News
Blogs
Shark Bait
Knowledge Centers
Opinion
Webcasts
Video
Podcasts
IT Careers
White Papers
Computerworld Reports
Zones
Case Study Library
RSS Feeds
Events
Industry
This Week in Print
Print Subscriptions


Ads by TechWords

See your link here


Martin McKeay's picture
Martin McKeay

Security Matters

More posts | Read bio

July 18, 2007 - 11:18 A.M.

Infosec Sell Out outed, disappears

6 comments

When the Information Security Sell Out site appeared in February, I wasn't particularly happy about it, since one of the first posts on the site was a rant against the Security Bloggers Meetup I helped organize at RSA in February.  If it had just been a rant by someone who had been willing to identify themselves, I wouldn't have been too put out, but the author was making claims of having been there.  I don't mind being criticized for something I've done, as long as you're willing to identify yourself and take a dose of your own medicine.  I find hiding behind a mask of anonymity dishonest, especially if you're just using it to make malicious attacks.

The identity of the Sell Out remained a point of curiosity for me, but it really bugged some of the other people he used the site to attack.  And, no surprise to anyone, when you attack a group of security professionals, someone is going to find out who you really are.  Last night an anonymous source (how apropos) revealed to Cutaway the identity of the Sell Out.  The Sell Out is primarily the hacker LMH, responsible for the Month of Apple bugs, but he's apparently backed by the Phrack High Council. And, perhaps coincidentally, all of the content on the site was taken down just a few minutes after Cutaway posted this information to his blog.  This may have had something to do with the claim of having developed an Apple worm, or it may just be that the Sell Out was afraid to continue with his identity publicly revealed.

Whatever the reason, the Information Security Sell Out site is no more.  More accurately, it's now the "Security Information" site.  All of the posts that had been written since it's inception in February have gone missing.  Of course, they're probably still available through the Wayback Machine or Google caching, so taking down the posts seems a bit pointless to me.  Maybe one of the first posts they'll make is an explanation of why the site was scrubbed. 

Anonymity on the Internet is an illusion.  You can remain anonymous, but only as long as you haven't attacked someone who's got the time, energy and capability to track you down.  You might get away with one or two posts to a forum, but trying to keep up a blog attacking security researchers and professionals is bound to get you outed sooner or later.  Which is exactly what LMH found out.

What People Are Saying

Add new comment

Your blog is always

Submitted by Attin on August 6, 2007 - 2:54 A.M.

Your blog is always fascinating to read.

Reply | Report this comment

Thank you very much for

Submitted by Janet on August 6, 2007 - 1:59 A.M.

Thank you very much for sharing your thoughts.

Reply | Report this comment

And you think that this post

Submitted by Martin McKeay on July 19, 2007 - 9:36 A.M.

And you think that this post is really from David Maynor? Or LMH? This post is just as fake as almost everything claimed by the Sell Out himself.

http://erratasec.blogspot.com/2007/07/i-am-not-lmh.html

Martin McKeay
martin_cw@mckeay.net
http://www.mckeay.net/
Voicemail: 916.231.9479

Reply | Report this comment

It would seem that 'jf'

Submitted by Anonymous on July 19, 2007 - 2:31 A.M.

It would seem that 'jf' doesn't know his head from his ass!!

http://www.whitestar.linuxbox.org/pipermail/fuzzing/2007-July/000399.html

It all starts to make sense now, this is just more publicity for the guy who faked his apple exploit!

Reply | Report this comment

"Anonymity on the Internet

Submitted by amanfromMars on July 19, 2007 - 2:25 A.M.

"Anonymity on the Internet is an illusion."...
with the exact opposite being the case, for your use of the Internet reveals exactly who you are to those with the time, energy and capability to analyse your keystrokes/mouse habits/interests.

Very Minority Report stuff and no nonsense. Be careful out there, IT is a Jungle. :-)

Reply | Report this comment

eyeroll, let me guess, the

Submitted by jf on July 19, 2007 - 12:19 A.M.

eyeroll, let me guess, the identity was revealed by david maynor/icer, someone whose had beef with LMH for some time due to LMH calling him out as a liar (which no one has seemed to notice except a few handfuls of people).

seriously, an anonymous source != credible proof, and reporting it as an outing is exactly the type of crap that makes IT reporters crap.

Reply | Report this comment

Related Posts

Latest threat vector: Our mobile devices
iPhone 3Gs jailbreak jeopardy: Apple pwns Dev-Team's 24kpwn
Apple shovelware problems again (iPhone Configuration Utility 2.1)
The weirdest iPhone dating app, or the most useful?

Today's Top Stories

IE9 to tap hardware to boost performance
Free Web apps to help organize your holidays
Report: Microsoft may pay News Corp. to delist from Google
KT to sell iPhone in South Korea
New attack fells Internet Explorer
Google's Chrome OS hits BitTorrent
About Us Advertise Contacts Editorial Calendar Help Desk Jobs at IDG Privacy Policy Reprints Site Map
CIO Computerworld CSO DEMO GamePro Games.net IDC IDG IDG Connect IDG Knowledge Hub IDG TechNetwork IDG Ventures
IDG.net InfoWorld ITwhitepapers ITworld JavaWorld LinuxWorld Macworld Network World PC World The Industry Standard
Copyright © 1994 - 2009 Computerworld Inc. All rights reserved. Reproduction in whole or in part in any form or medium without express written permission of
Computerworld Inc. is prohibited. Computerworld and Computerworld.com and the respective logos are trademarks of International Data Group Inc.