goBigtime

100 Webmasters who should subscribe to bugtraq before pointing fingers



I am pretty sure the only thing that matrix is guilty of in this case is the same thing that 99% of you reading this thread are -- not keeping your servers software and any canned scripts you run patched up free of vulnerabilities.

And if you think "oooh but my hosting company takes care of that stuff for me". In most cases (even if you pay for managed service) you're probably wrong & if you DON'T pay for managed services - you're definitely wrong.

Any true admins care to back me up on that one?

The net is a mess. Probably 80-90% of home users out there are hacked (via trojans or loaded down with spyware).

And a good portion of the webservers out there are vulnerable because webmasters seem to think their hosts will keep them up to date and safe from the bad guys.


Who knows what really happend here, but I would say that the chances are good that Matrix was hacked somehow.

Johny Traffic

Its easy to say weve been hacked, or someone stole our list, or an employee did it. It nicely defers the blame doesnt it. If that list is out there (I dont know if it is or isnt) then there is no defering the blame, its been sold or given up and that is a shitty thing to do! Making excuses wont change that

__________________


hosted flv's, hosted galleries, morphing rss feeds, free content, free sites, hosted blog

goBigtime

I've posted not only who it might be, but who it is two times in this thread so far.

Well I've posted the things being spammed to the matrix emails and the account ID and program name that was used anyway.

I hate to be repetitive... should I post it again? Nah.. if anyones curious just search.

Bladewire

I just posted this in another thread and am posting it here too just to help things along while we wait for Norman to get back.

Instead of speculating - go into action. Here are some things you can do to get answers. If you ever have to goto court you'll have a record of what certain entities have said to you.

A) Send an email to your billing companies and Sponsors with these questions:

1) In the terms of our contract are you allowed to give my personal information to a third party?
2) Have you given my personal information to a third party in any way, ever?
3) If you have given my personal information to a third party why? Who did you give it to?
4) If you have given my personal information to a third party I request contact information for the third party.

* Make sure they answer these questions point by point. If you ever goto court you'll have written documentation of what these entities told you regarding your personal information with them.

B) Research what happened with Holio. There case was DISMISSED.. which means that it's possible Acacia dropped it. Why would Acacia do that? Does Holio have a case pending against Acacia in a California court? What are the claims being made in that case? Is Acacia being sued by Holio for breaking a deal? I don't believe Holio has signed a license with Acacia so what deal has been broken, if any?

C) After you start getting results from the different processors and sponsors... post the results on here.

Remember.. this doesn't all come down to one person or company. There are a few involved and we need answers and doing what I detail above will help us all start getting some answers.

__________________

spooky181

Inapropriate!!

He had a point..

goBigtime

Look, I don't particularly like matrix or NLB after him dropping the ball on our correspondence.

But the fact is, hacks happen. They can happen at the server level, they can happen at the client level (trojans, keylogs etc)


You for instance Johnny, might consider upgrading (or getting your admin to upgrade) your server

The % of peoples home computers and web servers vulnerable to hacks is pretty scary actually.

I just think its a little hippocritical to critisize people who've been hacked if your aren't in tune with your own security practices.



edit: took the specific vuln I saw on your box out as to not make it apparent to everyone reading. And of course that wasn't a threat or anything.. just trying to make a point here.

Bladewire

You didn't know? LadyMischief and sexeducation have this viseral spite for one another. It's a love hate kind of thing.

__________________

goBigtime

LM is cheating on Grogan?

For shame!

Bladewire

__________________

Johny Traffic

Im not saying it isnt possible...... What Im saying if you read my thread is, its all very easy blaming someone or something else.

You think Acacia are hacking into servers, or buying stolen lists? Wouldnt it be easier just to buy a list?

Plus in the acacia licence you give them permision to go through your accounts, so its very easy for them to see who sells what and whos affilated to who.

GoBigtime sometimes things are plain and simple, but I agree sometimes (not often) they are not

__________________


hosted flv's, hosted galleries, morphing rss feeds, free content, free sites, hosted blog

Carrie

Folks, look at what you're saying. Acacia bought stolen lists?
You must be crazy.

Acacia is made up of lawyers.
They KNOW the consequences of purchasing stolen property.
They KNOW that if they did this, it WOULD come out in court and implicate their company in much worse criminal charges - most likely felonies, given the value of such a list.
They also did NOT hack into anyone's server and steal a list - these guys aren't even sure whether their patents cover Flash or live video, but you expect them to be advanced enough to hack into (or hire someone to hack into) a secure server? Stop with the wishful thinking and use some COMMON SENSE - although I know that's in short supply on GFY...

Acacia did NOT buy a stolen list, or hack into anyone's server and steal it themselves. They were GIVEN a list.

chemicaleyes

__________________
No way as way, No limitation as limitation. AmeriNOC formally PhatServers

Bladewire

Finally someones STARTING to get the picture!

Do you think they have a consultant? VERY industry specific information is being given to get us right where it counts.. only a successful insider would know how to get our personal info. Who is it? What peope/person in our industry would benefit from working with an intellectual property company like Acacia? Is there anyone in our industry who has started an intelectual property company themselves? These are important questions that need to be brought public so people can see the big picture.

__________________

Johny Traffic

[QUOTE]Folks, look at what you're saying. Acacia bought stolen lists?
You must be crazy.

Acacia is made up of lawyers.
They KNOW the consequences of purchasing stolen property.
They KNOW that if they did this, it WOULD come out in court and implicate their company in much worse criminal charges - most likely felonies, given the value of such a list.
They also did NOT hack into anyone's server and steal a list - these guys aren't even sure whether their patents cover Flash or live video, but you expect them to be advanced enough to hack into (or hire someone to hack into) a secure server? Stop with the wishful thinking and use some COMMON SENSE - although I know that's in short supply on GFY...

Acacia did NOT buy a stolen list, or hack into anyone's server and steal it themselves. They were GIVEN a list.QUOTE]

I have to agree with this 100% Im not saying it isnt possible technically, but there is no point, when there are 100's of webmasters willing to sell their lists.

__________________


hosted flv's, hosted galleries, morphing rss feeds, free content, free sites, hosted blog

chemicaleyes

[QUOTE]Originally posted by Johny Traffic

Quote:

Folks, look at what you're saying. Acacia bought stolen lists? You must be crazy. Acacia is made up of lawyers. They KNOW the consequences of purchasing stolen property. They KNOW that if they did this, it WOULD come out in court and implicate their company in much worse criminal charges - most likely felonies, given the value of such a list. They also did NOT hack into anyone's server and steal a list - these guys aren't even sure whether their patents cover Flash or live video, but you expect them to be advanced enough to hack into (or hire someone to hack into) a secure server? Stop with the wishful thinking and use some COMMON SENSE - although I know that's in short supply on GFY... Acacia did NOT buy a stolen list, or hack into anyone's server and steal it themselves. They were GIVEN a list.QUOTE] I have to agree with this 100% Im not saying it isnt possible technically, but there is no point, when there are 100's of webmasters willing to sell their lists.

__________________
No way as way, No limitation as limitation. AmeriNOC formally PhatServers

jason420

Norman, If you knew damn sure it wasn't you- your message would have sounded a bit more confident. Now you're saying your systems may have been compromised.

This smells fishy. Put the pipe down and talk to us straight. DID MATRIX DISH UP THE INFO? Whether it was you , Robbye or someone at your company. All fingers are pointing to you and your statements don't seem strong.

If you were ripped off by someone, even though it was your boxes you will not be blamed. YOUR FUCKING SECURITY SUCKS BUT PEOPLE WON'T TARNISH YOU PERSONALLY.

Fess up. What's up?

LadyMischief

No actually, but I tend not to listen to anything from idiots who run supposed "adult" sites with pictures of children on them and advertises them on forums where children frequent (in reference to Sexed).

__________________

ICQ 3522039
Content Manager - orgasm.com
[email protected]

LadyMischief

I was not trying to imply that the Matrix database hadn't been comprimised. However Why would Norman lie about not knowing how it got out there? What does he stand to gain? Would he not think the truth would come out sooner or later? I see no reason why he would lie about this, because it would only serve to further damage his and Matrix's reputation if he WAS just trying to cover his ass with a sob story.. don't you think? It's easy to try to lay blame on the most convenient target in bad situations like this, but let's not get the lynch mob armed before some facts are known, shall we?

__________________

ICQ 3522039
Content Manager - orgasm.com
[email protected]

LadyMischief

As for being a Matrix ass-kisser, actually, Matrix is my COMPETITION if you want to be technical. I have absolutely no reason to kiss their ass, and if one were to think about it, would I not be better off if they went down? However, I don't play that way in business, especially when I know a person is solid.

__________________

ICQ 3522039
Content Manager - orgasm.com
[email protected]

JFPdude

I can say this ... many of you know I do work for a bunch of hosting companies including a lot of private clients and the level of updates to servers is sickening.

This week alone I have logged into servers that are still running freebsd 4.1 and 4.5 and a few redhat boxes still running 5.2 and 6.0.

I won't even discuss ssh, apache, and php.

Johny Traffic

Are you serious?

LadyMischief I never bought from Matrix, acacia got my name from another content provider, Im not 100% about this but I have one name for checks to go to and another to buy content from, but Im not 100% its them so Ill never post who they are. So I am 100% impartial

But I cant believe your seriously think they have nothing to gain from lying.

But that said maybe they are telling the truth maybe they just sold the list to someone who sold it on.

But you dont seriously believe that Acacia hacked in to the server (with all the implied risks involved) and all these legal profesionals are using this Stolen Illegal list instead of just buying one from the 1000's of webmasters who have them for sale, that you can buy cheaply, legally and quickly do you?

__________________


hosted flv's, hosted galleries, morphing rss feeds, free content, free sites, hosted blog

theking

If I recall correctly (and I may not) you said...as well as a couple of other people...that you have proof that Sexed is a pedo and you/they turned this proof over to the authorities...question why hasn't he been arrested?

__________________
When you're running down my country hoss...you're walking on the fighting side of me!

FOR THE LYING LOWLIFE POSTING AS PATHFINDER...https://gfy.com/fucking-around-and-pr...athfinder.html

goBigtime

Carrie,

I thought you were smarter than the post above.


Look, if Acacia bought a list they aren't going to buy it from someone who sais "I stole/hacked it from so & so".

And do you REALLY think Acacia is above buying or trading for industry contact lists from random Joe's?

You mention they are made up of a group of lawers like that makes them a fine upstanding reputable company.

That just means they know how to properly cover their asses with any decision they make.

goBigtime

Very specific????

Perhaps if they recieved such specific information they could have used AMP's name instead of Mr. Amputated Your Head, or hell.. maybe they would have even known that he was a DESIGNER witout video content use.


A hacker would be a "successful insider" as well, weather the company liked it or not.


Look.. the reason I started posting in this thread, against my will.. because I'll never buy from Matrix again - FOR OTHER REASONS, is because I can testify that Matrix was having problems with leaked account information LONG BEFORE ACACIA HIT THE SCENE.

For a group of people so hung up on finding proof of things in use at earlier dates, you are sure quick to try brush this one aside.






And I'm sorry if I'm ruining everyones excitement here. But most people know which side of the line I'm on in all this...

If I thought Matrix was guilty, you can trust that I would be there with the matches.

goBigtime

AND FOR YOU PEOPLE SO HUNG UP ON THIS WITCH HUNT, WHY DON'T YOU TAKE TWO MINUTES & ADDRESS MY POSTS THAT _DO_ POINT THE FINGER...


I have posted twice now about who (else) does have, in the very least, Matrix's email addresses.

Track THEM down.


In fact, for those of you who are or have been registered with matrix, check your TRASH or SPAM mail boxes today at those addresses....

Look for:

"Watch the teenfarm show"

This is the latest spam we have received to the matrix email addresses.

All the header information is fake & looks to be spammed from a hijacked box but it points to:

http:// aaaweh34.biz / tfgame / game.html

It's owned by somebody in Canada.



This is one of the reasons I don't like Matrix. If they wanted to, they could haved tracked these people down & forced them (at least the US and Canada based ones) to tell them where they purchased their list or hit them with a lawsuit. This could have possibly curbed the distribution of this list.

You don't see people running around offering CE lists anymore do you?

BrentD

HAHAHA!!!


Now you got the nerve to still psam me with your shitty newsletters? Just give up and go away sell out!!!!

__________________
WordPress Specialist
Xenforo/IPS/VB Specialist
https://www.zothnet.com

BrentD

I'll take that offer;)

__________________
WordPress Specialist
Xenforo/IPS/VB Specialist
https://www.zothnet.com

goBigtime

Oh don't worry, you're well on your way to getting your own.

Mr.Fiction

Nothing against Norman, and it's very possible that he's telling the truth, but this quesion is funny.

LadyMischief

Well my reasoning is pretty simple. Eventually the truth will come out... It always manages to in things this ugly. If Norman IS lying, then it could pretty much complete any damage done thusfar. Sure, he COULD potentially be trying to patch holes in a sinking ship with chewing gum, in a figurative way.. But in the end the ship would still go down, wouldn't it?

He would be better off to tell the truth than to be proven a liar later, wouldn't he? At least I would hope so. I stuck my neck out in this thread a bit for Norman because I sincerely would like to believe him. I know everyone's pissed, hell I would be too. But a lynching isn't going to change things regardless.

__________________

ICQ 3522039
Content Manager - orgasm.com
[email protected]

BrentD

OK so Matrix might have sold their email list, but why does the letter from acacia state to Brent Daugherty NicheMVS? No one in their right mind sells all the customer info when they sell an email list, if they sell the customer info they are a fucking stupid ass, thats invasion of privacy, jsut selling email addresses is spamming but still it does not let them off the hook for giving out the whole fucking db of our personal information.

__________________
WordPress Specialist
Xenforo/IPS/VB Specialist
https://www.zothnet.com

BrentD

I was joking, didn't know I did something to piss you off, if I did please bring it to the horses mouth so it can be settled please

Thanks

__________________
WordPress Specialist
Xenforo/IPS/VB Specialist
https://www.zothnet.com

sexeducation

My son says accept the offer.
"you don't give a crap where you post"

So I accept $2500 to not post on GFY for one year.
and I accept $5000 to never post on GFY.
(I will trade content as well.)

Please post your replies in the thread titled "SexEducation.com" and not in this important thread....

To reiterate my question to Matrix ...
Did you give the information to Acacia expecting them not to use it?

goBigtime

You have blinders on and can only see one possible way that the Matrix clients could have wound up in Acacias hands, even after evidence to the contrary has been posted here - and you're relentless about it. If this were a horse race, no doubt you would win.



Have you checked your email for that spam yet?


Do you run a software or hardware (or preferably both) firewall yourself? Did you modify your application/hta folder in the registry awhile back? Did you turn off dcom?

Do you even know what I'm talking about?

Do any of you? (I'm sure JFP Dude does)

Did you guys ignore his post too?

goBigtime

Dude.

Do you even realize how much the post and questions you ask above - backs up and reinforces the idea that matrix was hacked?

sexeducation

I don't think Matrix intended to do anything wrong or controversial.
I think they filled out the "monthly" required sales report and Acacia did what they wanted to with the information.

I don't think it's a "hacking scheme" or a "theft" or a "conspiracy".
Acacia requested the information and used it.

I believe NLB / Matrix is an upstanding and reputable company and should sue Acacia for what is occuring here.
This percieved bad rep - will never go away.
Webmasters are pissed off about this.
Acacia has toasted the reputation of good company by their "legal manipulations"...
imo

BrentD

What am I missing here? Hacked or sold it still is matrix's responsibility isn't it and isn't that what people here are trying to prove?

What happened to the theory that companies who make millions have the best security?

It's quite obvisious as a server owner msyelf you shut off all outside conenctiosn to your databases, even we have done this, its common knowledge, so I am sure if Matrix has a brain they would have done this, not many other ways to hack a database if you have outside connections disabled which makes ODBC useless. The only other way is to run phpmyadmin or the likes of it and someone finds it and hacks in through it.

Either way Matrix is the leak and Matrix has settled so that still makes them a sell out that tucked their tale and ran from the real fight. I personally have no sympathy for any company who does not fight this regardless of their situtation. I personally feel its better to ignore the acacia if you don't have the funds to fight back rather then to settle with them.

Acacia will only be able to file as many lawsuits as they can keep up with and the court will not let them go in and file 300+ lawsuits at the same time, the court could keep up, so those in court right now and have recieved a summons will be thw ones seen for awhile till they are settled I would bet on it. I doubt we see any real action from acacia in the next 3-6 months till something is settled and by then the patent will be invalidated I am sure with the first case to hit teh courtroom floor.

__________________
WordPress Specialist
Xenforo/IPS/VB Specialist
https://www.zothnet.com

goBigtime

Everything Brent.

I thought that after calling Johny Traffic's "I know security" bluff, it would curb posts like the one above.

A passive scan to cd-media.net reveals that you have your own problems. Contact your admin and tell him to update your shit.

If he sais "What shit?" tell him "You're fired." and move to someone who knows.

The point I'm trying to make (and JFPdude agreed with) is that the % of people who are hackable, both on their HOME BOXES and WEBSERVERS is ridiculous.

We sell scripts & have done many installs on client machines. I know the shape peoples boxes are in, and I know the lack of concern for security many people have.

gin

all i have to say is. with all this evidence that acacia is doing this to your affiliates without your authorization, i would be sui'ing them right now. there has been 20+ people that have said the only way they got the letter was from matrix content. matrix content, if you did not do this, sue them or it makes you look really bad

sexeducation

they have to sue ...
they have been fucked royally ...

but lets wait until NLB/Matrix has a chance to collect his thoughts and do his investigation ...
GFY may be 24 hours a day ...but doing business when you're the boss is on your own time ...

Just give him a chance to enjoy his family this weekend ...
he will be back at work - as usual - during his normal business hours ...

goBigtime

Check the topic.

I think this might be what NLB's plan is.

Find out with 100% certainty that Acacia is mailing their client list & then sue the living piss out of them for destroying his business.

rooster

your starting to annoy me. The internet is a 24/7 thing, and if something as major as this happend to me, I wouldnt be taking the day off to bbq and relax.

goBigtime

Btw, just got another spam to the matrix tagged addresses....

Promoting IGF2.

Subject has "make her want you again now!"


Check your inboxes.

sexeducation

I annoy ("at least") everyone ...
get used to it.

And GFY is not reality. It's just a message board of which there are thousands.

sexeducation

k ...will check

goBigtime

Btw people investigating the companies that are spamming the MC emails...

I have already done this in the past. There are only a few.

Please do not use REAL LINKS to them or their domains in the forums as this GFY forum will appear in their server logs

if you want to link them, use:

http:// sub . company . com / path / to / whatever.html

sexeducation

1129 messages ...
how the hell can anyone keep up to this level of garbage ...
FUCK I HATE SPAM ...
will look another time

goBigtime

Tag your emails when you give them out to sites and alert & blacklist the people/emails who get hacked or sell your shit.


[email protected]
[email protected]
[email protected]

I'm sure you get the picture.

sexeducation

Yes - I do "get the picture".
But your assumption that posting my email address in threads like this is causing the problem is wrong.

Most of my spam comes from email addresses ONLY USED in the whois database of domain registrations.

The world wide do not spam list should automatically be email addresses in the whois dbase.
imo


gotta go flip some burgers have a good nite everyone

goBigtime

Send WHOIS's emails straight to the shitter & use a registrar that allows you to have a seperate email for your account with them to updated you of any problems.

If there is a REAL legal concern where someone needs to contact you using your whois info, they'll be doing it by registered mail & not a email spam