[BLUG] [Fwd: Bizarre internet privacy issue >> StolenIDSearch.com]

Mark Krenz blug_at_mailman.cs.indiana.edu
Fri, 9 Mar 2007 01:36:21 +0000 

  Heh, that's crazy.   I've actually thought about making a website that
only asks for you to put in some of your commonly used passwords, not
your username though.  But the point would be to do statistical analysis
on the type of passwords that people choose.

  A lot of people pick passwords based on personal likes, family, etc.
Being able to show everyone that its easy to guess someone's passwords
in a few hundred tries might make them think twice before saying things
like "Well, nobody would know this about me".

On Thu, Mar 08, 2007 at 05:02:51PM GMT, Jeff Welty [jtwelty_at_indiana.edu] said the following:
> Anyone brave enough to try this service? (see forward)
> 
> I can just imagine what happens when you enter your credit card
> number... it would probably return a message of the effect:
> "Your credit card number was in fact stolen -- by TrustedID. Thank you!"
> 
> -------- Original Message --------
> Subject: Bizarre internet privacy issue >> StolenIDSearch.com
> Date: Thu,  8 Mar 2007 16:14:16 -0500
> From: Schlosser,  Melanie Brynn <mschloss_at_indiana.edu>
> To: slis-students-l_at_indiana.edu
> 
> This isn't strictly new, but I just came across it and thought it would
> be of interest to some of you. A site called StolenIdSearch was
> launched in late January by a company named TrustedID. Click on the
> link below to see the site and notice your gut reaction to what it's
> asking you to do:
> 
> https://www.stolenidsearch.com/
> 
> I find the whole thing strange and disturbing, but it appears to be
> legit. What a fascinating website from a user/trust/privacy standpoint.
> 
> Some more info:
> 
> Free stolen ID search service launched amid skepticism
> ComputerWorld, undated (around 2/2/2007)
> http://www.computerworld.com/action/article.do?command=viewArticleBasic&articleId=9009998&intsrc=hm_list
> 
> It is also mentioned in this NY Times article:
> 
> Think Your Social Security Number Is Secure? Think Again
> New York Times, 2/27/2007
> http://www.nytimes.com/2007/02/24/business/24money.html?ex=1173502800&en=70daa31fa855693b&ei=5070
> 
> Minnesota Public Radio talks to the CEO of the company responsible for
> the site:
> 
> Future Tense: Is StolenIDSearch.com a crazy idea? (podcast)
> Minnesota Public Radio, 1/24/2007
> http://minnesota.publicradio.org/collections/special/columns/wavlength/archive/2007/01/future_tense_is_stolenidsearch.shtml
> 
> Melanie
> 
> Reporting of problems with slis systems should be done by addressing an
> email to root_at_slis.indiana.edu.
> 
> -- 
> Jeff Welty
> System Administrator
> Global Research NOC
> Indiana University, Bloomington
> (812) 856-9770
> _______________________________________________
> BLUG mailing list
> BLUG_at_linuxfan.com
> http://mailman.cs.indiana.edu/mailman/listinfo/blug
> 

-- 
Mark Krenz
Bloomington Linux Users Group
http://www.bloomingtonlinux.org/