|This article must adhere to the biographies of living persons (BLP) policy, even if it is not a biography, because it contains material about living persons. Contentious material about living persons that is unsourced or poorly sourced must be removed immediately from the article and its talk page, especially if potentially libellous. If such material is repeatedly inserted, or if you have other concerns, please report the issue to this noticeboard.If you are a subject of this article, or acting on behalf of one, and you need help, please see this help page.|
|Russia: Economy / Politics and law / Mass media|
I of Internal Affairs of Russia it was possible to find out, that the unknown hacker left in a network a premise(room) of computer firm " Saturn of SPb " then operative methods established his(its) person. However to arrest Levin in territory of Russia it was impossible, as in UK the Russian Federation on that moment still were absent clauses(articles) about computer crimes, and from the point of view of working then legislations it(he) was completely innocent. In result as affirms, the thin psychological game which have been carried out(spent) by detectives of two both on Russian, and under the American legislation have already expired, the author shares memoirs on that breaking "Citibank", one of which basic participants, it(he), as he said, was.
As he said, to group of the Russian hackers engaging in research of networks of report X.25 (technology, and today actively used in a banking, telegraphy and in a number of other applications, and in 1994 where more widespread, than the IP-technology on the basis of which the Internet works), was possible to get access to electronic bulletin board "Citibank". Using her(it) as jumping-off place, participants of group managed to receive access rights to some servers in an internal network. The further was, first of all, direct consequence(investigation) of disorder of employees of bank. So, got access to corporate email, hackers have managed to intercept letters to which in the obvious form passwords and were sent the instruction on access to various systems. When this information lacked, passwords to servers were selected by means of the elementary program perebora, the blessing were for this purpose simple enough to be present at the typical dictionary. In spite of the fact that the network of bank was equipped with system of detection of intrusions, system managers appeared so self-confident and inattentive, that hackers could walk about on their possession practically not masking - reports of system simply nobody read.
This hacker's group professed ideology white hats (" white hats "). At the hacker's environment there is a division on "black" and " white hats ", slightly reminding division of wizards met in fairy tales on kind and malicious. " Black hats " consider possible(probable) to take advantage for themselves of the knowledge and found out in another's systems ujazvimostjami for fulfilment destruktivnykh actions, plunder of another's money etc. For " white hats " it is ehticheski unacceptable - their basic purpose is studying complex(difficult) systems, revealing of unevident features of their work, reception and distribution of the information. Probably, farly from being all from participants of group were so sincere idealists, - followed events confirm it, - and absence of attempts to take advantage of access to accounts of clients of bank speaks elementary care and presence of a head shoulders. Nevertheless, server "Citibank" were used by participants of group as research range and even a playground - as recollects ArkanoiD, his(its) loved(liked) entertainment at that time was game in " Star Trek ", far off started on one of bank servers.
Completely it is no wonder, that in conditions of the uttermost disorder of system managers Russian hackers shortly actually began to manage in a bank network, having studied her(it) it is much better than its(her) own owners. They had poehtazhnymi plans of accommodation of the equipment, had an opportunity of access to accounts of clients and even solved the fine technical problems arising at bank workers. This orgy proceeded some months during which electronic systems of one world from the largest banks were under practically full control of group of the Russian hackers, and anybody at all did not notice it, while once one of participants of group has not sold the recipe of an input(entrance) in a bank network to Vladimir Levinu for 100 dollars cash - in what, actually, has on the spot repented, but was already late. Levin just only reflected and planned, as it is possible to take advantage with benefit the received information, and participants of group have covered up traces and have left(abandoned) network "Citibank" never more there to not come back.
Who is Mr. ArkanoiD? The first natural questions arising at acquaintance with this history, brushing away on the script of the Hollywood film: as far as the given information is authentic who such this mysterious ArkanoiD, whether it(Militsky declares, that he(it) does not have absolutely any bases to doubt of reliability of data informed in clause(article). To open the person of the author it(he) as affirms, could not at all desire - their dialogue occurs through the Internet, and to Mr. Militskomu are unknown neither the present name, nor ArkanoiD'a address. However, and those data which as Solar Designer, concerns to number of the most qualified hackers in territory of the former USSR. Attempts to inquire in andergraundnojj to environment(Wednesday) have confused business, faster, have rather than cleared, - for example, on some hearings, ArkanoiD de jure does not exist at all in a nature as at him(it) is not present and never there were passports. Under some information, it(him) call Aleks Smirnov, however there is no completely any confidence, that his(its) this present name. In " Alive magazine " there is a user living in St. Petersburg with a similar pseudonym, but in day of the publication of clause(article) it(he) has promulgated the message in which has declared the uttermost non-participation in all this history.
Nevertheless, the author of clause(article), undoubtedly, is the real person and, most likely, has really played rather essential role in breaking of network "Citibank" in 1994.
New persons Literally in some hours after ArkanoiD has published clause(article) on the server of " the Independent review of providers ", one of conducting Russian experts on information and network safety Dmitry Leonov has placed on the site " Russian BugTraq " the chapter of the book " Attack from Internet ", written by him(it) in the co-authorship with Ilya Medvedkovskim, Pavlom Sem`janovym and Alexey Lukatskim. There also there is a speech about business Levin and breaking "Citibank" - memoirs of one of participants of events are quoted with preservation of author's spelling and a punctuation:
":Prodolzhenie histories was approximately in 94 year. Then to me has on a visit gone my familiar, we shall name it(him) Bukazoid, and has very foggy told, that it(he) has dug in Sprint a heap of interesting hosts. I have recollected about the digging in bowels of Sprint and have quickly drawn into a conversation it(him):). Bukazod as appeared, has very much grown fond of one BBS which what for have established in Citibanke, has found there I booze the holes, allowing to establish any limits to users, and sat there regularly, using her(it) for dialogue with friends from different cities (the blessing paid for all Citibank).
For convenience of hackers servers had help command, and as the commands showing a configuration, the list of known IP-addresses on ARP, the list of known services (hosts in LAT and local services), and with comments. I am very fast navajal a script which downloaded the list of services, then konnektilsja with all and wrote down that they responded. THUS it was found a heap of servers - gateways in other networks, outdial'y - access to modems with an opportunity to call worldwide, the services, allowing to establish connections on X.25 from name Citibank (only bank on the interface to it(him). And from a grid of that bank was open routing in the Internet. Zajjdja telnetom on this router, it was possible from him(it) further telnetom to go anywhere. And back - it was possible to go from the Internet on this router, and from him(it) - in internal network Citibank and is farther, for example, on X.25.
Bukazoid too did not doze. To program to it(him) there was a laziness, therefore it(he) dug not in breadth, and deep into. One of terminal servers had zanjatnuju dyrku - it(he) did not trace disconnect of the clients who have got on him(it) on X.25. Any client who has come on him(it) on X.25, appeared connected to the that computer with which the comrade who has earlier appeared on the same port worked if it(he) has overlooked to be chopped off from him(it). For convenience, access servers had show users command showing all clients on all ports, and addresses or names of computers to which they were connected. You come on the server, you collect(type) show users, otkljuchaesh`sja from him(it) and it begin to be connected to those ports on which someone hangs. If the port is already free, finds yourself in the necessary place. Bukazoid so has quickly got on couple VAXov instead of them adminov, has got(started) to itself there I booze loginov and has engaged in studying VMS and activity adminov Citibank. Collected there any files, read correspondence etc. For example, adminy liked to send each other the big lists with administratorskimi passwords of machines:)))
Naturally, on VAXakh the remarkable control of safety which result were huge reports on all suspicious activity was... Bukazoid has found one such - in it(him) there were all traces of his(its) work. It is sure, that that report was unpacked, bound (printed out, bound) and put on a shelf:)). From their correspondence it was found out, that about problems with this access server all know... But it especially did not excite anybody - it(him) planned to replace in one half-year - year. The matter is that was considered, that hackers may not climb through Sprint - in the American Sprint observation of hackers was well put and there nobody was put. But the world became much closer. Except for us in Citibanke dug a hacker from Bulgaria and other places.
Naturally, more than once I and Bukazoid appeared connected through this gljuchnyjj the server and to the computers responsible for financial operations. As instead of adminov, and users who worked with a certain system "client - bank" through the terminal. Simply it was possible to enter number of the account and to transfer(translate) from the account of the client money. But presence of brains has helped to avoid a criminal case - it was understandable that to steal money and to remain thus unnoticed will fail, and if it will turn out, will fail to survive after that:) Therefore with money we bypassed computers the party(side) - not it was necessary.
A bit later use Citibank became usual routine - simply convenient exhausted hole for an output(exit) in different places. Approximately in half-year has thundered a thunder - Levin has plundered bank. In couple of days to me has come running our general(common) familiar with Bukazoidom, and with horror in a voice has told, that it it(he) has told Levinu about secret, having received for it of 100 $. By a lucky chance, I with Levinym was unfamiliar, therefore me have carried by and on interrogations did not drag. But the lesson was good - it was possible to ring out for another's sins easily. Though we UK did not break - at that time there were no clauses(articles) about the non-authorized access in UK, and we did not steal money:) "
About the author of this fragment we managed to find out, that it(him) call Anatoly, it(he) also lived earlier in St. Petersburg and is the known expert in the field of telecommunications.
Obviously, under pseudonym "Bukazoid" in this fragment anybody is mentioned other, as ArkanoiD, published clause(article) on " the Independent review of providers ". The fragment was obviously written long before the moment of its(her) publication, and may be considered as independent acknowledgement(confirmation) of truthfulness of the history stated there.
Bearded sensation Steadfast studying of a question results us in rather curious conclusion - all this sensational history, it appears, very long time ago is a secret polishinelja. Both itself ArkanoiD, and his(its) environment already some times was done(made) with attempts " to tell the truth about business Levin " and repeatedly contacted to journalists of various editions, beginning(starting) since 1997. However fond up to fried sharks submitted a feather a history under such sauce, that anybody from serious people in its(her) reliability simply did not trust, and at to mountain - n`jusmejjkerov was developed proof idiosinkrazija on dialogue with representatives of the second most ancient. As writes itself ArkanoiD:
" To a question on that, for what I do not love journalists. I already did(made) some attempts anyhow to tell this history - and each time she(it) was monstrously perevrana. In particular, it is especial me irritates that fact, that journalists in final edition - which " for technical reasons " " overlooked " to show each (!) time when it was possible to me to give interview, to me, decided " to simplify " my story and to present business so, that it I and was that person who has sold Levinu materials of research group. The god would like to tell " to them the judge ", but, being is far from christian religion, I shall tell - spit in I shall give birth this rubbish. Similar accusation puts under doubt not only my professionalism, and even presence of elementary common sense. Certainly, I well understood the price of this information, and on any similar bargain and speech might not be. Yes, I was mistaken also my mistake of me to much have learned - but the idiot I was never. " The similar attitude(relation) is simple for understanding if to familiarize, for example, with clause(article) Kurta Brandenburgera " Russian m@fija " in Swiss magazine Facts:
":How the person whom long time is in the lead in the list of the best hackers looks? A brown leather coat, dark glasses, black hair up to shoulders, any mix from hippie, Rasputina and the villain from computer films. And this person with the computer holds in fear Russian banks, a body of radio station and owners of credit cards?
Arkenojj has penetrated into hospital maps of city hospitals, cracked codes of credit cards and manipulated accounts new Russian. As asserts(approves) itself Arkenojj, it(he) did(made) it for the pleasure, instead of with the purpose of enrichment: "
After occurrence in a seal of similar samples of journalistic art it is no wonder, that participants of those events have for a long time interrupted any contacts to press, and today prefer to tell about them independently, having fenced off from journalists intermediaries. If tone of then publications was less frivolous, quite probably, the history might develop and differently - you see for a moment when they have come out of press, limitation periods under the American legislation yet have not expired, and participants of breaking "Citibank" might be done responsible alongside with Levinym and it(him) podel`nikami.
Nevertheless, and it has sufficed, that in okolokomp`juternojj to environment(Wednesday) the history about breaking "Citibank" was perceived as well-known and almost classical, and well-known 100 dollars which Levin has paid for his(its) secrets, became the talk of the town. The mentioned publications open a number(line) of technical details and give performance about scale of authority which Russian hackers within several months had above a network of one world from the largest banks, - however anything essentially new, as a matter of fact, do not inform.
Scales of threat As now it became finally understandable, Vladimir Levin had no accomplices inside bank, and the opportunity of so grandiose operation appeared real, first of all, because of razdolbajjstva bank employees and their neglect elementary norms of safety. Nevertheless, capture of the control above network "Citibank" has demanded long and laborious work of group of the highly skilled hackers pursuing, however, not mercenary, but the research purposes.
Whether probably recurrence of a similar history on the part of the organized criminal grouping having more mercenary aspirations, rather than in a described case? Authors " Attacks from Internet " concern to such prospect rather skeptically: " ... The problem network krakerov in that kind as she(it) is usually presented MASS-MEDIA, actually is absent. Yes, many forces should be given protection of computer systems against "pseudo-hackers" which count itself professionals, being able to start various "njuki" (nuke) or to select passwords such as "guest". They are capable to put it the certain loss. Exist, certainly, and more qualified groups krakerov, engaged, for example, breaking of WWW-servers for "uvekovechivanija" an own name. But in us causes the big doubt existence of professionals, and furthermore adjusted industry which supposes breaking any more - less protected host "to order". By own experience we may assume, that the price of such breaking should be in some times more, than value of the information taking place there, therefore in a course there are old checked up methods such as recruitment or a payoff.
Summarizing, we count, that network krakerov, specializing on opening of hosts for money or with the purpose of use of the received information for own enrichment, practically does not exist. Their == Broken TLC link ==
Information on ArkanoiD
Who is ArkanoiD, Alex A. Smirnoff? Here's some links:
Found a link to the author's (ArkanoiD) info which also includes his x.25 bbs. You'll need to do some manual decoding though because he's not specifying a doctype (http://www.kanga.ro/fido/sysinfo/oth/ff.htm). He also might be reachable at ArkanoiD <email@example.com>. He also maintained a livejournal.
Miscellaneous pics maybe worth doing a reverse image search on: ftp://firstname.lastname@example.org/pub/fido/foto/5030/ff-kk.jpg http://web.archive.org/web/20130517134249/http://milliways.chance.ru/~ark/photo/my/ark+birdsva.jpg