. She notified the credit card company of the unauthorized charges, canceled the credit card that was tampered with, filed a police report and got copies of the report for creditors and others that required proof of the crime. If it was not for the tile company, I would not have shut the card off as quickly and probably would not have realized the 18,000 charge until the statement came a month later, O \'Haire said. It could have been a bigger mess. Steps to take Banks, credit card companies, department stores, the telephone company or any entity affected by tampered or fraudulent accounts should be notified by phone and in writing. Victims should contact the fraud departments of the three major consumer reporting companies - Equifax, Experian and TransUnion - and request a fraud alert be put on their credit report. This tells creditors to contact the victim before opening any new accounts. Once a fraud alert is placed, victims are entitled to free copies of their reports and should review them carefully. I wrote to the loan mortgage people to explain what happened and dealt with all the vendors, O \'Haire said. I wrote letters to the three credit agencies to have those comments removed, and they did it. O \'Haire said she ordered credit reports months later to ensure they had been corrected. The FTC requests victims file a complaint with its identity theft case database because it is used by law enforcement to assist ininvestigations. Crackdown State and federal agencies are working with local law enforcement, financial institutions, other businesses and consumer organizations to fight identity theft. At a summit on identity theft solutions convened by Gov. Arnold Schwarzenegger in Sacramento in March 2005, experts from each arena discussed obstacles to the successful prosecution of identity thieves and solutions to overcoming those obstacles. Panelists made recommendations, including calling for legislation to make it a felony to abuse the identities of our most vulnerable: children under 18, seniors and those serving in the armed forces. They stressed the importance of consumer education on protecting personal information noting public awareness and prevention means more people can avoid the devastating effects of identity theft. After the unauthorized charge brought O \'Haire \'s house remodel to a screeching halt, tarnished her credit report and took months to remedy, she said she spreads the word when she can, encouraging everyone to order and monitor credit reports. And she now works in consumer fraud in the district attorney \'s office. I do still use my credit card, but I am careful where I use it and pay cash more than I used to, O \'Haire said. I will not pay with a credit card at a beach restaurant in Mexico again.",16);arrFiles[101]=new Array(135,"idtheft/Elderly often victims of identity theft.htm","2006-01-05","Elderly often victims of identity theft","","","Posted on Mon, Dec. 19, 2005 Elderly often victims of identity theft Seniors targeted because they \'re more trusting, consumer advocates say By ROBERT RODRIGUEZ The Fresno Bee FRESNO - As people are busy shopping for the perfect gift, identity thieves are also on the prowl for new victims, including those who are elderly, consumer advocates warn. \' \'With so much activity during the holidays, it is important for everyone to be careful, \' \' said Doug Broten, CEO of the Better Business Bureau of the San Joaquin Valley. \' \'Identity thieves often seek out seniors because they tend to be more trusting and therefore vulnerable to identity theft. \' \' Last year, the Federal Trade Commission received more than 645,000 consumer fraud and identity theft complaints, with more than 22 percent coming from consumers older than 50. It \'s a problem that keeps growing. From 2002 to 2004, the number of people over 50 filing complaints grew 95 percent, to 145,895. Consumer and elderly advocates say seniors make lucrative and sometimes easy targets. In some cases, they have substantial assets, including their homes, large savings accounts and are generally home during the day. Depending on their age, they may also be from a generation more trusting of strangers. \' \'We are talking about people for whom a handshake was all that was needed to trust someone, \' \' said Lynn Bawdon, who oversees the senior center in Clovis. \' \'But they can \'t be that trusting anymore. \' \' At the worst, identity theft victims have lost their homes, their life savings and are left with little or no hope of getting either back. \' \'One of the most surprising things is how frequently the identity thief is someone they know, \' \' said Sally Hurme, an attorney with AARP \'s consumer protection division in Washington, D.C. \' \'It ends up being a family member, a brother-in-law, caregiver or contractor. \' \' A study by the Identity Theft Resource Center in San Diego found that 43 percent of victims believe they knew their impostor. Joan Tabak, 76, of Clovis doesn \'t want to become an ID theft victim. She has learned not to fall for telephone scams or e-mails promising something too good to be true. \' \'We get calls all the time at home from people asking us for help, \' \' Tabak said. \' \'I just hang up on them. My husband isn \'t so quick to do so. He is too curious. He always tells me he just wants to find out what they want. I think he is just a little more gullible than I am. \' \' Ken Kemmerer, an elder abuse prevention consultant in Clovis, said it doesn \'t take much for a skilled identity thief to lure someone into providing personal information over the phone. \' \'They will learn to exploit your weakness, they will get you to like them, they will disagree with what you disagree with, \' \' Kemmerer said. \' \'They will try to be your friend, but they aren \'t your friend. \' \' Experts say the most common methods identity thieves use to retrieve personal information is by stealing unopened mail, dredging garbage for discarded mail or getting it from people over the phone. Buying a shredder for unwanted mail or personal documents is recommended as is buying a locking mail box or depositing mail at the post office. Leaving outgoing mail on a door step or mail box with the flag up could signal identity thieves. \' \'We call the little red flag for outgoing mail the \'come-steal-me flag, \' \' \' said Jay Foley, founder and co-director of the Identity Theft Resource Center in San Diego. \' \'If you want to buy someone a nice Christmas gift, buy them a locking mail box. \' \' Police say identity thieves also have become more brazen, breaking into cars and homes to find documents with personal information. Jeri Busch, 78, of Clovis said her experience as a manager for the Social Security Administration taught her the value of protecting her personal information. She shreds and uses a marking pen to black out her information on documents. \' \'I know what can happen if someone gets a hold of your information, \' \' Busch said. \' \'And I don \'t want to go through that. I am very careful. \' \' But with the advent of technology, identity thieves have also begun using the Internet. One of the most insidious online scams is known as phishing: a phony e-mail sent by a bank or other businesses to get your bank information, Social Security number or other personal information. A recent phishing e-mail the Fresno County Sheriff \'s Department investigated, which looked like it came from a well-known financial company, claimed it was installing new software and needed to upgrade customer information. For those who clicked on the link, it asked for a full name, Social Security number, date of birth and home address. Hurme said the AARP has been working for several years to make older Americans aware of how to avoid being victims of identity theft. She advised seniors to ask more questions of anyone seeking their personal information, whether it \'s on the phone, in person or via e-mail. \' \'During the holidays there are good guys and then there are bad guys who want to take advantage of you, \' \' Hurme said. \' \'There is no question that identity theft and other scams follow the seasons as well as the news. \' \' Hurme said her mother was one of those trusting individuals who was routinely hounded by phone solicitors. She would write checks monthly for charitable organizations that were bogus. \' \'It got to the point that she was getting hundreds of solicitations, \' \' Hurme said. \' \'She was writing 5 and 10 checks every day. It was difficult to explain to her that her well-intended donation was not going to who she thought it was intended. \' \' © 2005 Monterey County Herald and wire servicesources. All Rights Reserved. http://www.montereyherald.com",10);arrFiles[102]=new Array(136,"safety/Two out of every five.htm","2006-01-05","Two out of every five Americans have Broadband access at home","","","For Immediate Release: NetRatings, Inc. Suzy Bausch (408) 941-2965 Tracy Yen (408) 941-2932 TWO OUT OF EVERY FIVE AMERICANS HAVE BROADBAND ACCESS AT HOME, ACCORDING TO NIELSEN//NETRATINGS Among Active Internet Users, Those Connecting Via Broadband Surpass 60 Percent for the First Time NEW YORK – September 28, 2005 - Nielsen//NetRatings, a global leader in Internet media and market research, today announced that the number of Americans with broadband access reached 42 percent of the U.S. population in August, increasing 16 percent since the beginning of this year (see Table 1). In January 2005, 103.8 million Americans had broadband access; by August, that figure had grown to 120.8 million. These figures were compiled from the Nielsen//NetRatings panel and report the connection speeds of those with Internet access at home. “Although broadband penetration among Internet users has long been on the rise, it was always amid speculation that the high cost of broadband would limit its widespread adoption, said Charles Buchwalter, vice president of client analytics, Nielsen//NetRatings. “However, over the last year, carriers have responded to the growing demand for lower cost broadband, and all indications are that this trend will continue. Table 1: Americans with Broadband Access (Home) Month People with Broadband Access (000) U.S. Population with Broadband Access Jan. 2005 103,764 36%* Aug. 2005 120,847 42%* Source: Nielsen//NetRatings NetSpeed Report, September 200 5 *Note: Percents calculated using U.S. census estimate of 290 million U.S. individuals . Number of Internet Users Actively Connecting via Broadband Continues to Increase Nielsen//NetRatings also reported that in August 2005, the percent of active U.S. Internet users connecting online via broadband from home reached an all-time high, at 61.3 percent, compared with 51.4 percent of active Internet users in August last year. (An active Internet user is anyone who went online or downloaded an Internet application during the month.) In August 2005, there were 86.1 million Internet users accessing the Web through high-speed connections, marking a 34 percent gain over 64.1 million during August 2004 (see Table 2). In contrast, fewer Internet surfers are using a narrowband connection to go online. Among at-home Internet users, those using a narrowband connection have decreased by 10 percent since August last year, from 60.6 million to 54.3 million in August 2005. Currently, 38.7 percent of active Internet users continue to rely on a narrowband connection, compared with 48.6 percent in August 2004. “This continuing increase in broadband use is an essential step in a maturing Internet industry,” said Buchwalter. “Compared with their narrowband counterparts, broadband users spend more time and money online because their surfing experience is faster, more persistent, and ultimately, more satisfying. This is good news for consumers, publishers and advertisers alike,” he continued. Table 2: Internet Users Who Connected Online via Broadband vs. Narrowband (U.S., Home) Connection Speed Aug. 04 Unique Audience (000) Aug. 05 Unique Audience (000) Year-over-Year Comparison Broadband 64,110 86,095 34% Narrowband 60,568 54,303 -10% Source: Nielsen//NetRatings NetSpeed Report, September 2005 About Nielsen//NetRatings NetRatings, Inc. (Nasdaq: NTRT) delivers leading Internet media and market research solutions, marketed globally under the Nielsen//NetRatings brand. With high quality, technology-driven products and services, Nielsen//NetRatings is the global standard for Internet audience measurement and premier source for online advertising intelligence, enabling clients to make informed business decisions regarding their Internet and digital strategies. The Nielsen//NetRatings portfolio includes panel-based and site-centric Internet audience measurement services, online advertising intelligence, user lifestyle and demographic data, e-commerce and transaction metrics, and custom data, research and analysis. For more information, please visit www.nielsen-netratings.com . Editor’s Note: Please source all data to Nielsen//NetRatings. # # #",12);arrFiles[103]=new Array(137,"viruses/AIM Worm Mimics Talking IM Bots.htm","2006-01-05","AIM Worm Mimics Talking IM Bots","","","AIM Worm Mimics Talking IM Bots December 7, 2005	By Ryan Naraine A new malicious worm squirming through America Online Inc. \'s AIM network has the ability to carry on an instant messaging conversation with potential victims. Researchers at IMLogic Inc. \'s Threat Center spotted the new threat and warned that virus writers are continuing to push the social engineering envelope to trick computer users into downloading nasty malware programs. The newest worm, identified as IM.Myspace04.AIM, is coded to chat and persuade the victim to click on a malicious URL embedded in the IM message. If the first attempt at infection is unsuccessful and the victim replies to doubt the legitimacy of the link being sent, the worm replies with the following message: lol no its not its a virus. Like other IM worms spreading over AOL \'s instant messaging network, the bot uses an infected user \'s buddy list to propagate itself, carrying on a conversation with new victims without the infected user \'s knowledge. This sophisticated bot attack is programmed such that infected users cannot see the messages the worm is sending on their behalf. When recipients of the malicious message reply to the infected user, the bot running on the infected machine sends follow-up messages, IMlogic said in an advisory. By ratcheting up the level of social engineering techniques, the company said the new breed of malicious bot attacks represents a shift toward interactive communication with intended targets, more effectively simulating a live user and thereby increasing infection rates. The appearance of a talking worm comes on the heels of AOL and Microsoft Corp. releasing legitimate IM bots on the IM networks. Two consumer bots from AOL—MovieFone and ShoppingBuddy—were added to the buddy lists of AIM users last month as part of the company \'s use of IM Robots to deliver news and other content on behalf of advertising partners. Interactive IM bots have been around for years, but this is the first sign that malware writers are latching onto the concept to use in social engineering attacks. As [consumer] bots gain popularity, hackers have also recognized the potential for bot technology to assist in their attacks, IMlogic said. The talking worm is just one of two new threats targeting AIM users. Akonix Systems Inc. has issued an alert for a worm posing as a holiday greeting card to lure users into launching a harmful executable. Akonix identified the worm as W32/Aimdes.E and warned that the worm is executed once the IM user clicks on a link purporting to be a greeting card. Phishers slip through Web loopholes. Click here to read more. Upon execution, this memory-resident worm propagates and sends the following message to other users listed on the infected user \'s buddy list: The user has sent you a Greeting Card, to open it visit: http://g{BLOCKED}aol.com/index.pd?source=christmastheme?my_christmas_card.com Once the link is clicked, the worm automatically installs itself on the affected system and opens random ports to receive instructions from a remote attacker. Aimdes.E also comes with a built-in IRC (Internet Relay Chat) client engine that connects the machine to an IRC channel to wait for several commands from a malicious user. This routine then compromises system security. Check out eWEEK.com \'s Security Center for the latest security news, reviews and analysis. And for insights on security coverage around the Web, take a look at eWEEK.com Security Center Editor Larry Seltzer \'s Weblog. Copyright (c) 2005 Ziff Davis Media Inc. All Rights Reserved.",5);