AOL phisher faces up to 101 years in prison

AOL phisher faces up to 101 years in prison By Joris Evers

A California man faces up to 101 years in federal prison after a jury found him guilty of sending out e-mail scams as well as related crimes.
Jeffrey Brett Goodin, 45, of Azusa, was convicted Friday on multiple counts by a jury in the U.S. District Court for Central District of California in Los Angeles, the U.S. Attorney’s Office said in a statement.
Goodin, who was arrested last year, was found guilty of operating a sophisticated phishing scheme, the prosecutors said in the statement. As part of the scam, he sent e-mails posing as AOL’s billing department to trick people into giving up their credit card information, according to the statement. He then used the credit card data to make purchases, prosecutors said Tuesday.
To run the scam, Goodin used several hacked EarthLink accounts to send e-mails to AOL customers, prosecutors said. The messages urged recipients to update their AOL billing information or lose service and referred them to fraudulent Web pages created to collect credit card information, the U.S. Attorney’s Office said.
Phishing is a prevalent online threat. Perpetrators have proven hard to catch since they often hide behind hacked computers and servers.
The Goodin conviction is the first by a jury under the Can-Spam Act of 2003, according to the U.S. Attorney’s Office. Goodin was convicted on multiple counts in addition to the Can-Spam conviction, including wire fraud, unauthorized use of credit cards, misuse of the AOL trademark and attempted witness harassment, prosecutors said.
Goodin is scheduled to be sentenced on June 11.



So now its 1999 after web I dove into visual basic to learn to code my own progs.  I cant remember the person that helped me add bas files, and how to call the different subs in that module such as ChatSend.

Programming in VB was different then coding websites but wasnt to far off. There was actually a ton of sources and content available.  I started off making any kind of AOL prog i could think of from Faders, Laggers, Scrollers, Punters.

After all the “lame” progs I could make it then grew to collecting <><, spamming, cracking screen names.

 At this point I started creating more complete and useful AOL progs from CComs, Phishers and tanks.  I needed a tank to collect all the <><, <M><, leet and sub accounts I had.  

You would make an account off someones cracked <M>< which means the Master account that would allow you to delete and control sub accounts.  We would make accounts such as CATRep01 and use “Phishers” that said you worked for AOL and needed a password due to an error.  Honestly out of a full chatroom atleast 2 would give you the login information.  

After the phishers died down and AOL started adding “Members of AoL will not ask you for password info” to the bottom of the Instant Message screen.  It was moved onto cracking.  I remember using winsock crackers and my lobby rat pw list always consisted of 123456, 654321, red123, blue123, aol123, sex123, password.

After cracking it was spamming and scam pages such as InstaKiss, AOL billing sites, etc.  I know Spamsock by kai was huge as well as formmail spammers.  You would be able to fake your from screen name to InstaLove and make the subject someone sent yoh an AoL instakiss.  Please enter your creditentials to see who sent it.  Billing AOL scams was the same only this point you would get billing information these were called “nons”. 

I would jump back and forth constantly from making websites, aol progs, sites dedicated to my progs I created.  

Im thinking now as i write this if you really think about the scene lasted for me from 1998 to about 2004 so basically a quick 7 years.  

I remember when AOL had its first big screen name dump of dead aol accounts that allowed you to reregister some.  3 chars were always popular this was a 3 character screen name.  Off my “permie” AoL account which means the account your parents paid for I went and was able to create t0y, b0x, r0b and h4k.

I would constantly get jacked and people would exploit the names and my mom had to contact AOL weekly to get the passwords reset.  (Side note I remember when Gore from Gore Radio pranked my mom live on his Winamp shoutcast Radio server.)

I remember sitting on AIM in a chatroom and someone gave me the screen name “Lions”.  That was one of my first leets that was given to me.  I know i was about 12 or 13 and it was Easter.  After that I was addicted to the collecting and trading of leet accounts, 3chars, icases, restricteds, indents.

I would constantly trade and jack others peoples names with bribing them to give the password man I was a slick “talker”.  I remember i convinced some Russian on the aim account CrashOverride to giving me half of his collection.  AOL keyword AimPass was also huge since i owned those 3 chars I mentioned earlier.  I would give the password first and sometimes i would get nothing in return and I would go to Aol keyword AIMPASS and it would change thr password to the AIM.

Also some stuff im not sure if it happened in the correcr year im just remember what i could and placing it where it seems right to me.

Stay tuned for year 2000.

Prog Password List

Acid Burn: (one of these) PiXY RuLEz You! or upsidedown or03/17/96

Agent Orange Tosser: I Crap On Lamers ivan is a fairymaxuck

Anti-mass mailer: bud is blah

AoAbortion Tos: Fuck TeRRoR, FAC: KK

AoAbortion FAC: KK

AoAkira: GrEEn DaY

AoAsting: BuBBa , Ugh(AsTiGMaX), John(Prez), AsTiG RuLeZ(member)

AoBliss Tosser: Welcome to the wonderful world of Bliss

AoBomer v1 b1 bot scare: YoUsUck

Aobomer v1 b1 tos: Only TOS LamerZ

AoBomer v1 b2: TOS ALL LAMERZ

AoBomer v1 b3: ALL LAMERZ DIE! (more…)

Read More

AOL Keywords and Backdoors

Subj:      ²«UnderGround»²²«MaFia»²(Aol Secret Keywords & Back Doors)

Date:      97-07-17 17:03:05 EDT

From:     AlphaLocks

To:          BeAwareX1


–•´)´)´)•– Soylent Green Warez Server v4.32 by Elroy –•(`(`(`•–

–•´)´)´)•– Download the latest copy here! –•(`(`(`•–


Read More

List of AOL CatWatch Members

Subj:      ¥—¤(J.a.W.)¤—(CaTwAtCh NaMeS)¤—¥)”UPDATED”

Date:      97-08-01 23:11:27 EDT

From:     Bo0gYmAn

BCC:      BeAwareX1


«–=•º|[    TRauMaTiZeD MassMailer   ]|º•=–»

«–=•º|[            ßý: ßaÑiÇKuLa          ]|º•=–»

«–=•º|[ Dedicated to Jenny in Heaven ]|º•=–»

«–=•º|[    Mail Number: 103 of 283     ‘]|º•=–»

«–=•º|[ Maybe Bo0gYmAn’s last MMs! ]|º•=–»



Forwarded Message:

Subj:      ¥—¤(J.a.W.)¤—(CaTwAtCh NaMeS)¤—¥)”UPDATED”

Date:      97-07-24 03:25:15 EDT

From:     BuBBLe HoP


Read More

Early Phishing

Koceilah Rekouche [email protected]

The history of phishing traces back in important ways to the mid-1990s when hacking
software facilitated the mass targeting of people in password stealing scams on America
Online (AOL). The first of these software programs was mine, called AOHell, and it was
where the word phishing was coined. The software provided an automated password
and credit card-stealing mechanism starting in January 1995. Though the practice of
tricking users in order to steal passwords or information possibly goes back to the
earliest days of computer networking, AOHell’s phishing system was the first automated
tool made publicly available for this purpose. 1 The program influenced the creation of
many other automated phishing systems that were made over a number of years. These
tools were available to amateurs who used them to engage in a countless number of
phishing attacks. By the later part of the decade, the activity moved from AOL to other
networks and eventually grew to involve professional criminals on the internet. What
began as a scheme by rebellious teenagers to steal passwords evolved into one of the
top computer security threats affecting people, corporations, and governments.


Read More

Exploring Historical & Emerging Phishing Techniques

International Journal of Network Security & Its Applications (IJNSA), Vol.5, No.4, July 2013
DOI : 10.5121/ijnsa.2013.5402 23

Marc A. Rader1 and Syed (Shawon) M. Rahman2, *
1CapellaUniversity, Minneapolis, MN, USA and Associate Faculty, Cochise CollegeAZ, USA
[email protected]
Associate Professor of Computer Science at the University of Hawaii-Hilo, Hawaii,
USA and Part-time Faculty at Capella University, Minneapolis, USA
*[email protected]
Organizations invest heavily in technical controls for their Information Assurance (IA) infrastructure.
These technical controls mitigate and reduce the risk of damage caused by outsider attacks. Most
organizations rely on training to mitigate and reduce risk of non-technical attacks such as social
engineering. Organizations lump IA training into small modules that personnel typically rush through
because the training programs lack enough depth and creativity to keep a trainee engaged. The key to
retaining knowledge is making the information memorable. This paper describes common and emerging
attack vectors and how to lower and mitigate the associated risks.
Security Risks, Phishing, Social Engineering, Cross Site Scripting, Emerging Attack Vectors, DNS poising.
Phishing is a social engineering technique that is used to bypass technical controls implemented
to mitigate security risks in information systems. People are the weakest link in any security
program. Phishing capitalizes on this weakness and exploits human nature in order to gain access
to a system or to defraud a person of their assets.


Read More

AOL Prog Passwords

All Passwords Are Case Sensitive.

Prog Name
Acid Burn PiXY RuLEz You!
Adidas toolz poiuyt
Afterlife Eraser is GoD
Agent Orange I Crap On Lamers
America Off Line maxuck or ivan is a fairy
Anti Mass Mailer bud is blah
AoBliss Tosser Welcome to the wonderful world of Bliss
AOExtacy BoW 2 MaTT
AOExtacy Phisher Matt is king


AOFuck 1.”PiXY RuLEZ!” 2.”WaNG DanG” 3.”JeREmYe RuLEz!”
AOInsanity TOSer mac sucks
AoPussy v1.0 13245AoPussy
AoPussy v5.0 bomb,dog,hamburger,eye,woman
AOPussy ver. 5.0 Final push buttons in this order 1,3,2,4,5 Pickides password is 125
Area 51 Tosser v1 WoRM RoX
Area 51 Tosser v2.5 gtworm button #11
Argon termer 85203
ass gas own
Audio x beta 1 zzeerr00
Biestly Toolz BiestlyIsPimp
Benjamins Hack The Fuckin Planet
Bloodlusts Account Creator I Bow B4 SkiTzO
BLUE CROSS V3 Blue Cross Rox!
Blue Cross 4.0 175963
blue ink link idler linktalker
BoNG TOSer Praise Da BoNG or PaWn Kicken 96
Byrd Toolz V4.5 D-TRAIN
Citadel Final 1. I Love Kimmy (PW under Citadel) 2. STFU (Strom Toolz PW) 3. Ozzy (Who to punt under Death Toolz, Start)
Color Tosser Playa (click on the “I’m not racist” button)
Corruption Tosser v1.5 DIE
Demolishing AIM 2.0 klown
Diablo 1.2 heartattack
Diablo toolz²·º dialbo rocks
Ditto Punter N64
Dimension 7 LithiUm
Dogg Pound Tosser BoW B4 BiGDoG
Dreamcatcher NYTS DA MAN
eJect-A-Tos smoke ‘EM
Elements of Destruction click ownz all
Error Punter 5.0 by nash bombEverythin23
Evil Wayz Punta 2.0 The Lighter
Exorcist 2000
Exorcist (Secret Area) 1984#
Exorcist Enter this code first “666x”
EZ Tos 548
FBI Show me the Money
FBI AS28 (All the AS PW’s are Alicia SilverStone Pix!!!) AS1 AS2 AS3 AS4 AS5 AS6
Final Fantasy 7 FF7 HiGhWiNd
Fire Toolz V1.1 Master Access= FaG God Access= Rj2 is GOD
Fire Toolz X V3 Ho= CC Generator SEX= Secret Keyword HORNY= Secret Porn Pic SCRLL= LIST= FiRe ToOlZ=SeX,PoRn,FaG,Rj2 is god,(im me 4 master acces)
Genocide BACONBY
God Punta Secret Area Dial = 1,2,8,2,3,2,5,2,6 PW-Cracker = kaiser
Happy Tosser BKaLLDaY!
Harrass Tosser (click on icons in this order: 1 3 2 4 )
HavOk HeLLo aLL wHAt
HaVoK Final havok is god god is havok
Havok Plat BoW To ThE IsLaNdEr
Havok Platinum Loves Cuteone
hero final ijeet0
Holocaust v1.5 J4 RULZ
james bond toolz picka
ja rule dat acc 2 beta i wanna rule!
judgement day vbnm
juggalo toolz 2 secret area Forsaken
K-Toser2 tosgeneral
Lotto Tosser Happy Daze
Lame scroller BoR ownz chat & logo ßôR on i face
Lethal fragment 3.0 hold alt and press 0254
Magenta 854854
Matrix Toolz 1.0 AoL SuX AsS
mean’s termer 1.0 Mean
Menace II Aol ‘Ol Dirty Basterd (get it wrong….virus)
MIB Final TFish Rules!
Ne0’s Massacre Masta Ne0 Rox Da HoUsE
Nitric Acid SGX
nitz toolz nj4eva
Old School Wreshet 0SW in 2000
Paco-tos enter
Parasite v1.0 anthony
PePsi3.0 PePsi DyNaStY
phreeze v1 password
Punky Tosser FindWindow
Rage Punter ddp
Rampage toolz 2.0 weed
rape final Discriminate
rebel’s toolkit rebel
Ridah’s Insta Tossa BluE RiDaH
Sabotage PW Cracker 3.3 leetness
seadoo final Seadoo
shut up x’er lolzzz
sleepy hollow purple
soul stealer Killer
Super Scotch GOBLIN
tdc ima ²·º porn
techno terror Masud
thorn 3 pepsi
tortuga 3 1st – turtle ownz all 2nd – NHSclass2001rulesEVERYONEinTHEworld
union ascii UNioN OwNz YeW
ups ?UpS?
vs. 2000 vb3hacker
Wicked Destruction 311