Porn Billing Leak Exposes Buyers - Chicagoland Sportbikes
Chicagoland Sportbikes
 
Open Forum This forum is for all off-topic discussion.

 
LinkBack Thread Tools Display Modes
post #1 of 11 (permalink) Old 03-09-2006, 04:59 PM Thread Starter
Falcon Trainer
 
BusaGirl's Avatar
 
Join Date: May 2005
Location: Medinah
Posts: 2,866
Location: Medinah
Sportbike: 2012 Ducati 848 Evo, 2012 HD Softail Deluxe
Years Riding: Lots of years....
How you found us: ??
           
Send a message via AIM to BusaGirl Send a message via Skype™ to BusaGirl
Porn Billing Leak Exposes Buyers

14:15 PM Mar, 08, 2006 EST - Wired -

Seventeen million customers of the online payment service iBill have had their personal information released onto the internet, where it's been bought and sold in a black market made up of fraud artists and spammers, security experts say.

The stolen data, examined by Wired News, includes names, phone numbers, addresses, e-mail addresses and internet IP addresses. Other fields in the compromised databases appear to be logins and passwords, credit-card types and purchase amounts, but credit-card numbers are not included.

The breach has broad privacy implications for the victims. Until it was brought low by legal and financial difficulties, iBill was a top credit-card processor for adult entertainment websites -- providing billing services for such outlets as DominaBDSM and Top-Nude.com.

The transactions documented in the database are dated between 1998 and 2003, spanning a period at the height of iBill's success.

The company didn't respond to repeated e-mail and telephone inquires by Wired News.

Two caches of stolen iBill customer data were discovered separately by two security companies while conducting routine research into malicious software online.

Southern California-based Secure Science Corporation found the first data file containing records on 17 million individuals on a private website set up by scammers. The site was part of a so-called "phishing" scheme, in which a spamming fraudster poses as a bank or online retailer in an attempt to con consumers out of identification and financial information.

Secure Science found that data in February 2005, and reported it to the FBI's Miami field office, the company says. The FBI declined comment.

Last month, Sunbelt Software found an additional list of slightly over 1 million individual entries labeled Ibill_1m.txt on a spamming website. That list appeared to date from 2003.

IBill has a troubled history. Founded in 1997 by executives of a Florida-based BBS software developer, by 2002 iBill was a big player in internet billing, processing approximately $400 million in credit card transactions per year, according to SEC filings. The company took 15 percent off the top in fees. Todd Dugas, a former inside sales representative for iBill, estimates that pornography made up 85 percent of the business.

But when Atlanta-based InterCept acquired iBill for $120 million in 2002, it immediately encountered problems. New rules from Visa made it more complicated and costly to process adult website transactions, and "accounts dropped like flies," says Dugas. Meanwhile MasterCard levied $5.85 million in fines against iBill for an unusually high volume of "charge backs" -- consumer-disputed charges -- though InterCept managed to recoup most of the fine from iBill's previous owners.

In September 2004, iBill lost the contract with its upstream credit-card processor, First Data, which had grown wary of being associated with adult content. Website operators relying on iBill for payments had to wait months for their checks while First Data held the money in escrow. Roger Jacobs, who followed the story of iBill for adult industry publications AVN and XBiz, described low morale and a hemorrhaging of employees during this period.

Lance James of Secure Science and Adam Thomas of Sunbelt Software speculate that the company's troubles may have left them vulnerable to information embezzlement: The breach, they say, has all the markings of an inside job. The files appear to have been generated by exporting an SQL database into a CSV format -- a procedure that would be unusually extravagant for a quick, furtive hack attack. Moreover, at 4.5 gigabytes in size, the larger file would have been tough to download unnoticed over iBill's internet connection.

Thomas speculates that an employee or other insider may have simply walked out of iBill with the transaction records to sell on the data black market.

What happened with the records from there is anyone's guess. The 1 million addresses found by Sunbelt Software were being used for spamming. Sunbelt found the database by tracing malware-infected computers as they connected to the internet to refresh their list of spam targets. The target list turned out to be the iBill database, hosted on a rogue website.

Secure Science's James says the 17 million database entries he found is prime data for spamming, phishing attacks, pretext phone calls and even possible hacking of vulnerable computers at the IP addresses listed.

Independently, Wired News found that entries from the smaller cache are listed as mortgage leads on a spammer community site, specialham.com. (The website's homepage offered no contact information and Wired News was unable to reach the registered owner of the domain, one "Juice Wobble.") This suggests that the database was marketed as a lead list for outside businesses. "I can attest to the fact that this goes on with phishing groups," says James. "They break in and steal leads and then sell those leads to (black market) leads companies, who resell them to legitimate companies, and sometimes the same companies they stole them from."

"The fact that a total of 17,781,462 iBill records have been found in the hands of criminal hackers is quite disturbing, be it an inside job or the successful work of criminal hackers," says Thomas.

Contacted by Wired News, one of the victims of the breach expressed dismay that his information was in the hands of criminals. The 41-year-old San Diego man says he allowed a "business partner" to use his credit card on an adult website dedicated to finding resources in Tijuana's red light district, with discussion groups and locations of prostitutes.

"Life is difficult enough," says the victim. "It makes the net that much less secure in my eyes.... I plan to not use any credit card information on any site."

The man says that neither iBill nor the FBI notified him of the breach.

Because the information didn't include Social Security, credit-card or driver's-license numbers, no U.S. laws require iBill or the companies for which they provided billing to warn victims. A year after the FBI first learned of the larger leak, they have also failed to issue any public warnings.

In January of last year, iBill was purchased by Interactive Brand Development for $23.5 million. On Monday, IBD's stock closed at 8 cents a share in over-the-counter trading.

Busa /Ducati/HDGirl
NESBA #717


XBOX Live: JustPlatinum
BusaGirl is offline  
Sponsored Links
Advertisement
 
post #2 of 11 (permalink) Old 03-09-2006, 05:00 PM
Super Moderator

 
Vcook's Avatar
 
Join Date: Apr 2002
Location: Winfield
Posts: 43,229
Location: Winfield
Sportbike: bikeless
Years Riding: 10
How you found us: Shit, you know I'm a clsb OG!
           
Send a message via AIM to Vcook
this is why you never pay for something that is abundantly free on the internet.

Chris
Vcook is offline  
post #3 of 11 (permalink) Old 03-09-2006, 05:02 PM
Irony helps us play!
 
Arch's Avatar
 
Join Date: Jan 2006
Location: N'ville
Posts: 29,508
Location: N'ville
Sportbike: 2000 F4
Years Riding: Long enough to know better
How you found us: some hot MILF whispered it in my ear
           
I used to work with some of iBill's employees back in the early 90's (Before they worked at iBill).

DOH. Funny, this doesn't amaze me.

Everyone Exaggerates

We're being taken for a ride... agaaaaaaain.....


Best Auto/Moto Insurance | Motorcycle Protection Today | FREE Trade-In Quote

Last edited by Arch; 03-09-2006 at 05:07 PM.
Arch is offline  
post #4 of 11 (permalink) Old 03-09-2006, 05:06 PM
Irony helps us play!
 
Arch's Avatar
 
Join Date: Jan 2006
Location: N'ville
Posts: 29,508
Location: N'ville
Sportbike: 2000 F4
Years Riding: Long enough to know better
How you found us: some hot MILF whispered it in my ear
           
http://www.newyorkdailytimes.com/home.htm?m=ibill

They had a lot of bridges being burnt.

Everyone Exaggerates

We're being taken for a ride... agaaaaaaain.....


Best Auto/Moto Insurance | Motorcycle Protection Today | FREE Trade-In Quote

Last edited by Arch; 03-09-2006 at 05:09 PM.
Arch is offline  
post #5 of 11 (permalink) Old 03-09-2006, 06:17 PM
Moderator
 
maks's Avatar
 
Join Date: Apr 2002
Location: Chicago
Posts: 3,613
Location: Chicago
Sportbike: 2002 CBR F4i
Years Riding: 3
How you found us: Original Gangsta
           
Send a message via AIM to maks
And the iBill disaster continues..

They also failed to make what I believe amounted to hundreds of thousands of dollars in affiliate payouts when they went under.
maks is offline  
post #6 of 11 (permalink) Old 03-09-2006, 06:46 PM
Curb your dogma.
 
Phily-D's Avatar
 
Join Date: Nov 2004
Location: Plainfield
Posts: 2,410
Location: Plainfield
Sportbike: another Honda:)
Years Riding: little while now....
How you found us: BusaDave
           
Sad that a disgruntled employee would impose upon 17 million people just so he could get back at somebody Major a-hole.

"Cr-Cr-Cr-Crambone!!"
Phily-D is offline  
post #7 of 11 (permalink) Old 03-09-2006, 08:30 PM
Wild slide rule roots
 
Morrand's Avatar
 
Join Date: Jun 2004
Location: Chicago (W. Humboldt Pk.), IL
Posts: 1,735
Location: Chicago (W. Humboldt Pk.), IL
Sportbike: 2002 Suzuki TL1000R, yel/blk (Street) & '04 GSXR750 (Track)
Years Riding: 8
How you found us: Got the link through NESBA
           
Quote:
Originally Posted by Phily-D
Sad that a disgruntled employee would impose upon 17 million people just so he could get back at somebody Major a-hole.
Well, it would be, but it looks like it was a bit more than that. Verified e-mail addresses go for good money to spam operations, so it's probably not just a matter of revenge as much as it's just the money involved.

Morrand
NESBA #561 (I)
Jabber/Google Talk: [email protected]
Morrand is offline  
post #8 of 11 (permalink) Old 03-09-2006, 08:37 PM
Just make it clap!
 
midnitrcr's Avatar
 
Join Date: Jun 2005
Location: Chicago, IL
Posts: 398
Location: Chicago, IL
Sportbike: '03 Ninja ZX-6R
Years Riding: Not Long...
How you found us: google
      
Welcome to another day in IT security...

It's not the fall that hurts... it's the sudden stop at the end...
midnitrcr is offline  
post #9 of 11 (permalink) Old 03-09-2006, 09:37 PM
Irony helps us play!
 
Arch's Avatar
 
Join Date: Jan 2006
Location: N'ville
Posts: 29,508
Location: N'ville
Sportbike: 2000 F4
Years Riding: Long enough to know better
How you found us: some hot MILF whispered it in my ear
           
A company's worst threat always comes from within.

Everyone Exaggerates

We're being taken for a ride... agaaaaaaain.....


Best Auto/Moto Insurance | Motorcycle Protection Today | FREE Trade-In Quote
Arch is offline  
post #10 of 11 (permalink) Old 03-10-2006, 08:19 AM
King Nothing


 
Kegger's Avatar
 
Join Date: Nov 2004
Location: Ur Moms House
Posts: 17,944
Location: Ur Moms House
Sportbike: I ride Ur Mom
Years Riding: As long as Ive known Ur Mom
How you found us: u found me
           
Damn! I have to cancel all my credit cards!

"When in doubt, use full throttle. It may not improve your situation, but it will end the suspense."
Kegger is offline  
post #11 of 11 (permalink) Old 03-10-2006, 08:51 AM
Curb your dogma.
 
Phily-D's Avatar
 
Join Date: Nov 2004
Location: Plainfield
Posts: 2,410
Location: Plainfield
Sportbike: another Honda:)
Years Riding: little while now....
How you found us: BusaDave
           
Quote:
Originally Posted by Morrand
Well, it would be, but it looks like it was a bit more than that. Verified e-mail addresses go for good money to spam operations, so it's probably not just a matter of revenge as much as it's just the money involved.
Ya, I think you are right.....either way, major a-hole.

"Cr-Cr-Cr-Crambone!!"
Phily-D is offline  
Reply

Quick Reply
Message:
Options

Register Now



In order to be able to post messages on the Chicagoland Sportbikes forums, you must first register.
Please enter your desired user name, your email address and other required details in the form below.

User Name:
Password
Please enter a password for your user account. Note that passwords are case-sensitive.

Password:


Confirm Password:
Email Address
Please enter a valid email address for yourself.

Email Address:
OR

Log-in










Thread Tools
Show Printable Version Show Printable Version
Email this Page Email this Page
Display Modes
Linear Mode Linear Mode



Posting Rules  
You may post new threads
You may post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is On
Trackbacks are On
Pingbacks are On
Refbacks are On

 
For the best viewing experience please update your browser to Google Chrome