[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-Disclosure] Scandal: IT Security firm hires the author of Sasser worm

To: full-disclosure@xxxxxxxxxxxxxxxx
Subject: Re: [Full-Disclosure] Scandal: IT Security firm hires the author of Sasser worm
From: ASB <abaker@xxxxxxxxx>
Date: Mon, 20 Sep 2004 11:21:33 -0400

I'd say, if you're going to lose your ethics over this issue, and
you're based in the US, that you'd need to do it before all the
anti-terrorist laws get hot and heavy, or your plan won't work.

Personally, there are plenty of areas in life where this type of
unfair behavior exists.  I try not to plan my own activities around
the apparently inadequately punished misdeeds of others.

A - I don't think it's a big deal that the kid was hired
B - I don't think that this is the best way for security firms to recruit
C - I don't think that it's the best approach to get yourself hired

-ASB

On Mon, 20 Sep 2004 07:10:39 -0700, Nick Jacobsen <nick@xxxxxxxxxxxxxxxx> wrote:
> Does it not strike anyone that there is a disturbing trend in malicious 
> hackers (yes, yes, I know, they are not hackers if they are malicious, so 
> call em whatever you want) getting hired to security firms, mainly because 
> the "hacker" gets media attention?  It is honestly like we are declaring to 
> the world that the best way to get a good paying job in the computer security 
> field is to perform some major attack - and get caught for it - and then 
> after serving a short sentace, start applying for jobs.  I know lots of young 
> people, myself included, that could make headlines by performing some act or 
> another of a sensational nature, and all that stops us is our own sense of 
> ethics - but those ethics get harder and harder to hold as we earn a pittance 
> doing your standard boring days work, while some other guy is out there 
> essentially (in my mind) having fun doing some detrimental to society, and 
> then getting hired at a substantial salary, as a reward.
> This may sound like a rant, and it probably is, but that makes my point no 
> less accurate.
> Responses anyone?
> 
> Nick Jacobsen
> nick@xxxxxxxxxxxxxxxx
> 
> 
> 
> 
>        -----Original Message-----
>        From: full-disclosure-admin@xxxxxxxxxxxxxxxx on behalf of bb
>        Sent: Mon 9/20/2004 3:32 AM
>        To: Feher Tamas; full-disclosure@xxxxxxxxxxxxxxxx
>        Cc:
>        Subject: Re: [Full-Disclosure] Scandal: IT Security firm hires the 
> author of Sasser worm
> 
>        If he has fulfilled all the obligation of his sentence, whats wrong 
> with him
>        being allowed to seek gainful employment that plays to his skills?
> 
>        Second chance anyone? Being allowed to learn from his mistakes?
> 
>        ----- Original Message -----
>        From: "Feher Tamas" <etomcat@xxxxxxxxxxx>
>        To: <full-disclosure@xxxxxxxxxxxxxxxx>
>        Sent: Monday, September 20, 2004 10:21 AM
>        Subject: [Full-Disclosure] Scandal: IT Security firm hires the author 
> of
>        Sasser worm
> 
>        > Hello,
>        >
>        > The german IT security company "Securepoint" has hired Sven
>        > Jaschan, who wrote and spread the Sasser Internet worm,
>        > which caused widespread and costly damages to legions of
>        > Windows computers.
>        >
>        > He will work as a developer for security softwares such as
>        > firewalls.
>        >
>        > This is a scandal! Whether or not you like the 250k USD
>        > head-hunting bounty which Microsoft Corp. paid to have Mr.
>        > Jaschan nailed, he is still a criminal.  Hiring him is a
>        > taboo. It is totally unacceptable to picture him as a modern
>        > age Robin Hood or freedom fighter. He is a criminal, similar
>        > to an arsonist, who sets a house alight and the fire spreads
>        > to an entire city.
>        >
>        > I urge all to boycott the Securepoint and I urge those who
>        > suffered losses due to the Sasser worm to sue Securepoint
>        > and seek damages. VXing must end and we must send a strong
>        > message to teenagers that cracking is not hacking and will
>        > not be tolerated.
>        >
>        > Securepoint website:
>        > http://www.securepoint.cc/
>        >
>        > Info about Sven Jaschan's hiring:
>        > http://www.f-secure.com/weblog#00000296
>        >
>        > Sincerely: Tamas Feher from Hungary.

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

References:
- RE: [Full-Disclosure] Scandal: IT Security firm hires the author of Sasser worm
  - From: Nick Jacobsen

Prev by Date: Re: [Full-Disclosure] Scandal: IT Security firm hires the author of Sasser worm
Next by Date: RE: [Full-Disclosure] Scandal: IT Security firm hires the author of Sasser worm
Previous by thread: RE: [Full-Disclosure] Scandal: IT Security firm hires the author of Sasser worm
Next by thread: RE: [Full-Disclosure] Scandal: IT Security firm hires the author of Sasser worm
Index(es):
- Date
- Thread