I received an email of someone admitting being responsible for the things I’ve discussed in my past post. I’d have to admit, the story is a little far-fetched, but as long as I can’t get to talk to the person in person, then we’ll never know now will we?
In the spirit of DECENCY, I will still keep quiet about the evidence we’ve found/gathered, hence nobody has to worry about anything (that means you to, mr/ms. hacker) as far as exposing people. Fair enough?
I need to discuss this however, because quite frankly, I think you take me for an idiot. You actually expect me to believe that story you gave? I’m 25 years old, not 5. I’ll believe it when I see the proof, everything you mentioned fits perfectly as far as any “contrived” story which attempts to come up with one central theme to tie up all the other “loose ends” conveniently. So I reiterate, it’s convenient, but far from believable. You probably had a better chance with a much, much simpler story.
But for the record… I would like to say that regardless if I believe your story or not, I appreciate the fact that you admitted your fault – and I, at the very least, want to believe that you truly will not try disrupting people’s lives again. With respect to that, I’m officially calling it quits. Don’t bother us again… ever – unless you’re prepared for an all out public investigation, and all the consequences it will have on the people you know.
And yes, I forgive you 🙂 I also politely ask you to get on with your life and stay out of mine/ours. You’re still free to post in the other site, as long as it’s constructive. Only a trusted few know which accounts are in question, so you can pretty much continue posting as a regular boardmember.
You could stop reading my post now… but if you’re curious as to why I don’t believe the story, then read on…
The “Story”
You were hired in this tech company and your task was specifically to “hack” websites… and you were conveniently assigned my site, the site I manage, and some other “blogs” (which are irrelevant at this point). They even “threatened” you to do so.
Apart from the fact that no decent legal corporation that holds office would do such a thing, for a company to actually sanction such operations, I’d reckon it would be more worthwhile to try compromising “corporate” enterprises… why not try Globe, BPI, etc. etc. They’d be better targets. This becomes more apparent because the other site is a religious site. Unless your “company” was satanic and out for the destruction of Christianity, there is no reason whatsoever to assign you to it.
Secondly, ASP, PHP, etc. etc. everything you’ve mentioned in your letter are languages. They may or may not be scripting languages, but still are languages nonetheless. It would be best to take care how you define your stuff… but I’m sure you already knew that – being the Chief Technology Officer you claim to be.
Thirdly, I really had to think hard about considering your doing as “hacking” or not. The term hacking, connected to hackers, roughly means the activity engaged by computer experts: system manipulation… though its etymology and meaning is forever under debate. Popular opinion considers hacking the act of manipulating legitimately, as opposed to cracking, who manipulate data in the source itself (which could be used to breach security, e.g. software cracking). To me, you’re “hacking” exploits are nothing more than acquiring passwords of accounts from a bunch of friends, which is easy enough to do – this is made clear by the fact that other accounts… say MY OWN, or any MODERATOR, etc. haven’t been compromised.
All traces of your “hacking” connect you easily to the same group of accounts, and interestingly enough, those same accounts just happen to be owned by people who know each other outside of the net. Coincidence? I think not. Either you know them, or simply targeted them for fun. If you aren’t friends with them, they’ll be mightily pissed at you for hijacking their accounts. Furthermore, if the second scenario was true (you just wanted to target them), then why go all the trouble of targetting my site (and the other site) through their accounts? Based on your “story,” you were hired to to “hack” my sites… which means you didn’t have to involve them at all. Why not just hack my account? Oh but you can’t can you?
Unless you prove it to me beyond any reasonable doubt, then I’d say your story is pure horseshit. If you want to make me a believer, go to the other site, and post as me (or anybody else other than that group of accounts that are suspect). That should get my attention. I haven’t changed my password for the longest time, so that should make things easier for you. When you’re done doing that, I’ll be more than glad to let you help me plug up security holes.
As I mentioned in my other post, your “antics” weren’t proving anything other than being a nuisance. And in the perspective of a hacker, you were extremely sloppy in covering your tracks (which is pretty much SOP), that’s because you didn’t! You probably didn’t know what the hell you were doing in the first place. Such performance is a disgrace to the hacking community.
Do not ever, EVER underestimate my intelligence… ESPECIALLY when it comes to technology!
It’s insulting really the way you “bothered” me. You can tell that to your “superiors” too. Tell them that I can’t believe there are people that stupid in companies, and that they should resign, so that the corporate/IT world would have less idiots. But then again, even countries like America are run by idiots… voted into power nonetheless – I guess it’s a fact that we have to live with.
What I’m posting here is just the tip of the iceberg of the reasons why I cannot swallow that story of yours. But since I’m a nice person, any other evidence stays with me (and people close to me).
But now that you’ve at least admitted your fault, then everything above doesn’t really matter at this point. The point is that you’re sorry and will never do it again, which is pretty much what I want to hear.
So again, for the “closure” you asked, I reiterate what I said in the beginning:
I would like to say that regardless if I believe your story or not, I appreciate the fact that you admitted your fault – and I, at the very least, want to believe that you truly will not try disrupting people’s lives again. With respect to that, I’m officially calling it quits. Don’t bother us again… ever – unless you’re prepared for an all out public investigation, and all the consequences it will have on the people you know.
And yes, I forgive you 🙂 I also politely ask you to get on with your life and stay out of mine/ours. You’re still free to post in the other site, as long as it’s constructive. Only a trusted few know which accounts are in question, so you can pretty much continue posting as a regular boardmember.
So with that, I bid you farewell… CASE CLOSED!