HACKING THREAD Whats possible and whats not

brother walt

GOOD AND CHEAP PODCAST
Supporter
Joined
Feb 7, 2015
Messages
10,507
Reputation
3,735
Daps
38,755
Reppin
GOOD AND CHEAP PODCAST
I'm a huge fan of MR. Robot and I been thinking what is really possible. Could someone have into the dmv and erase my driving record Or could someone Hack into a job website and change the records from fired to hired IDK I just would like to know what it possible
 

Obreh Winfrey

Truly Brehthtaking
Supporter
Joined
Nov 18, 2016
Messages
20,852
Reputation
25,540
Daps
132,000
Insert the anything is possible GIF. If a company isn't using encryption or is using it improperly then inbound and outbound traffic can be compromised. If an attacker can gain access to their server then it's basically game over. Most day-to-day things like getting credit card or personal info stolen is usually down to negligence and not a concentrated effort. You can search your name and find a crap ton of information about yourself. You should opt out of those websites when possible; I need to get my info and some of the people around me off of a few.
 

brother walt

GOOD AND CHEAP PODCAST
Supporter
Joined
Feb 7, 2015
Messages
10,507
Reputation
3,735
Daps
38,755
Reppin
GOOD AND CHEAP PODCAST
Insert the anything is possible GIF. If a company isn't using encryption or is using it improperly then inbound and outbound traffic can be compromised. If an attacker can gain access to their server then it's basically game over. Most day-to-day things like getting credit card or personal info stolen is usually down to negligence and not a concentrated effort. You can search your name and find a crap ton of information about yourself. You should opt out of those websites when possible; I need to get my info and some of the people around me off of a few.


SEEMS LIKE U KNOW WHAT U TALKING ABOUT :patrice:

But wouldn't the dmv be impossible tho but what if they server is hidden or they don't have 1 okay whats a server :manny:
 

Obreh Winfrey

Truly Brehthtaking
Supporter
Joined
Nov 18, 2016
Messages
20,852
Reputation
25,540
Daps
132,000
I just got done taking a class on security so I'm sorta regurgitating what I learned :manny: . We learned more of the mathematical side of how symmetric and asymmetric encryption works. I'm sure there's some InfoSec brehs around here than can give you a better picture of how it all works.

Something like the DMV would be difficult, but not impossible. All a server is is basically a computer running some software and storing some data. If I can get physical access (read as I can put my hands on the server) then get ready to hold an L because there's nothing you can do to stop me. If you do something silly like use an open WIFI network then :ufdup: I can easily read the traffic in and out. If I wait long enough then I can find the packets containing login credentials most likely.

With the DMV they'll probably have a setup where the machines with the actual data aren't connected to the internet themselves, but to a local network. Then they'll have machines on that local network that can connect to the data servers and the internet as well. That way there's an extra set of hoops an attacker has to jump through before they get to any data. But everything is for naught if files aren't encrypted. And even if they are encrypted, if the attacker can get a hold of the private key of the organization then they can decrypt those files. Security has to be at every step: files need to be secure, the data location needs to be secure (physically and virtually), the security measures have to be implemented correctly, the programs need to be made smartly.

Everything on the internet uses a server in some form or another, even The Coli. Whether it's privately hosted or hosted using another server, the data is out there somewhere.

I don't know if you know, but the DNC hacks weren't some supercomputer type of shyt. It was done through a phishing attack - fairly easy to do - and that's how the passwords were lifted. That's why you gotta pay attention to the links you click on and the email you receive. It's a scary world out there :to:.

Side note, fukk the math :mjcry: . That shyt ain't no joke. Data substitution, maxtrix multiplication, matrix manipulation, XORing shyt. The theory behind AES and how it all works is crazy :wow: .
 

hatealot

Banned
Joined
Jan 22, 2017
Messages
13,656
Reputation
2,375
Daps
51,311
Reminded me of the game called Uplink, you play a RPG as a hacker who works for corporations hacking banks, DMVs, school records and etc. But yeah it is possible but when it comes to many systems you may require physical access to their local data as they shouldn't keep everything connect to the open internet. Allegedly someone hacked Louisiana's whole DMV records and is/was trying to sell the whole database for a few million in bitcoins/USD.
 

JT-Money

Superstar
Joined
May 1, 2012
Messages
12,430
Reputation
4,189
Daps
53,100
Reppin
NULL
Just do a Google search for class action lawsuit complaints on any of the companies listed on the Wikipedia page below. These lawsuit complaints will give you a clear picture on how most companies got hacked. I read these all the time to avoid working for companies with terrible security. The bad part about working in cybersecurity is you can end up getting blacklisted if your company ends up on that Summer Jam screen while you worked there. The Home Depot lawsuit complaint lists the names of the people in charge of cybersecurity who dropped the ball. If they get fired from Home Depot they'll most likely never work in IT again and rightly so.

List of data breaches - Wikipedia

http://media.bizj.us/view/img/5981171/home-depot-financial-complaint.pdf
 

poppastoppa

All Star
Supporter
Joined
Jan 18, 2017
Messages
1,744
Reputation
750
Daps
6,047
Reppin
South Crack
Like others said. Theoretically everything can be hacked basically. The methods vary and the degree of difficulty vary.
 

CASHAPP

Superstar
Supporter
Joined
Aug 12, 2012
Messages
26,417
Reputation
-2,484
Daps
48,149
Can we just get some game on how to do some basic phishing for Gmail email addresses?
 

Obreh Winfrey

Truly Brehthtaking
Supporter
Joined
Nov 18, 2016
Messages
20,852
Reputation
25,540
Daps
132,000
Can we just get some game on how to do some basic phishing for Gmail email addresses?
:plscop:

Learn how to do email address spoofing, craft emails so that they look official, have the links in the email redirect towards a site that looks legit but isn't, lift the info they provide.
 
Top