From: David Ball (lostinvietnam@hotmail.com)
Date: Wed Jan 11 2006 - 03:30:49 EST
You only have to read up on the Adrian Lamo/NY Times affair in 2004 to
realise how this approach could go badly wrong.
http://www.wired.com/wired/archive/12.04/hacker.html
>-----Original Message-----
>From: Password Crackers, Inc. [mailto:pwcrack@pwcrack.com]
>Sent: Tuesday, January 10, 2006 10:11 AM
>To: pen-test@securityfocus.com
>Subject: Pre-Scanning for Marketing
>
>I am interested if anyone on the list has ever tested or implemented a
>marketing program that involved pre-scanning (wired or wireless) a
>prospect
>and then sending a letter or email describing potential vulnerabilities
>and
>offering assistance in closing these vulnerabilities. I have never done
>this because of the anticipated negative reaction, but I am curious as
>to
>what the outcome was if anyone else has done it. Single instances would
>be
>interesting, but I am more curious if anyone has implemented this in a
>more
>broad-based way and has positive and/or negative response rate
>statistics.
>
>Bob Weiss
>Password Crackers, Inc.
>
>
>------------------------------------------------------------------------
>------
>Audit your website security with Acunetix Web Vulnerability Scanner:
>
>Hackers are concentrating their efforts on attacking applications on
>your
>website. Up to 75% of cyber attacks are launched on shopping carts,
>forms,
>login pages, dynamic content etc. Firewalls, SSL and locked-down servers
>are
>futile against web application hacking. Check your website for
>vulnerabilities
>to SQL injection, Cross site scripting and other web attacks before
>hackers do!
>Download Trial at:
>
>http://www.securityfocus.com/sponsor/pen-test_050831
>------------------------------------------------------------------------
>-------
>
>
>
>
>
>**DISCLAIMER
>This e-mail message and any files transmitted with it are intended for the
>use of the individual or entity to which they are addressed and may
>contain information that is privileged, proprietary and confidential. If
>you are not the intended recipient, you may not use, copy or disclose to
>anyone the message or any information contained in the message. If you
>have received this communication in error, please notify the sender and
>delete this e-mail message. The contents do not represent the opinion of
>D&E except to the extent that it relates to their official business.
>
>
>------------------------------------------------------------------------------
>Audit your website security with Acunetix Web Vulnerability Scanner:
>
>Hackers are concentrating their efforts on attacking applications on your
>website. Up to 75% of cyber attacks are launched on shopping carts, forms,
>
>login pages, dynamic content etc. Firewalls, SSL and locked-down servers
>are
>futile against web application hacking. Check your website for
>vulnerabilities
>to SQL injection, Cross site scripting and other web attacks before
>hackers do!
>Download Trial at:
>
>http://www.securityfocus.com/sponsor/pen-test_050831
>-------------------------------------------------------------------------------
>
_________________________________________________________________
FREE English Booklet! Improve your English.
http://www.linguaphonenet.com/BannerTrack.asp?EMSCode=MSN03-08ETFJ-0211E
------------------------------------------------------------------------------
Audit your website security with Acunetix Web Vulnerability Scanner:
Hackers are concentrating their efforts on attacking applications on your
website. Up to 75% of cyber attacks are launched on shopping carts, forms,
login pages, dynamic content etc. Firewalls, SSL and locked-down servers are
futile against web application hacking. Check your website for vulnerabilities
to SQL injection, Cross site scripting and other web attacks before hackers do!
Download Trial at:
http://www.securityfocus.com/sponsor/pen-test_050831
-------------------------------------------------------------------------------
This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:55:21 EDT