Egghead emails internet hoax
2001-01-08 20:57:12
egghead.com frightens millions of users with credit card fraud hoax.
Dec 23, 2000 - egghead.com emails customers about hacker intrusion
...
...
(two weeks pass)
Jan 8, 2001 - egghead.com reports no credit
card data stolen
For two weeks customers of this popular electronic retailer worried that their credit card numbers had been stolen. Rumours spread quickly to message boards where scores of newbies claimed they had been charged $10 by a telecom company in Moscow, Russia as a result of the egghead hack. Cnet, ZDnet, thestreet, and all the other lame shit corporate news sites speculated that egghead had lost its entire 3.7 million (or 3.5 million, or 2.7 million, depending on the article & publisher) credit card number + address + shipping address database.
An anti-egghead site, eggheadsucks.com, posted speculations that the 40-bit ssl encryption egghead.com uses for authentication was too weak. Let us examine this fully. If the system was accessed by knowing a 40-bit key, then that would be equivalent to a "password" of about 6 random characters. This is only about a trillion possibilities. The cost of decrypting such long codes would have cost upwards of a million dollars as recently as 1995, but I am confident that this has fallen to around $25,000 or the equivalent of a few hacked boxes.
Anyone who has experimented with RC5 cracking knows that it is always possible to get people to volunteer their CPU cycles to crack cipher keys. DES, a 56-bit code, was easily cracked. DES is 65536 times as strong as 40-bit. The only browsers that still max out at 40-bit encryption are old fucked up windows 3.1 versions of Netscape and IE. An argument could be made that this was exactly who egghead.com was catering to. With computer hardware being among the top commodities purchased over the internet, it is entirely reasonable to assume that some percentage of egghead.com customers were using some oldschool, barely ssl-capable version of Netscape or IE, which they were running on a $50 486 they purchased directly from egghead.com.
To make matters worse, the only reason cipher code is limited to 40-bit is because of bunk ass laws in the U.S. about the export of secure cryptography. The U.S. government even took Phil Zimmerman to court over the RSA encryption. The excuse the U.S. makes is what if the Cali Cartel, Iraq, and Bin Laden had 4K RSA encryption, there might be Heroin or Cocaine selling in the U.S. and nuclear bombs being traded using encrypted usenet messages. Well, fuck that, anyone who has ever done cocaine or crack knows that it is not all that bad. Just as anyone who has ever used encryption probably has scores of disks that they can't even decrypt because they lost the disk with the GPG key on it.
To top it all off, EGGS stock is at an all-time low, selling for well under a dollar a share. Nobody knows who to blame, eggs for sucking, hackers for being too sneaky, or customers for being so stupid as to trust a company with their credit card information. The real culprit is the grand puppeteer of all evil, the USA.
T O P S T O R I E S
California Glory Hole attracts huge crowds
A glory hole at Napa's Lake Berryessa is drawing huge crowds. According to Chris Lee, the general manager for the Solano County Water Agency, the glory hole hasn't been active since 2019, and only restarted operations on Feb 4. (More...)
Republican State Senator busted after soliciting a teenage girl
Republican State Senator Justin Eichorn of Minnesota was arrested for soliciting a teen girl on Monday just hours after he introduced a bill proposing "Trump derangement syndrome" (TDS) as a form of mental illness. (More...)
Parents claim measles is not that bad after having only one child die
The parents of a Texas girl who died from the measles are defending their decision not to vaccinate their daughter. "She says they would still say 'Don't do the shots,'" an unidentified translator for the parents said. "They think it’s not as bad as the media is making it out to be." (More...)
Delusional rich man tries to fire town staff
"I'm mayor now" said write-in mayoral candidate and founder of Pirate’s Booty Snacks Robert Ehrlich after losing the election for Mayor of Sea Cliff, NY. Then he tried to take over the Village Hall and fire everyone. (More...)
Musk claims Xitter security is staffed by idiots
Earlier this month Xitter experienced a massive outage. In an interview, Musk told Fox Business that he believes the attack came from "IP addresses originating in the Ukraine area." (More...)
The Future Ain't What It Used To Be
Ideas have taken horrifying shape and rooted into our modern reality. (More...)
C L A S S I C P I G D O G
The Ancient and Correct Sake Ceremony
Many Americans have learned to appreciate the delicate, sophisticated flavors of Japanese food and drink, along with the beautifully refined rituals of Japanese dining. San Francisco, as a gateway between East and West, has especially benefited from the flowering of Eastern consciousness in America. It is hardly possible to walk down the street without stepping on somebody's sushi. (More...)
A Day in the Life of a Beverotologist
It was starting to look like a very boring Saturday, trapped as I was in the suburban wastelands of the outer Bay Area, so I called my Able Assistant (AA) and proposed that we perform some Spocktail field tests. For some time I've been working on creating the quintessential cinematic beverage and even tho' SMRL does most of its testing during nocturnal hours, this seemed an opportune time to roll up the sleeves of our labcoats and get some science done. While the beverotology creation tested this day (The Neurotoxin) must be deemed a success, this article focuses more the journey of the experimenters, rather then the science of beverotology. (More...)
The IBM Selectric Typewriter Changed My Life
I ran my hands lovingly across her frame, lightly brushing her metallic nipples with my fingers, admiring the shapes and the ways of her curves, the empathetic hum she produced as I had my way with her, the way she made it all seem so effortless and right... she didn't even seem to mind the way I roughly manipulated her knobs and tweaked her casing. She was extremely tolerant, for a typewriter. (More...)
The Deep Dark Underbelly of the Star Wars Myth, or Ramayana Remembered
It's a fact: Star Wars is a blatant plagiarism of an ancient Asian legend, and the long lines of devout Star Wars freaks are really unscrupulous Asian copyright busters. From Indonesia to Thailand to Nepal, videos are available for sale or rent before they're even released in the US and UK due to this nerdy camcorder-clutching bunch. (More...)
One of our star reporters was sent to Comdex by his employer. El Destino reports live from the biggest, geekiest trade show in the world. (More...)
High Availability Guinness Stress Test
All too often we forget the incredible depth of technology behind the weekly ritual of TNiPN@*. We tend to only become aware of the strategy of High Available Guinness (HAG) when it rises to the forefront during a complete and utter venue failure. Yet we should all be super grateful that this system exists. (More...)