Build Date: Sat Apr 26 03:40:28 2025 UTC
Okay, I'm a humble coding monkey who wants to grow jungles in the Virgo Cluster. So sue me.
-- Arkuat
Egghead emails internet hoax
2001-01-08 20:57:12
egghead.com frightens millions of users with credit card fraud hoax.
Dec 23, 2000 - egghead.com emails customers about hacker intrusion
...
...
(two weeks pass)
Jan 8, 2001 - egghead.com reports no credit
card data stolen
For two weeks customers of this popular electronic retailer worried that their credit card numbers had been stolen. Rumours spread quickly to message boards where scores of newbies claimed they had been charged $10 by a telecom company in Moscow, Russia as a result of the egghead hack. Cnet, ZDnet, thestreet, and all the other lame shit corporate news sites speculated that egghead had lost its entire 3.7 million (or 3.5 million, or 2.7 million, depending on the article & publisher) credit card number + address + shipping address database.
An anti-egghead site, eggheadsucks.com, posted speculations that the 40-bit ssl encryption egghead.com uses for authentication was too weak. Let us examine this fully. If the system was accessed by knowing a 40-bit key, then that would be equivalent to a "password" of about 6 random characters. This is only about a trillion possibilities. The cost of decrypting such long codes would have cost upwards of a million dollars as recently as 1995, but I am confident that this has fallen to around $25,000 or the equivalent of a few hacked boxes.
Anyone who has experimented with RC5 cracking knows that it is always possible to get people to volunteer their CPU cycles to crack cipher keys. DES, a 56-bit code, was easily cracked. DES is 65536 times as strong as 40-bit. The only browsers that still max out at 40-bit encryption are old fucked up windows 3.1 versions of Netscape and IE. An argument could be made that this was exactly who egghead.com was catering to. With computer hardware being among the top commodities purchased over the internet, it is entirely reasonable to assume that some percentage of egghead.com customers were using some oldschool, barely ssl-capable version of Netscape or IE, which they were running on a $50 486 they purchased directly from egghead.com.
To make matters worse, the only reason cipher code is limited to 40-bit is because of bunk ass laws in the U.S. about the export of secure cryptography. The U.S. government even took Phil Zimmerman to court over the RSA encryption. The excuse the U.S. makes is what if the Cali Cartel, Iraq, and Bin Laden had 4K RSA encryption, there might be Heroin or Cocaine selling in the U.S. and nuclear bombs being traded using encrypted usenet messages. Well, fuck that, anyone who has ever done cocaine or crack knows that it is not all that bad. Just as anyone who has ever used encryption probably has scores of disks that they can't even decrypt because they lost the disk with the GPG key on it.
To top it all off, EGGS stock is at an all-time low, selling for well under a dollar a share. Nobody knows who to blame, eggs for sucking, hackers for being too sneaky, or customers for being so stupid as to trust a company with their credit card information. The real culprit is the grand puppeteer of all evil, the USA.
T O P S T O R I E S
California Glory Hole attracts huge crowds
A glory hole at Napa's Lake Berryessa is drawing huge crowds. According to Chris Lee, the general manager for the Solano County Water Agency, the glory hole hasn't been active since 2019, and only restarted operations on Feb 4. (More...)
Republican State Senator busted after soliciting a teenage girl
Republican State Senator Justin Eichorn of Minnesota was arrested for soliciting a teen girl on Monday just hours after he introduced a bill proposing "Trump derangement syndrome" (TDS) as a form of mental illness. (More...)
Parents claim measles is not that bad after having only one child die
The parents of a Texas girl who died from the measles are defending their decision not to vaccinate their daughter. "She says they would still say 'Don't do the shots,'" an unidentified translator for the parents said. "They think it’s not as bad as the media is making it out to be." (More...)
Delusional rich man tries to fire town staff
"I'm mayor now" said write-in mayoral candidate and founder of Pirate’s Booty Snacks Robert Ehrlich after losing the election for Mayor of Sea Cliff, NY. Then he tried to take over the Village Hall and fire everyone. (More...)
Musk claims Xitter security is staffed by idiots
Earlier this month Xitter experienced a massive outage. In an interview, Musk told Fox Business that he believes the attack came from "IP addresses originating in the Ukraine area." (More...)
The Future Ain't What It Used To Be
Ideas have taken horrifying shape and rooted into our modern reality. (More...)
C L A S S I C P I G D O G
Poor Metallica. All they want is to continue to put out the same weak "Heavy Metal" they've been churning out since the "And Justice For All" days? and make gooey wads of cash in the process. The problem is, people aren't buying their bound for the heavy metal scrap heap, over-produced, uninspired, tired crap. And let's face it, their various commercial endorsements won't pay for the lifestyle they've become comfortably accustomed to. Resorting to lawsuits makes perfect sense, when you need spending money. But just one lawsuit isn't going to pay their bills. So, to aid Metallica, I've composed an open letter to the boys in the band, with suggestions as to whom else they might sic their lapdog lawyers on... (More...)
A Nobel Prize-Winning Author Describes Liquor
Curled up cozy with a good book? All warm and snuggly and thinking about friends far away? So am I, reading the greatest story by the greatest writer -- when he suddenly starts waxing philosophical about liquor! (More...)
A Day in the Life of a Beverotologist
It was starting to look like a very boring Saturday, trapped as I was in the suburban wastelands of the outer Bay Area, so I called my Able Assistant (AA) and proposed that we perform some Spocktail field tests. For some time I've been working on creating the quintessential cinematic beverage and even tho' SMRL does most of its testing during nocturnal hours, this seemed an opportune time to roll up the sleeves of our labcoats and get some science done. While the beverotology creation tested this day (The Neurotoxin) must be deemed a success, this article focuses more the journey of the experimenters, rather then the science of beverotology. (More...)
Body and Soul, a night of fucking in San Francisco
For the benefit of Pigdog readers, I took it upon myself to explore the deep frontiers of human behavior and attend a saucy festival of the flesh. This was no ordinary fete of carnal delights, dearie. (More...)
Paranoid Strippers & Psychotic Crack Dealers (Tales of Christmas Eve)
Christmas day, for the last 17 or so years has bored me. I find that the real fun and excitement always takes place on Christmas Eve. Every other year, it's the excitement of the metaphorical hunt instead of the kill. Otherwise, it's just plain bad craziness. (More...)
Three Days and 25 Spocktails: A Cautionary Tale
Johnnie Royale picked me up from the dental surgery. I felt warm, safe, cradled in the anathesia's loving embrace. The pharmacy downstairs gave me a bottle of Vicodin and a few instructions: take it with food, don't mix with alcohol, don't operate heavy machinery. I put it in my pocket and we left. "Do you want to go home, or do you want to go to a bar?" asked Johnnie. (More...)