HardOCP News
[H] News
- Joined
- Dec 31, 1969
- Messages
- 0
![[H]ard|Forum](/styles/hardforum/xenforo/logo_dark.png){kind=logo}
Web Attack Knows Where You Live
- Thread starter HardOCP News
- Start date
DrDeathGNJ
Gawd
- Joined
- Nov 25, 2001
- Messages
- 726
On any given night depending how much I drink "I" need to know where I live forget the hackers!
This is news? I've got a tool on a few of my sites that not only tell me where the person lives, but their ISP, web browser, operating system and email addresses that match up with the IP.
What's next? Google being able to give you panoramic views of your neighborhood? Better yet...: Indoor Plumbing.
What's next? Google being able to give you panoramic views of your neighborhood? Better yet...: Indoor Plumbing.
Track Drew
Limp Gawd
- Joined
- Dec 6, 2007
- Messages
- 511
I assume that by "where the person lives", you mean using IP geo-location to determine what town/city they are in.
This looks like more then just IP geo-location. This is being able to have somebody visit your web page and you determine the street address and GPS coordinates of where they were connected to the internet (assuming it was a wired connection like cable/DSL/fiber).
This allows for much more personalized attacks. Instead of:
"Gas main explodes in (your city here - determined by IP geo-location)!!!, click here to watch video"
you get:
"Serial Rapist/Terrorist/Bin Laden/etc. Arrested on (your street) in (your town), click here for the video ***and to install our codec***"
Thanks Google, you are such a wonderful company...fucking retards. Why is the hacker able to even access this database and why was it gathered in the first place? I don't see why google would need to snoop peoples Mac addresses to make photos for streetview. I know they said it was done by accident but if it was done by accident then why was the database not wiped after it was found out? Accident, my ass. Google are ++++s.
jonathonball
[H]ard|Gawd
- Joined
- Sep 23, 2005
- Messages
- 1,427
and the award for funniest over-dramatization goes to?
Insula Gilliganis
[H]ard|Gawd
- Joined
- Feb 6, 2007
- Messages
- 1,469
Steve is now afraid that some hackers will steal his breakfast!!
sirmonkey1985
[H]ard|DCer of the Month - July 2010
- Joined
- Sep 13, 2008
- Messages
- 22,414
yeah good luck finding my house bastards.. theres only 700 apartments here..
sirmonkey1985
[H]ard|DCer of the Month - July 2010
- Joined
- Sep 13, 2008
- Messages
- 22,414
you do realize google isnt the only company that does this right? they are just the largest company that happened to do it.. theres sites all over the place that show open/public wifi connections in most major cities.. yay lets blame google...
Indeterministic
Weaksauce
- Joined
- Jul 26, 2010
- Messages
- 95
It's been dead for a long time. Though our illusion of privacy is still nice
Phoenix333
2[H]4U
- Joined
- Nov 27, 2009
- Messages
- 3,510
Some people told me that Google getting the MAC addresses of wireless networks would be useless to hackers and other bad folks. I really hate being right about this stuff.
That's what shotguns are for.
That's what shotguns are for.
shadow74205
Gawd
- Joined
- May 30, 2002
- Messages
- 537
If the hackers want to come to my door, then fine. If they try anything stupid, they'll be greeted by a hail of 9mm and 357 Magnum rounds.
NoOther
Supreme [H]ardness
- Joined
- May 14, 2008
- Messages
- 6,468
What are the hackers going to do, come over and laugh at the lack of tech the people have?
![Zarathustra[H]](https://cdn.hardforum.com/data/avatars/m/9/9298.jpg?1715876891){kind=avatar}
Zarathustra[H]
Extremely [H]
- Joined
- Oct 29, 2000
- Messages
- 39,082
Hmm...
So he hacks into the router to remotely get the mac address.
Then he compares the mac address to mac addresses google collected from scanning wirlessrouters during their street view project.
Pretty cool actually.
Is this mac-address database the same database that pre-GPS iPhones use to determine their location based on wifi access points?
So he hacks into the router to remotely get the mac address.
Then he compares the mac address to mac addresses google collected from scanning wirlessrouters during their street view project.
Pretty cool actually.
Is this mac-address database the same database that pre-GPS iPhones use to determine their location based on wifi access points?
NoOther
Supreme [H]ardness
- Joined
- May 14, 2008
- Messages
- 6,468
Why is that the ISPs responsibility? How are you then going to connect to certain applications and services if your IP is being hidden (ie through NAT)? That still won't stop experienced hackers and it doesn't help you any at all.
Zarathustra[H]
Extremely [H]
- Joined
- Oct 29, 2000
- Messages
- 39,082
Yep, this particular exploit has nothing to do with the ISP (other than th efact that you have to be connected to the ISP for someone to access your router)
Sikkyu
I Question Reality
- Joined
- Jan 21, 2010
- Messages
- 2,878
enhance
*tap tap tap tap*
enhance
*tap tap tap tap*
enhance
*tap tap tap tap*
enhance
*tap tap tap tap*
Just print the damn thing!
*tap tap tap tap*
enhance
*tap tap tap tap*
enhance
*tap tap tap tap*
enhance
*tap tap tap tap*
Just print the damn thing!
It wasn't about open public connections, it was about snooping the Mac address of all wifi signals they found when doing google streetview. Still don't know why they needed to snoop people's Mac wifi address's to do that. Can you explain why?
But you go ahead and pretend it is no big deal and let our privacy be eroded more and more. This issue doesn't even affect me, yet, but I still speak out against it because I actually give a fuck.
There are a lot of hackers that work for criminal organizations and thinking they are all harmless nerds is naive.
DeathPrincess
Fully [H]
- Joined
- May 15, 2010
- Messages
- 18,205
But won't the hospital bills show where they live?
Godamned internet toughtguys.
Godamned internet toughtguys.
You won't be making jokes if/when this exploit is actually used to find and stalk/murder someone. And the blood will be on googles hands too. HongKong actually made google wipe the wifi records but google has not wiped all the other records they claim they "accidentally" gathered. Why?
DeathPrincess
Fully [H]
- Joined
- May 15, 2010
- Messages
- 18,205
Because of the "destruction of evidence". They don't want to get in legal trouble for destroying something that would mean worsening their legal position. Though still it does sound slightly weird they "acidentally" gathered it.
RangerXML
Supreme [H]ardness
- Joined
- Apr 16, 2006
- Messages
- 6,405
Yuke, Cheetos! How can you guys eat that stuff and use your keyboards. Give me a bowl of Mac&Cheese with Spam (oh the irony) any day of the week. Spoon over cheese fingers thank you!
Bring water to boil, stir Mac in for about 7 min, strain, flame on low and put noodles back in until waters all evaporated, add a tea spoon (small, small amount) of Greek yogurt, 2 splashes of milk, the cheese powder, stir and cook down the milk a bit until desired consistency. Add fried spam cut to cubes and serve (alittle oil, tiny, tiny amount, cut spam to cubes and fry while noodles boil, let sit while preparing cheese goodness).
And on the side to drink a GUS (Grown Up Soda) Dry Cola, a really good cola nut based drink that is a bit on the bitter and not so sweet side (real sugar and not so much of it). That is power food behind a keyboard!
Bring water to boil, stir Mac in for about 7 min, strain, flame on low and put noodles back in until waters all evaporated, add a tea spoon (small, small amount) of Greek yogurt, 2 splashes of milk, the cheese powder, stir and cook down the milk a bit until desired consistency. Add fried spam cut to cubes and serve (alittle oil, tiny, tiny amount, cut spam to cubes and fry while noodles boil, let sit while preparing cheese goodness).
And on the side to drink a GUS (Grown Up Soda) Dry Cola, a really good cola nut based drink that is a bit on the bitter and not so sweet side (real sugar and not so much of it). That is power food behind a keyboard!
Zarathustra[H]
Extremely [H]
- Joined
- Oct 29, 2000
- Messages
- 39,082
If I am not mistaken they are intentionally public. I believe (but have not been able to confirm yet) this is the same database that smartphones without GPS use to determine their location.
You know, they scan the airwaves, grab a few of the closest wifi mac addresses, compare these with their exact locations in googles database and then triangulate their position based on the signal strengths as an indication of distance to the wifi routers.
An unintended side effect of this must be that peoples external mac addresses of their wifi routers are in a public location based database. If you make this database private, then all of a sudden these smartphones are no longer location aware, which I'm sure would piss a lot of users off.
What does your junk food have to do with web attacks that display the location of users?
RangerXML
Supreme [H]ardness
- Joined
- Apr 16, 2006
- Messages
- 6,405
Zarathustra[H];1036035665 said:What does your junk food have to do with web attacks that display the location of users?
I might as well share some good junk food if I get some visitors and Cheetos are just bad form and if they are going to use one of my computers they better wash their hands.
NoOther
Supreme [H]ardness
- Joined
- May 14, 2008
- Messages
- 6,468
Zarathustra[H];1036019371 said:
Again, how is this the ISPs responsibility? What are people expecting them to do about it?
Zarathustra[H]
Extremely [H]
- Joined
- Oct 29, 2000
- Messages
- 39,082
I didn't say it was. In fact I was making the same point as you. it isn't the ISP's responsibility.