1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

what would you do? former employer question...

Discussion in 'BlackHat Lounge' started by LiXXX, Jun 9, 2011.

  1. LiXXX

    LiXXX Newbie

    Joined:
    May 24, 2011
    Messages:
    26
    Likes Received:
    12
    Location:
    at the keyboard
    So let's say that you worked your rear off for a "technology" company for 5 years- did everything you could to move them up from what they were trying to sell as was cutting edge 1994 methods when you got there in 2005. Classic asp with frame sets and beveled drop shadow buttons anyone?

    You were really making great progress despite the owners unwillingness to change ANYTHING. You unwillingly played the office politics game- and got nothing but resistance. And one day you decided you had enough and gave your notice. Nothing malicious- you even gave 30 days and all of the documentation they would need to give to the replacement.

    They then tanked your local career by contacting all of your professional contacts and talking trash, sending emails that questioned your rep and CALLED your ex to let them know your were unemployed and wouldn't be able to take care of the kids anymore.

    Nice.

    You, of course were pissed, but did the best damage control you could. You couldn't salvage all of your rep, you paid a small amount in court fees as the ex tried to get custody, and you stewed in rage for a few months.

    Too much time being pissed made a very depressing life - After a while, you washed your hands and moved on.

    Still being friends with some of the developers there, you hear about a year later that the "technology" company put up a new site. So you check it out- curious to see what they've accomplished.

    Nothing spectacular- just rehashed text from the old site.

    AND a forum using captcha - which had 80+ spam ads/links in it.

    So you laugh. And take a little personal joy in the irony. Not like they got hacked- just made yet another stupid decision. Good thing they are a tech co.

    This morning, you were curious if they snapped to the fact that they were promoting viagra, por_ (animal and people) and other random spam links instead of their products/services- and all the msgs were gone, except 1.

    So you check their reg form thinking they had to have made the smart decision to upgrade to recaptcha and make it a bit harder. Nope- same form.

    So you check some of the older sites you weren't allowed to try and secure when you were there- and look at that- still using the same easy UID/PW combos for all the old stuff. There are a number of email lists of w/ 30K+ in there in some good niches.

    Hmmm.... You spent all this time "getting over it" and now you see there is a bit of a chance to benefit (or maybe even up the score a bit)...

    So.... at this point- what would you do?
     
  2. Cloaks

    Cloaks Regular Member

    Joined:
    Mar 20, 2010
    Messages:
    298
    Likes Received:
    90
    Abuse them to hell. Just stay safe and don't be a retard, don't get caught. Get a good, paid VPN before you do anything on their servers.
     
  3. thevil

    thevil Junior Member

    Joined:
    Aug 17, 2010
    Messages:
    190
    Likes Received:
    189
    rofl, don't get a paid vpn, or anything that can trace back to you, bad, bad advice. You may get by just lifting a list with a paid vpn but...

    If someone were to do something other than that. They should go wardriving, change their MAC, connect wifi. then to a secure vpn (not your billing info)(using a vpn so traffic cannot be sniffed/man in middled), then to a proxy (non logged/botnet). You can also chain several proxies, adding in a nice chinese or iranian ip to that list for good measure.
     
  4. flymethod

    flymethod Regular Member

    Joined:
    Oct 27, 2010
    Messages:
    214
    Likes Received:
    58
    yeah whatever you do don't get caught. it's not worth it.
     
  5. dextor1372

    dextor1372 Regular Member

    Joined:
    Oct 4, 2008
    Messages:
    272
    Likes Received:
    274
    Occupation:
    6PS Co - CEO
    Location:
    Manchester, UK
    Home Page:
    I would get even !!!!!!!

    plain and simple.
     
  6. LiXXX

    LiXXX Newbie

    Joined:
    May 24, 2011
    Messages:
    26
    Likes Received:
    12
    Location:
    at the keyboard
    Weighing the risk to reward is tough- it's sooo tempting to just dick with them for the fun of it- but I think I'll at least take the stuff that might be worth some $ and move on. I'll spend a few karma points- but it might be worth it.
     
  7. blackhatballer

    blackhatballer Junior Member

    Joined:
    Mar 13, 2011
    Messages:
    109
    Likes Received:
    31
    Occupation:
    A Master Online Strategist
    Location:
    The Matrix
    Rofl. I love BHW. Can't get enough of it.