Network Security & Hardware - eWeek


Battery 500 Project Charged Up over All-Electric Cars
Charting the Final Frontier--Google Maps for Indoors
Get Smarter Technology on Your Mobile!
  Network Security & Hardware


Hackers, Extortion Threats Shut Down Game Site



 By: Ryan Naraine
2005-12-16
Article Rating:starstarstarstarstar / 1


There are 0 user comments on this Network Security & Hardware story.


Rate This Article:
Poor Best
A popular RPG Web site is forced offline after hackers exploit a software flaw to steal user names, e-mail addresses and encrypted passwords.

White Wolf Publishing Inc., a company responsible for some of the most popular role-playing game brands, has shut down operations after international hackers exploited a software flaw and stole user data that included user names, e-mail addresses and encrypted passwords.

Following the breach, the company, based in Stone Mountain, Ga., said the hackers attempted to extort money by threatening to post the potentially sensitive user data on the Internet.

"We have no intention of paying this money, and are in contact with the FBI in an attempt to bring these criminals to justice," White Wolf said in a notice posted online.

"As far as we can ascertain, they were unable to access any credit card data (nor have they claimed they did). However, it is possible for the encrypted passwords they accessed to be decrypted given enough time," the company said.

For advice on how to secure your network and applications, as well as the latest security news, visit Ziff Davis Internets Security IT Hub.

White Wolf recommended that users and fans that may have used the same user name and password for other Internet services change those passwords immediately.

Although Web site breaches and data theft are commonplace, security researchers say the brazen extortion attempt against White Wolf confirms earlier fears that attacks against small businesses sites are being done by well-organized international crime groups.

Read more here about todays hackers, who focus on cracking code for profit.

Resource Library:
"This started early in 2004 when the botnet owners used mostly denial-of-service attacks to extort money from banks and ISPs. We used to think of those as experimental attacks, but its become much more brazen and organized today," said John Pescatore, research director for Internet Security at Gartner Inc.

"From the experimenting stage, it moved to vandalism, and we had all these defacement attacks. After that, it became politically motivated and we kind of expected the next phase to be cyber-crime. Thats the stage were in today with these kinds of extortion attacks," Pescatore said in an interview.

He said the White Wolf breach was a classic example of hackers targeting small businesses in extortion schemes.

"They are picking on the smaller businesses that are less likely to defend themselves. Once the banks started paying for distributed denial-of-service protection, the small businesses became a prime target," he said.

Pescatore said pornography and online gambling sites are perennial targets for denial-of-service extortion schemes and pointed out that companies like Prolexic Technologies Inc. have found a lucrative niche in providing DDoS mitigation services.

A group of high-profile security researchers goes hunting for botnets. Click here to read more.

Andrew Jaquith, senior analyst with Yankee Group Research Inc., said the White Wolf situation is "the equivalent of guys with ski masks running around breaking knees."

"We havent seen evidence that this is a widespread phenomenon, but theres enough chatter in the security underground that the risk of this happening to any small business is very real," Jaquith said.

He said smaller companies that cannot afford to budget for DDoS mitigation technology should consider perimeter defense from a managed services provider.

"Its hard to defend against something thats already stolen. Once the data is gone, like in White Wolfs case, youre basically at the mercy of the attacker."

"If theres one thing the last 18 months have shown us with botnets and pervasive malware is that hackers will take advantage of whatever angle they think theyll get. If this is what works, well see more of it," Jaquith added.

Gartners Pescatore said companies that collect sensitive data from customers have a responsibility to find and patch software flaws that are exploited by hackers.

Officials from White Wolf did not respond to requests for comment. On message boards dedicated to role playing games, fans of the site said the breach likely occurred via flaws in the PHPBB software used by White Wolf.

The PHPBB Web forum software has been the target of attacks by an Internet worm known as Net-Worm.Perl.Santy.A or Santy. The worm uses Google search to randomly find sites running PHPBB and overwrites several different files to deface the forums.

"Most of these data breaches occur because companies leave gaping holes unpatched," Pescatore said. "These businesses need to start using vulnerability management and intrusion-detection software, preferably from a managed services provider. They should also be encrypting stored data to provide added protection [for users]."

Check out eWEEK.coms for the latest security news, reviews and analysis. And for insights on security coverage around the Web, take a look at eWEEK.com Security Center Editor Larry Seltzers Weblog.



  Reader Comments: Hackers, Extortion Threats Shut Down Game Site
>>> Be the FIRST to comment on this article!
 

 
 
>>> More Network Security & Hardware Articles          >>> More By Ryan Naraine
 


xv㶲 ;^+(}LR/ْڱ,oKޝofiQ$$1Hm%sּv@ߨVAÙM,}!*{:|HJ%hʏ1"|x\'gϏг{/PQ~X?C2]hj:TE$*cO^3lְBBP#"F\ς]ݻ`$fRv'n$Gd`jĤAR-XF2M*-f;ӑk)ux 5\`p)jXY6{n_w$z(֟z$}+~daSCiHl6XpaRچg?-Ip\.ܺn?Aס}=-:ҍ.,<4(jIHU 6)} p==\'zt\!.y]fؖqwh ͑J5(GJ\S#x.g9{ۖp*syÝ1+eU_t.s$QPwÑ;7@ږu`(^w: Owqq p,/wD_*0QI- Y|-D'Y_:]>o VqW-b)ڑVP]GF[<,"ÌJ3~̢J >gsKbоd>9;O}1fP+M~(#3hؕgxk_:O[םVON{W9i> و&lXAZ|YkU[_{_C&ALdl{ ٚM> BX-;cL o¯.M(K hL©(9 }Y9&4Y R >5mVAL  |U=kb$`~f B SL@ΧrE\ ~1~1UŠP=IGz X]>L, ~Ê?DNScO=.C+DÜU^ůV/w.$JPVbrxC+jrTT+ qvJ/8 iN )|:=όe֛JmH) gn%s3/Gx/ 1{h'0('o@|V_>]Ik01Sle`Sxt$ b*䪢#?݀΍.#Џ]!.־)X@P A6+8SӞ-5Z,Y~B)'؁ޯ\n7"0.eOTU)&U$jl|T`Z܎:^x>-.9W` >N=3Ǩk 03-tp]U*jAe/EUXY :څHiw3 9 ~gH y V9y]%fZ+a1o-*=ϣ*]W5oKƗɘBÜbK>A֌M:Kln?`,fv_`jld W- 1b.e*r1=_?L} [L4zɖ0-0' ٸn:AjAy̧`\fZMf 4D|\D"p-nōap؉v? q#Z7pթrVgHWtČer-×ټ~a51r&`6o,sqI[7ML "]4!`XޫbxEOp?l]Z.+BvQ *s>P Yo -"ԄpLaV*S7x~.Rȓ#+cI` |Jce"nxB*n gF Dccb^f{q`תۣ%bn }+ =|Q+ t{]wZCR>ib 6χxDŽu_AwqHDyYlF߫+Kxisj됔J~pxђ:6?eF&;fB,&8oH1擸3Q=+"VsAކۧ0BZ@Ɏ^W6>t.ė4'?wD;m)u oл< rDpAjw>\'d0| srn^6b7 `[&IEqD=Sk!xΰ;mh!/V3 T/Us>֒\z$ MN3dn ʆq)ې}ocs~uYLPH2'_aH@ $X)XCu:_7?G:Ky9IP ` bT10_RJMQ6=#ijVwL×$(_(/0[LӷoHW蘧YD_q+ sz4~ \3Z9n|"B2^'68;}hp)ڏHE/pQZin}z}HiR'DZ3pu*d hw<)~[ħ{, /䎱()td* ekewqJiIg+y-EY-V6y;ÓqbLyx*= $LrHj-_랟FUkĶ{3q4D\/8#- LwF]Ydasfo?c_㆟ݖyP1glLgI"ɫzw7}\8%/+Tx|1q/nv (f~\;pOʠcc}d<ݸw[f1vÉfoI>]bwP[_z͞YiIu/K\-"Pn'ZZ|:W%0.ց4 2UCnMk=Ǭ§u,'i/!IVܱS,*_1;lVŗ3SOp&5;U)&5ŗ.̼V&Q~2*w#OƥG/>qĨ`jox?r`f[|!rxV%շ&R JMRZnt?$<ԙ{GKx)رD}REo XtjY0R@ZXQxc ϊkt|²Aq"zda!_<>ZhuX*~-`U_ƨ#8't_#<<;(Z:(*u6ve7`ڹ [Й׎l]'] fx]_uLvE)i$]`R䙀X4~갾܋/)]jx/ ;Ҟ˺FY/1Kx}φ`h/Ya1= T&"r&?%(YMYRQS0Ƞ|Bld5=D2Pq <:F) \;M]u¦8=zg[Q U?ۧiEiT_p_(] 25YěOJHΔ,IlvɎą 1UnIQ%`SguZHV tJb߬ģiad>`eݦ^0sgU,@\dG+J4Z)1Z3^Dbx&[@[fd 'PBbS'A<ݩ5ZLn%vR@R|V#TTLk.U S!l핍1j9 EV"`iJzK0ѻkS:,S߉TpAVDHl)# =EHS2EK"ֽml[sua7 fEIIZm^hOgx?ev|R;v'Դ=\H`\K<ϛqN$]A"ERs.׏&`j CUCxƒ^?Z~]㉴ɰc߉jJlUz)Z?HY  3EOK"KLSnDĝLԔrg>> Dtp7e'VHgҦ[ψW4Xtcf7`2خ;?eqkץ2h}/khͫ*ێi4 K,1%\ýRQ/s}Ò>HR,{i”'|-Mc;X|)H%MyoŦ`j`xz _uFZji pg$=QpL5^ Ԗ|bڥu ^E,$1JIh AƲoC:.;Aߜߜߜߜ_mSr1&+*n|=%0Ga1bw\cw.M}2)>w),<!W|G=߲-+?33D->$w/9mcĢ/.v`6RbkI :'+'$wS#U2[܅/׵)#:mق?5z)yFN:cհ P":&]^H^" L&]7s/k$Dvypi_X7gKpm ޥsܕ: 7 ]ǽFv8sΦwiQ#@f j$FƓ_C SGV &ֽ hws9C ;޲#'5 +lyԫ_=RWR`0wm)Q}M\!W{1Й/c+ŷj4 ̙/r/`rxP*D Gf y;f*BSS!Ys^iIͽ=ڶ/hG P|F0-c S=(V=~s@VE6,wKW*eX -}-?;`;Z֭&O6ŒLif#eĆXa+I錃qlrG/~ g3&e< ,l~k$=ܚLb98\!O~K0'pMzYO sZd'|O_༊"xi[gM=-N /*`!6m{;hO;8V\_bVd=-Tw߁^<=G&!%];@ aLgl#Ըoly7я"vvhTiZPh?s{Oͨ4$tGwҘX/^O_tEw="LamDߣՙY?`#PǸn3۽λykc1qm1Ga)X ϶Np^x_K)LEG|2NoÛMMs4x U܎@ o_+VFVV]{A9-0 j~;uB~_*'^q) IuYW {qCv09p˽a =ʵm~|]DEF7Ri.G؝Te9Lk'Ʈ$Jjad?}$ƽBtyϽcLGh긺\_[a01V&GBA8AXJXD Ň!^^ K&5gPFpxAҲR+]m.95͂E t1^vU^rOQ/K.i^`Vd1ޥtW \ i"r\IoA$ΩP!fX UP+$4hޔHQ58Gg5̈Gbv \mz^CJ;766]4_q=!o7[AfnVu&2#[wnֹ#On@)1p'.B15|".VJ$E1w~6տ4,\ HP*$Zz xCA@ `ΖC0UzpW}پ;x`jSP(As a+^Rc"W6!̫tf 'd0ڱ[w6-RݽZ<%hPZDy_vbu{ι FʒLi ͬ{[RJBYIvi|DuvH)Xp,F"ϩa8TJo[ J9\{6يjm1&,!PbbD )o3AcˠOW[0C c  Ą[)bUfwܠ~z*ڟOe^f{B {=Jl~##dM, |U:m|%wRWl"Цۖp2oB`(xӏMA9(WTD~Nǻ/|T0/b=#-񸐤#C `<$z2̥7f?= nRN8Cǃ"Bab+pD['鍀Ia䏖+62sjDlO /uh_?#?4;}?o>zxX2k_ׯ:J\}Fa_ƒsH ]TW\Afx=3| [z>˘0[:qa)~:m#!k^bΑfƨ+5aHE>p.pgj5UtK$L*2&Bs8559|_LiJ% a k(E$7`n#BLk<3D '_@A?$v/@QR"BPNUEt037  1C(~bJ MF˪s 6r .X`sYej xpƧx}6? wSܕi^5>0 0Y:oN+r H:ς-)s!aZ;Mo )n}>E;MjV}QyxQ3Q Q~WO͌2ʑ[@V;O6}N3PqsY'8l.rN+dEF9~s?3\~3lfOw}}Bv3 Oы_|OgP~Q(GFyʻ0{s!?0~{@2OK/C\\f%U7ksG௏ ?eC>eS::3/9IR< 9k^픊8kgK " SV9,.N3kP g  ~-22Bό~ y/> KJ+ťW*7YKxM}%k{[F1nvdtbCat5KHe^M*!#(<8%Y}MNJ 4tk 7b[yDYAI{R}tEI>tp]"&JR˯-cENikr(%s<2g)h{dZ+mFDuLٌQU|,y|a2 'GY+we,xĻOݞ܃8*nC7}v#ybćAx`?&7SW#.wpyk;ُϋGkwյC5Af_b 5y?'OxVf:Tl<-!5Q3[ ňC?s H00u"_}#xr'܌3:X':ii_]4χmY>gAݷfDV)pF ;F,R+|c ,)hz衜~54]O4pGsn`'ߛs94l H$7_rQӊj~JR}'\!ZjUUEVro VVjb`" *s>P`26UJ` z!J1 4c֭dK_c(wL"׏ щwE;f]We",e 'æȗpޤv,P@0~Y8P*`)K؞.F^.F$=PZr{I2hؐMK؊9N-#X N>@O綌Ù#wHY&38W !-7'hlգ{h9ĉPrO̡[sA>|#]}L .LeSzy;58,_bٴd L1Sw `vQYqíd<@T6?rށwr$~H-;$}F(r1>r&^F`˫iBOXaS/A>=ߛ!fe(a0'VbgHIأ_BDOv֢ >#0uoOɾPd>x*8" 2H 2s{B|%؄Z{JfBZؽM(a"霰)#,|H𵝦^璱̀t>u>KwoAU <g˺1,At57Fh~zA߭Ud#ə Bx YV8[T"?;ǜz JJ @b S%JvMLfU^^' b9?v"ㅰx/!5O ll#Yұ ߞQ TDO2Ntx9=|Ed/+2b%v#HYUҎ_Z;@Bo&!#R.ܐOF{)0XPy74w<p2I0)`t`*sˠvSC@_vDk3F)f'NFp)hN<}y?٢ u+ğ? \ cwHV&[H1Su ѫv.9|x@NlM9\c :۳|?Oe Lwt4Z<n0kn>Q$L{x Cr:Y 96-[ +"ۂ KmӬ>sW¥"UXJMX,8. 4⿴ QK.9Buz Ϸ[<-v7/FOe$| _[0~Y+ʕbA,\A 7tl-NgsZ%K_Hvv*} X^c 0У,:0%9G5-E6<=܈x~;ݾg 3HTx.X߫lׁQ#iHWTFM®":u`x]꞉ |Ua=v O1igNb:*φŀps{~kC'> :uu2^GB~DdagZ/:?ʂo/ QF$V30(ylHK9#a,'lu K(tf0 'Ɣ ϰ" smxDh\N3E~2Z%L+DvdzU\Z-^cdX$֬-LE")ԟc:(z0 sͅ!wS׆!a+cPZXjcL1GYyL6cڅGSy6:|,݈bVS"Nd׊rI-9=ON*LX6c?rf ŷ@˽]Ng*a?<#/ah(`yja."e})IDy)///P>I*g\@qea=Vt*N핋 P.i9|C*'ꙺUώ7_a}BeFBl4*·y*?#[7nxqW-)h,=P$DU $RzVs!Y/%ȕ/2F#oUAޚ[f]Z%Nbi| dl3W RvsF'e9RU>\JRSk$5WYVfLNƇZھ w66BKFslx61 |{V*