Build Date: Tue Jan 21 08:30:18 2025 UTC
For those of you who don't think you are bad, all I can say is: you're bad.
-- Ratsnatcher
Egghead emails internet hoax
2001-01-08 20:57:12
egghead.com frightens millions of users with credit card fraud hoax.
Dec 23, 2000 - egghead.com emails customers about hacker intrusion
...
...
(two weeks pass)
Jan 8, 2001 - egghead.com reports no credit
card data stolen
For two weeks customers of this popular electronic retailer worried that their credit card numbers had been stolen. Rumours spread quickly to message boards where scores of newbies claimed they had been charged $10 by a telecom company in Moscow, Russia as a result of the egghead hack. Cnet, ZDnet, thestreet, and all the other lame shit corporate news sites speculated that egghead had lost its entire 3.7 million (or 3.5 million, or 2.7 million, depending on the article & publisher) credit card number + address + shipping address database.
An anti-egghead site, eggheadsucks.com, posted speculations that the 40-bit ssl encryption egghead.com uses for authentication was too weak. Let us examine this fully. If the system was accessed by knowing a 40-bit key, then that would be equivalent to a "password" of about 6 random characters. This is only about a trillion possibilities. The cost of decrypting such long codes would have cost upwards of a million dollars as recently as 1995, but I am confident that this has fallen to around $25,000 or the equivalent of a few hacked boxes.
Anyone who has experimented with RC5 cracking knows that it is always possible to get people to volunteer their CPU cycles to crack cipher keys. DES, a 56-bit code, was easily cracked. DES is 65536 times as strong as 40-bit. The only browsers that still max out at 40-bit encryption are old fucked up windows 3.1 versions of Netscape and IE. An argument could be made that this was exactly who egghead.com was catering to. With computer hardware being among the top commodities purchased over the internet, it is entirely reasonable to assume that some percentage of egghead.com customers were using some oldschool, barely ssl-capable version of Netscape or IE, which they were running on a $50 486 they purchased directly from egghead.com.
To make matters worse, the only reason cipher code is limited to 40-bit is because of bunk ass laws in the U.S. about the export of secure cryptography. The U.S. government even took Phil Zimmerman to court over the RSA encryption. The excuse the U.S. makes is what if the Cali Cartel, Iraq, and Bin Laden had 4K RSA encryption, there might be Heroin or Cocaine selling in the U.S. and nuclear bombs being traded using encrypted usenet messages. Well, fuck that, anyone who has ever done cocaine or crack knows that it is not all that bad. Just as anyone who has ever used encryption probably has scores of disks that they can't even decrypt because they lost the disk with the GPG key on it.
To top it all off, EGGS stock is at an all-time low, selling for well under a dollar a share. Nobody knows who to blame, eggs for sucking, hackers for being too sneaky, or customers for being so stupid as to trust a company with their credit card information. The real culprit is the grand puppeteer of all evil, the USA.
T O P S T O R I E S
The Future Ain't What It Used To Be
Ideas have taken horrifying shape and rooted into our modern reality. (More...)
The Once & Future King of Dust
Only The Onion could have acquired Infowarts. (More...)
Another Nobel Prize-Winning Author Describes Drunkenness
This book won a Pulitzer Prize. Here's its famous paragraph on getting drunk... (More...)
Why I'm pretty sure JD Vance had sex with a couch
True or false? The answers await us in that magical land where all truths are revealed -- the internet. (More...)
In 2010 Dr. Cheng-Huai Ruan discovered a way to cause a patient with an abnormal heartbeat to get back into a normal rhythm by sticking a finger up the patient's ass. (More...)
WKRP in Cincinnati aired from 1978 through 1982. Howard Hesseman played Dr. Johnny Fever, a DJ from Los Angeles who was fired from his previous job for saying the word "booger" on the air. In the show Hesseman would do some dialogue, introduce a song, and start the song. You'd hear a few notes, but never the whole song. (More...)
C L A S S I C P I G D O G
There are two kinds of Assmen in this world. Wild, hairy assmen, who put stickers that say things like "Why Be Normal?" all over their trucks and drink Corona beer and wear fezzes at parties for attention; these are the Assman Desperados. Our job is to ferret them out and expose them. (More...)
We here in SMRL's Beverage Research Lab realize that there is more to life than just drinking spocktails. It's important to have other activities. One such activity that we wholeheartedly support is dancing six or more hours to Trance music. So we have designed a drink to accommodate this. (More...)
During a magnificent sunny day in a fast receding autumn, the Spock Science Monitor reporters once again blew the playa dust off of their computers and covered the 2002 Burning Man Decompression – held every year just east of Portola Hill in beautiful San Francisco. Both an afternoon and evening issues were released to the unsuspecting crowd of freaks attempting to in some small way experience the euphoria of the playa – if but for a brief afternoon far from the desolation of Northern Nevada. (More...)
First there was the Bloody Mary: Vodka, Tomato Juice, Worcestershire sauce, some spices, and celery. We drank it, and it was good. Then any drink with tomato juice got a prefix of "bloody" attached to it. We drank them, and they were mostly bad. Now Pigdog gets back to basics and introduces The Bloody Dog, a drink with REAL BLOOD in it. HUMAN BLOOD. (More...)
A Day in the Life of a Beverotologist
It was starting to look like a very boring Saturday, trapped as I was in the suburban wastelands of the outer Bay Area, so I called my Able Assistant (AA) and proposed that we perform some Spocktail field tests. For some time I've been working on creating the quintessential cinematic beverage and even tho' SMRL does most of its testing during nocturnal hours, this seemed an opportune time to roll up the sleeves of our labcoats and get some science done. While the beverotology creation tested this day (The Neurotoxin) must be deemed a success, this article focuses more the journey of the experimenters, rather then the science of beverotology. (More...)
Last week I had eye surgery and it was certainly one of the least enjoyable episodes of my life. Eye Surgeons like their patients to be conscious enough so that they can move their eyes to the proper position during surgery. (More...)
