Welcome | Sign In
ECommerceTimes.com
Security

Source Code Club: Hacker Hoax or Cisco Headache?

Print Version
E-Mail Article
Reprints
Source Code Club: Hacker Hoax or Cisco Headache?

By Jennifer LeClaire
E-Commerce Times
11/03/04 3:38 PM PT

Source Code Club's last attempt to cash in on other people's intellectual property targeted Enterasys Network's Dragon intrusion detection system, which SCC offered for $16,000, and Napster's client and server software, which it offered for $10,000.


Run Your Entire Contact Center in the Cloud
Many businesses are increasingly seeking ways to improve the quality, flexibility, and scalability of their traditional call centers. Download this free white paper and learn the top 8 reasons to consider going virtual.

The Source Code Club is back in business, if you can call it that. The anonymous hacker group began peddling proprietary source code last July, disappeared, and now has reemerged with a bargain basement deal Increase Customer Sales with Email Marketing -- Free Trial from VerticalResponse of US$24,000 for the source code for Cisco's (Nasdaq: CSCO) Pix security firewall.

"SCC is proud to announce the general availability of Cisco Pix 6.3.1 source code. This release is significant because Pix is vital to the security of many ultra-secure networks," read a Google (Nasdaq: GOOG) group posting marked as a Source Code Club newsletter.

Source Code Club organizers gave no word as to where or how they got the code. Cisco Pix 6.3.1 source code, however, is an older version of the product. Version 6.3.4 was released in July.

Poor Marketing Strategy

Ken Dunham, the director of malicious code research at iDefense, a Reston, Virginia-based threat-intelligence firm, told the E-Commerce Times that the Source Code Club is probably a hoax.

"Either these guys are just making noise to get attention and have fun behind the scenes or they are legitimately attempting to make money off of illicit goods," Dunham said. "It could be a little of both."

In any case, Dunham said even if the Source Code Club does have Cisco code, the hacker group has a poor marketing strategy. Underground sales channels would be a safer route, he said.

Source Code Club's last attempt at cashing in on other people's intellectual property targeted Enterasys Network's Dragon intrusion detection system, which it offered for $16,000, and Napster's client and server software for $10,000.

While the Source Code Club may be a hoax, Dunham said it is possible that Cisco's source code was leaked or otherwise hacked.

Criminal Hacking

"For the last six to 18 months, we've had a dramatic increase in the criminalization of underground operations," he said. "We've moved away from script kitties for fun types of attacks and into organized criminals and sophisticated criminal attacks on the Internet at large."

The Source Code Club claims to keep buyer and seller identity's secret by conducting business via encrypted e-mail. The hackers are even launching customer loyalty initiatives.

The newsletter offers a "buyer incentive" to people who purchase one full set of source code. The first purchase enrolls customers as private members, which gives them access to additional sources of code.

Cisco did not return calls seeking comment

Print Version E-Mail Article Reprints More by Jennifer LeClaire

Talkback: Be the first to comment on this story.

More by Jennifer LeClaire

The Digital Car: Cool Automotive Accessories, Part 2
January 16, 2007
Not all the latest high-tech automotive electronics are built to entertain. Many give the driver more information and more control. Vehicle tracking devices can tell where the car is at any time, software installed in a smartphone can turn off a vehicle's security system whenever the owner approaches, and diagnostic tools can tell what's wrong with the engine -- and how much it'll be to fix it. 		'World of Warcraft' Wows 8 Million Subscribers
January 12, 2007
"World of Warcraft," the massively multiplayer online role-playing game, has reached the 8 million subscriber mark. Since debuting in North America in Nov. 2004, "World of Warcraft" has become the most popular MMORPG in the world. The franchise is available in seven different languages and is played on at least four continents. 		AT&T Bids Goodbye to Cingular Brand
January 12, 2007
Starting Monday, AT&T will launch a multimedia campaign to transition the Cingular Wireless brand name into its advertising and customer communications. The campaign will integrate popular imagery, phrases and icons from Cingular's traditional advertising, including the "raising the bar" tagline, the "Jack" character and the color orange.
Don't miss a story -- sign up for our FREE e-mail newsletters and view the latest headlines at a glance.
Tech News Flash [ View Sample ]
E-Commerce Minute [ View Sample ]
ECT News Network Weekly Newsletter [ View Sample ]
Shortcuts
> Get Business and Technology News Alerts
> Most Popular | Spotlight Features | Exclusives
> This Week on ECT News Network | Podcasts
> Online Retail Transaction Performance Indices
> Inside E-Commerce Times
E-Commerce Times
TechNewsWorld
CRM Buyer
LinuxInsider
MacNewsWorld
Today's E-Commerce Times Sponsors
Complimentary Webinar
How Much is 'Free' Costing You? DaveRamsey.com’s 567% ROI with Enterprise Analytics
Entrust Extended Validation SSL
Entrust EV SSL certificates -- "go green" for less. Now from only $199 per year.
Avaya Aura™
Save up to 40% on calling costs with Avaya Aura™
Trend Micro Smart Protection Network(TM)
Lower your content security management costs by up to 40%.
ECT News Network Information
Reader Services
Corporate
ECT News Network
Terms of Service | Privacy Policy | How To Advertise
Copyright 1998-2009 ECT News Network, Inc. All Rights Reserved.