[VoiceOps] [VOIPSEC] Tackling VoIP fraud, new idea

J. Oquendo sil at infiltrated.net
Fri Feb 21 15:04:14 EST 2014


On Fri, 21 Feb 2014, Sergey Kolesnichenko wrote:

> Why dont't you want to speak about tactics here openly?
> 

Common sense. This is a public list, and there is no way
for me to determine the intentions of anyone who is a
subscriber to the list. It is a KNOWN fact, that criminals
subscribe to security mailing lists such as Bugtraq,
Full Disclosure and others. Not for the sake of lending a
helping hand, but for other means. Much similar to malware
authors who run their malware through VirusTotal to see
if anything is going to detect it.

On a private list, there is the accountability factor to
equate. Someone subscribed using a corporate email address.
Therefore SOME form of vetting took place.


-- 
=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+
J. Oquendo
SGFA, SGFE, C|EH, CNDA, CHFI, OSCP, CPT, RWSP, GREM

"Where ignorance is our master, there is no possibility of
real peace" - Dalai Lama

42B0 5A53 6505 6638 44BB  3943 2BF7 D83F 210A 95AF
http://pgp.mit.edu:11371/pks/lookup?op=get&search=0x2BF7D83F210A95AF


More information about the VoiceOps mailing list