AOL phisher faces up to 101 years in prison

AOL phisher faces up to 101 years in prison By Joris Evers

A California man faces up to 101 years in federal prison after a jury found him guilty of sending out e-mail scams as well as related crimes.
Jeffrey Brett Goodin, 45, of Azusa, was convicted Friday on multiple counts by a jury in the U.S. District Court for Central District of California in Los Angeles, the U.S. Attorney’s Office said in a statement.
Goodin, who was arrested last year, was found guilty of operating a sophisticated phishing scheme, the prosecutors said in the statement. As part of the scam, he sent e-mails posing as AOL’s billing department to trick people into giving up their credit card information, according to the statement. He then used the credit card data to make purchases, prosecutors said Tuesday.
To run the scam, Goodin used several hacked EarthLink accounts to send e-mails to AOL customers, prosecutors said. The messages urged recipients to update their AOL billing information or lose service and referred them to fraudulent Web pages created to collect credit card information, the U.S. Attorney’s Office said.
Phishing is a prevalent online threat. Perpetrators have proven hard to catch since they often hide behind hacked computers and servers.
The Goodin conviction is the first by a jury under the Can-Spam Act of 2003, according to the U.S. Attorney’s Office. Goodin was convicted on multiple counts in addition to the Can-Spam conviction, including wire fraud, unauthorized use of credit cards, misuse of the AOL trademark and attempted witness harassment, prosecutors said.
Goodin is scheduled to be sentenced on June 11.

Source:  http://news.cnet.com/AOL-phisher-faces-up-to-101-years-in-prison/2100-7348_3-6150592.html

Exploring Historical & Emerging Phishing Techniques

International Journal of Network Security & Its Applications (IJNSA), Vol.5, No.4, July 2013
DOI : 10.5121/ijnsa.2013.5402 23

Marc A. Rader1 and Syed (Shawon) M. Rahman2, *
1CapellaUniversity, Minneapolis, MN, USA and Associate Faculty, Cochise CollegeAZ, USA
[email protected]
Associate Professor of Computer Science at the University of Hawaii-Hilo, Hawaii,
USA and Part-time Faculty at Capella University, Minneapolis, USA
*[email protected]
ABSTRACT
Organizations invest heavily in technical controls for their Information Assurance (IA) infrastructure.
These technical controls mitigate and reduce the risk of damage caused by outsider attacks. Most
organizations rely on training to mitigate and reduce risk of non-technical attacks such as social
engineering. Organizations lump IA training into small modules that personnel typically rush through
because the training programs lack enough depth and creativity to keep a trainee engaged. The key to
retaining knowledge is making the information memorable. This paper describes common and emerging
attack vectors and how to lower and mitigate the associated risks.
KEY WORDS
Security Risks, Phishing, Social Engineering, Cross Site Scripting, Emerging Attack Vectors, DNS poising.
1. INTRODUCTION
Phishing is a social engineering technique that is used to bypass technical controls implemented
to mitigate security risks in information systems. People are the weakest link in any security
program. Phishing capitalizes on this weakness and exploits human nature in order to gain access
to a system or to defraud a person of their assets.

(more…)

Read More

Early Phishing

Koceilah Rekouche [email protected]

The history of phishing traces back in important ways to the mid-1990s when hacking
software facilitated the mass targeting of people in password stealing scams on America
Online (AOL). The first of these software programs was mine, called AOHell, and it was
where the word phishing was coined. The software provided an automated password
and credit card-stealing mechanism starting in January 1995. Though the practice of
tricking users in order to steal passwords or information possibly goes back to the
earliest days of computer networking, AOHell’s phishing system was the first automated
tool made publicly available for this purpose. 1 The program influenced the creation of
many other automated phishing systems that were made over a number of years. These
tools were available to amateurs who used them to engage in a countless number of
phishing attacks. By the later part of the decade, the activity moved from AOL to other
networks and eventually grew to involve professional criminals on the internet. What
began as a scheme by rebellious teenagers to steal passwords evolved into one of the
top computer security threats affecting people, corporations, and governments.

(more…)

Read More

Fox’s AIM Phisher

Fox’s AIM Phisher

Creater:  Fox – AIM (Dim Fox)

Dec 25, 2000

Prog Password List

Acid Burn: (one of these) PiXY RuLEz You! or upsidedown or03/17/96

Agent Orange Tosser: I Crap On Lamers ivan is a fairymaxuck

Anti-mass mailer: bud is blah

AoAbortion Tos: Fuck TeRRoR, FAC: KK

AoAbortion FAC: KK

AoAkira: GrEEn DaY

AoAsting: BuBBa , Ugh(AsTiGMaX), John(Prez), AsTiG RuLeZ(member)

AoBliss Tosser: Welcome to the wonderful world of Bliss

AoBomer v1 b1 bot scare: YoUsUck

Aobomer v1 b1 tos: Only TOS LamerZ

AoBomer v1 b2: TOS ALL LAMERZ

AoBomer v1 b3: ALL LAMERZ DIE! (more…)

Read More

AOL Prog Passwords

All Passwords Are Case Sensitive.

Prog Name
Password
Acid Burn PiXY RuLEz You!
Adidas toolz poiuyt
Afterlife Eraser is GoD
Agent Orange I Crap On Lamers
America Off Line maxuck or ivan is a fairy
Anti Mass Mailer bud is blah
AoBliss Tosser Welcome to the wonderful world of Bliss
AOExtacy BoW 2 MaTT
AOExtacy Phisher Matt is king

 

AOFuck 1.”PiXY RuLEZ!” 2.”WaNG DanG” 3.”JeREmYe RuLEz!”
AOInsanity TOSer mac sucks
AoPussy v1.0 13245AoPussy
AoPussy v5.0 bomb,dog,hamburger,eye,woman
AOPussy ver. 5.0 Final push buttons in this order 1,3,2,4,5 Pickides password is 125
Area 51 Tosser v1 WoRM RoX
Area 51 Tosser v2.5 gtworm button #11
Argon termer 85203
ass gas own
Audio x beta 1 zzeerr00
Biestly Toolz BiestlyIsPimp
Benjamins Hack The Fuckin Planet
Bloodlusts Account Creator I Bow B4 SkiTzO
BLUE CROSS V3 Blue Cross Rox!
Blue Cross 4.0 175963
blue ink link idler linktalker
BoNG TOSer Praise Da BoNG or PaWn Kicken 96
Byrd Toolz V4.5 D-TRAIN
Citadel Final 1. I Love Kimmy (PW under Citadel) 2. STFU (Strom Toolz PW) 3. Ozzy (Who to punt under Death Toolz, Start)
Color Tosser Playa (click on the “I’m not racist” button)
Corruption Tosser v1.5 DIE
Demolishing AIM 2.0 klown
Diablo 1.2 heartattack
Diablo toolz²·º dialbo rocks
Ditto Punter N64
Dimension 7 LithiUm
Dogg Pound Tosser BoW B4 BiGDoG
Dreamcatcher NYTS DA MAN
eJect-A-Tos smoke ‘EM
Elements of Destruction click ownz all
Error Punter 5.0 by nash bombEverythin23
Evil Wayz Punta 2.0 The Lighter
Exorcist 2000
Exorcist (Secret Area) 1984#
Exorcist Enter this code first “666x”
EZ Tos 548
FBI Show me the Money
FBI AS28 (All the AS PW’s are Alicia SilverStone Pix!!!) AS1 AS2 AS3 AS4 AS5 AS6
Final Fantasy 7 FF7 HiGhWiNd
Fire Toolz V1.1 Master Access= FaG God Access= Rj2 is GOD
Fire Toolz X V3 Ho= CC Generator SEX= Secret Keyword HORNY= Secret Porn Pic SCRLL= LIST= FiRe ToOlZ=SeX,PoRn,FaG,Rj2 is god,(im me 4 master acces)
Genocide BACONBY
God Punta Secret Area Dial = 1,2,8,2,3,2,5,2,6 PW-Cracker = kaiser
Happy Tosser BKaLLDaY!
Harrass Tosser (click on icons in this order: 1 3 2 4 )
HavOk HeLLo aLL wHAt
HaVoK Final havok is god god is havok
Havok Plat BoW To ThE IsLaNdEr
Havok Platinum Loves Cuteone
hero final ijeet0
Holocaust v1.5 J4 RULZ
james bond toolz picka
ja rule dat acc 2 beta i wanna rule!
judgement day vbnm
juggalo toolz 2 secret area Forsaken
K-Toser2 tosgeneral
Lotto Tosser Happy Daze
Lame scroller BoR ownz chat & logo ßôR on i face
Lethal fragment 3.0 hold alt and press 0254
Magenta 854854
Matrix Toolz 1.0 AoL SuX AsS
mean’s termer 1.0 Mean
Menace II Aol ‘Ol Dirty Basterd (get it wrong….virus)
MIB Final TFish Rules!
Ne0’s Massacre Masta Ne0 Rox Da HoUsE
Nitric Acid SGX
nitz toolz nj4eva
Old School Wreshet 0SW in 2000
Paco-tos enter
Parasite v1.0 anthony
PePsi3.0 PePsi DyNaStY
phreeze v1 password
Punky Tosser FindWindow
Rage Punter ddp
Rampage toolz 2.0 weed
rape final Discriminate
rebel’s toolkit rebel
Ridah’s Insta Tossa BluE RiDaH
Sabotage PW Cracker 3.3 leetness
seadoo final Seadoo
shut up x’er lolzzz
sleepy hollow purple
soul stealer Killer
Super Scotch GOBLIN
tdc ima ²·º porn
techno terror Masud
thorn 3 pepsi
tortuga 3 1st – turtle ownz all 2nd – NHSclass2001rulesEVERYONEinTHEworld
union ascii UNioN OwNz YeW
ups ?UpS?
vs. 2000 vb3hacker
Wicked Destruction 311