Please Don't Publish That

 

http://www.strategypage.com/htmw/htiw/articles/20110915.aspx

Please Don't Publish That

September 15, 2011: Many military and commercial intelligence gatherers (spies) are unhappy with the recent publication of the discovery, by two Internet security researchers, that if you set up a server using the slightly misspelled name of a large corporation or government organization, you can collect thousands of misaddressed emails and attached documents. Normally, when you use the wrong (slightly misspelled) email address, you will later get an error message email, telling you that the bad address could not be reached. But with these sites using the various misspellings, your email gets delivered to someone seeking useful information they would otherwise not have access to. The fact that the sender did not receive an error message does not bother most people. The Internet is a mysterious beast, prone to odd behavior. Odd, yes, but always for a good technical reason.

This sort of deception (which, technically, is not illegal in most places) has been going on for years. Lots of people in the Internet security and intelligence communities knew about it, but not much was ever done. Now this angle is getting wide publicity, and senior managers and officials will, at least in some cases, demand solutions. This will reduce the effectiveness of this intelligence gathering technique, but not completely eliminate it. There are many similar techniques, which exploit human error and the way the Internet works. These tricks, government and corporate spies hope, will stay obscure.

 

 

 

--
Thanks for being part of "PoliticalForum" at Google Groups.
For options & help see http://groups.google.com/group/PoliticalForum
 
* Visit our other community at http://www.PoliticalForum.com/
* It's active and moderated. Register and vote in our polls.
* Read the latest breaking news, and more.