Author Topic: Remote logon used to get computer thief  (Read 3258 times)

Offline MIB

  • Senior Racketeering Officer
  • PLA Army
  • *****
  • Posts: 596
  • 1337 13V3L: +32/-12
  • PLA- phreak tested. Phone company approved
Remote logon used to get computer thief
« on: October 04, 2008, 01:34:40 AM »
Quote
WHITE PLAINS, N.Y. (AP) - October 2, 2008 -- A laptop thief got caught - after the computer owner tracked him remotely.

Jose Caceres said he used a remote access program to log on every day and watch his computer being used, and then tipped off police, leading to the arrest of a 34-year-old male suspect.

Caceres, 27, of White Plains, said his computer was stolen in early September when he left it on top of his car while carrying things into his home.

His first efforts to figure out who stole the laptop by logging on remotely were stymied, Caceres said. "It was kind of frustrating because he was mostly using it to watch porn," he said. "I couldn't get any information on him."

But then the suspect typed in a name and address to register on a Web site, and a few hours later, police caught the suspect.

The man was charged with grand larceny, said police Lt. Eric Fischer in Wednesday editions of the Journal News.

Tech-savvy victims are increasingly supplying police with information leading to arrests, authorities said. In May, a White Plains woman whose laptop was stolen also used remote access technology to sign on, then activated the stolen computer's camera and snapped pictures of the man using it.

"This is what happens when you have victims who get involved and use the available technology to their advantage," said Fischer, commander of the White Plains police detective division.

http://abclocal.go.com/wpvi/story?section=news/bizarre&id=6427276

oɔıxǝɯ ʍǝu uı ʎoɹ ɯoɹɟ pɹɐoqʎǝʞ ɐ ʎnq ɹǝʌǝu

Offline ErrorLoading

  • Local Operator
  • *****
  • Posts: 128
  • 1337 13V3L: +15/-4
    • ErrorLoading.Net
Re: Remote logon used to get computer thief
« Reply #1 on: October 04, 2008, 03:14:52 AM »
Why would anyone ever steal a laptop and not format it before ever connecting it to any form of network?  Smarts.
"If I have enough then you may not have one."

Offline trevelyn

  • Administrator
  • Elite Cactus Squad
  • Ninja Phone Loser
  • *****
  • Posts: 1687
  • 1337 13V3L: +183/-22
  • He likes cans and taking pictures in cans!
    • WeakNet Labs
Re: Remote logon used to get computer thief
« Reply #2 on: October 20, 2008, 10:01:14 AM »
laptops for the most part have integrated parts.  and the last time i quoted someone for a bummed mobo it cost 3/4 of the systems price.  Not every thief knows how to spoof a MAC address i'm sure, and the MAC is hardcoded into the NIC right? couldn't ISP's filter for a specific MAC? they have to have the power at least.

Offline Zazen

  • Cactus Zombie
  • *****
  • Posts: 380
  • 1337 13V3L: +34/-14
Re: Remote logon used to get computer thief
« Reply #3 on: October 20, 2008, 03:10:22 PM »
unless they use the magic of.. a router. come on, no way are ISPs going to go on a massive MAChunt for some guys stolen laptop, that's loony

Offline trevelyn

  • Administrator
  • Elite Cactus Squad
  • Ninja Phone Loser
  • *****
  • Posts: 1687
  • 1337 13V3L: +183/-22
  • He likes cans and taking pictures in cans!
    • WeakNet Labs
Re: Remote logon used to get computer thief
« Reply #4 on: October 21, 2008, 10:11:55 AM »
hahaha the packets from the router have no trace of internal MAC addresses? how do they know where the packets go??? i think j00 underestimate the OBSCENE POWER OF A GRAND ISP LIKE ... DUHN DUHHHNN  DUUUUUUUUUUUHHN VERIZON! HAH

Offline trevelyn

  • Administrator
  • Elite Cactus Squad
  • Ninja Phone Loser
  • *****
  • Posts: 1687
  • 1337 13V3L: +183/-22
  • He likes cans and taking pictures in cans!
    • WeakNet Labs
Re: Remote logon used to get computer thief
« Reply #5 on: October 21, 2008, 10:21:37 AM »
aaaactually, if you weren't so easy to give up you could go trolling with catchme-ng running.  unless the thief replaced the wlan card in the system, the MAC will be the same and the 802.11 packets that can be sniffed, whether a network protocol is encrypted or not, by anyone smart enough.  That will give you at least a chance if the thief stayed locally.  think about how windows zero config works; even if it's not connected it always looking for an AP, meaning it's sending packets that can be found by you. ;)

http://weaknetlabs.com/code/catchme-ng/

Offline Zazen

  • Cactus Zombie
  • *****
  • Posts: 380
  • 1337 13V3L: +34/-14
Re: Remote logon used to get computer thief
« Reply #6 on: October 21, 2008, 08:39:18 PM »
hahaha the packets from the router have no trace of internal MAC addresses?

Is there some trick you know to get macs from already-routed traffic? please share!

Offline PHY-6

  • cheech wizard
  • Junior Phone Loser
  • **
  • Posts: 47
  • 1337 13V3L: +4/-24
  • Show me some tricks or you're just a hat.
Re: Remote logon used to get computer thief
« Reply #7 on: October 22, 2008, 12:20:21 AM »
ha @ leaving his lappy on top of his car.
ha @ all the thief did was use it for porn.
ha @ women getting more tech-intellectual than what's probably for the best these days.
Tachyon: Quit bringing up old moldy threads or I'll start deleting all your posts, or replacing them with humorous and cutting remarks about your character.

Offline Nod

  • Quando omni flunkus moritati
  • Elite Cactus Squad
  • Ninja Phone Loser
  • *****
  • Posts: 3725
  • 1337 13V3L: +210/-138
  • 212-389-1318
    • twitter: @mrnudnik
Re: Remote logon used to get computer thief
« Reply #8 on: October 22, 2008, 01:10:06 AM »
ha @ leaving his lappy on top of his car.
ha @ all the thief did was use it for porn.
ha @ women getting more tech-intellectual than what's probably for the best these days.

I HATE the bridge.
Meme Roth is a Food Nazi Cunt

Offline PHY-6

  • cheech wizard
  • Junior Phone Loser
  • **
  • Posts: 47
  • 1337 13V3L: +4/-24
  • Show me some tricks or you're just a hat.
Re: Remote logon used to get computer thief
« Reply #9 on: October 22, 2008, 12:25:11 PM »
Awh. You were a cute baby.
Tachyon: Quit bringing up old moldy threads or I'll start deleting all your posts, or replacing them with humorous and cutting remarks about your character.

Offline trevelyn

  • Administrator
  • Elite Cactus Squad
  • Ninja Phone Loser
  • *****
  • Posts: 1687
  • 1337 13V3L: +183/-22
  • He likes cans and taking pictures in cans!
    • WeakNet Labs
Re: Remote logon used to get computer thief
« Reply #10 on: November 06, 2008, 01:54:32 PM »
hahaha the packets from the router have no trace of internal MAC addresses?

Is there some trick you know to get macs from already-routed traffic? please share!

hey. i forgot about this thread. I'm not sure how to gain mac addresses from routed traffic no, i was saying the possibility wasn't ruled out since i have gotten internal ip's by fucking with the TTL of traceroute packets.  And again:

Quote
i think j00 underestimate the OBSCENE POWER OF A GRAND ISP LIKE ... DUHN DUHHHNN  DUUUUUUUUUUUHHN VERIZON! HAH

: i don't work for VeriZon, so i have no idea. 

there was an offshoot of traceroute that helped me understand it more, i forget what it was called firewalker or firesomething.. firewalking.  iunno, but if you wanna learn more about it i'd look for that program first. :)

Offline Zazen

  • Cactus Zombie
  • *****
  • Posts: 380
  • 1337 13V3L: +34/-14
Re: Remote logon used to get computer thief
« Reply #11 on: November 06, 2008, 08:40:51 PM »
I'm not sure how to gain mac addresses from routed traffic no, i was saying the possibility wasn't ruled out since i have gotten internal ip's by fucking with the TTL of traceroute packets.

That's a neat trick but it seems like it'd be kind of limited nowadays with NAT everywhere and there's definitely no way to extend it to get a mac. But surely there must be some clever way? 15 minutes of google gives me nothing..

Offline trevelyn

  • Administrator
  • Elite Cactus Squad
  • Ninja Phone Loser
  • *****
  • Posts: 1687
  • 1337 13V3L: +183/-22
  • He likes cans and taking pictures in cans!
    • WeakNet Labs
Re: Remote logon used to get computer thief
« Reply #12 on: November 07, 2008, 08:41:36 PM »
yeah me too, i looked further into it too.  that bytes.

Offline trevelyn

  • Administrator
  • Elite Cactus Squad
  • Ninja Phone Loser
  • *****
  • Posts: 1687
  • 1337 13V3L: +183/-22
  • He likes cans and taking pictures in cans!
    • WeakNet Labs