Darknet Diaries Zusammenfassung
Erhalte die neuesten Folgen und Zusammenfassungen von Darknet Diaries direkt bei uns.
Der Darknet Diaries Podcast
Der Podcast "Darknet Diaries" bietet eine fesselnde Erkundung der dunklen Seite des Internets. Unter der einfühlsamen Leitung von Jack Rhysider tauchen die Hörer in die faszinierende Welt von Hacking, Datenlecks und Cyberkriminalität ein. Jede Episode entführt die Zuhörer auf eine spannende Reise, bei der wahre Geschichten von digitalen Intrigen und technischen Meisterleistungen enthüllt werden.
Jack Rhysider, ein erfahrener Geschichtenerzähler, öffnet die Tore zu einer oft verborgenen Welt und beleuchtet die komplexen und oft schockierenden Aspekte der digitalen Unterwelt. Der Podcast behandelt eine Vielzahl von Themen, darunter raffinierte Hackerangriffe, die verwundbaren Stellen in unserer digitalen Infrastruktur und die menschlichen Geschichten hinter den Schlagzeilen.
Mit einer Mischung aus investigativem Journalismus und packendem Storytelling macht "Darknet Diaries" die komplexe Materie der Cybersicherheit zugänglich und nachvollziehbar. Neue Hörer werden eingeladen, sich diesen spannenden Erzählungen anzuschließen und mehr über die Kräfte zu erfahren, die hinter den Bildschirmen wirken. Ob Technikbegeisterte oder einfach nur Neugierige – dieser Podcast bietet für jeden etwas. Tauchen Sie ein in die geheimnisvolle Welt des Internets, die nur wenige je zu Gesicht bekommen!
Die besten Podcasts, ganz einfach.
Erhalte kurze und aufschlussreiche Zusammenfassungen deiner Lieblingsshows, per E-Mail, jeden Tag.
So funktioniert es
Schritt 1: E-Mail eingeben und verifizieren
Klicke auf den Verifizierungslink, den du von uns per E-Mail erhältst.
Schritt 2: Wähle aus 593 Podcasts
Wähle die Podcasts, für die du Zusammenfassungen erhalten möchtest.
Schritt 3: Erhalte Zusammenfassungen
Erhalte Zusammenfassungen in deinem Posteingang, sobald eine neue Folge erscheint.
Melde dich kostenlos an.
Kostenlos starten!Bereits Mitglied? Konto verwalten.
Letzte Episoden:
-
151: Chris Rock
Veröffentlicht am: 05.11.2024
Zusammenfassung lesenChris Rock is known for being a security researcher. But he’s also a black hat incident responder. He tells us about a job he did in the middle east.https://x.com/chrisrockhackerSponsorsSupport for this show comes from Varonis. Do you wonder what your company’s ransomware blast radius is? Varonis does a free cyber resilience assessment that tells you how many important files a compromised user could steal, whether anything would beep if they did, and a whole lot more. They actually do all th...
Chris Rock is known for being a security researcher. But he’s also a black hat incident responder. He tells us about a job he did in the middle east.https://x.com/chrisrockhackerSponsorsSupport for this show comes from Varonis. Do you wonder what your company’s ransomware blast radius is? Varonis does a free cyber resilience assessment that tells you how many important files a compromised user could steal, whether anything would beep if they did, and a whole lot more. They actually do all the work – show you where your data is too open, if anyone is using it, and what you can lock down before attackers get inside. They also can detect behavior that looks like ransomware and stop it automatically. To learn more visit www.varonis.com/darknet.Support for this show comes from Axonius. The Axonius solution correlates asset data from your existing IT and security solutions to provide an always up-to-date inventory of all devices, users, cloud instances, and SaaS apps, so you can easily identify coverage gaps and automate response actions. Axonius gives IT and security teams the confidence to control complexity by mitigating threats, navigating risk, decreasing incidents, and informing business-level strategy — all while eliminating manual, repetitive tasks. Visit axonius.com/darknet to learn more and try it free.Support for this show comes from Flare. Flare automates monitoring across the dark & clear web to detect high-risk exposure, before threat actors have a chance to leverage it. Their unified solution makes it easy to rapidly identify risks across thousands of sources, including developers leaking secrets on public GitHub Repositories, threat actors selling infected devices on dark web markets, and targeted attacks being planned on illicit Telegram Channels. Visit https://flare.io to learn more.
Just a content warning from the top here. There's quite a few swear words in this one. I don't know. Do these content warnings even help anyone. Let me know if you like knowing if there's swear words coming up or not. Someone who's been on my radar for The last decade is a guy named Chris Rock. Not that Chris Rock, a different Chris Rock, a white guy, an Australian. And i know him as a security researcher. But as soon as i got on the call with him zweitausendein, I started learning that he's way more than just a researcher. Yes, i'm a public guy for my research, but not public for that side of the business. So for me, it's just a gig. And whether it's white or black, it makes no difference to me. So i think that sort of wait. So have you done black hat Gigs before? Oh, shit. Yeah. This is the I've been doing them since i was eleven years old. Like this is the norm. I know, a lot of people on the white hat say i used to be a black hat. And now i'm not. I mean, for me, it's like I didn't give a shit whether it's white or black. Are you a hacker? Yes. Hold on a second. But the black hat indicates that you're doing criminal activity. So you don't give a shit if you're doing criminal activity. No, not at all. Not at all. It's funny. I meet with a lot of people who do the whole. You know, hacking is not a crime. And all that sort of stuff, it's all full of shit. That's the public persona to keep their job safe. But at the end of the day, when you have a beer with them and you talk shit like that's all bullshit. So i'm essentially transparent about what I do. So what black hat stuff have you done? Not when you were eleven. I mean, i'm sure you stole your mom's credit card or something, but that's small potatoes compared to when you're an adult, I suppose. We've done everything. We've done banks, we've done government, we've done telcos. You know, we've done, you know, big oil companies just out of exploratory processes. Like. Yeah, normal stuff. When i say normal stuff. Normal for blackout paper. No, I'm not tracking. So you're telling me you robbed a bank and then just like, took the money? Yeah. Chris, what are you doing? I mean, for me? It's an exercise. Like, it's just, you know, can you do it? Yes. No transfer. And there's a lot of people around the world that will pay you to get into these banks and transfer money. Yes. You broke my brain here. Sorry, buddy. I don't even know where to go. You got multi angles. And look, you may not. You may not be able to cover it all in this call. Like, it's just an exploratory call. That thing we're gonna need ten calls. I mean, the hard thing with you, Jack, is, you've got thirty something year old career that you got to stick into and out walk. It's not going to fit, so it's okay. Have you ever been arrested? No. How are you? This good that you're able to rob banks and not get arrested? It's not that I'm that good. It's just. You have to be stupid to get caught. You know what I mean? Like, it's the world's your oyster. I mean, we get bored. We get raised in this world. I mean, I train forensics, anti forensics. I mean, it's just like the norm. Like it's. I feel sorry for the people that do get caught because men, you shouldn't be hacking shit when you've got five years, ten years experience. Like, once you've done it for twenty plus years, it's just easy. These are true stories from the dark side of the Internet. I'm Jack recider this is darknet diaries. This episode is sponsored by Exonius. Complexity is inevitable in it and security, and it's increasing. Exonius is here to help you control it as a system of record for all digital infrastructure. The Exonius platform correlates asset data from existing tools to provide an always up to date inventory, uncover security gaps and automate response. Actions. Go to exonius dot com darknet to learn more and get a demo. That's Exonius spelled Axon Exonius dot com Darknet. This episode is brought to you by varonis. So many security incidents are caused by attackers finding and exploiting excessive permissions. All it takes is one exposed folder, bucket or API to cause a data breach crisis. The average organization has tens of millions of unique permissions and sharing links. Even if you could visualize your cloud data exposure, it would take an army of admins years to right size privileges with how quickly data is created and shared its. Like painting the golden gate bridge thats why Varonis built least privileged automation. Varonis continuously eliminates data exposure while you sleep. By making intelligent decisions about who needs access to data and who doesnt, because Varonis knows who can and who does access data. Their automation safely remediates risky permissions and links making your data more secure by the min, even when you're not logged in. Varonis is classifying more data, revoking permissions, enforcing policies and triggering alerts to their ir team. To review on your behalf to see how varonis can reduce risk while removing. Work from your plate head on over to varonis dot com darknet and start your free trial today. That's Varonis spelled V a R. All right. So who are you and what do you do? So my name is Chris Rock. I'm fifty fifty one now. So my career started when my parents bought me, You know, my first computer, which then was over the computer. But it was the Atari twenty six hundred. And from there it went to Commodore sixty four and Amiga and then IBM clone. So i was born at the right time for computers loved hacking. I'm on, you know, i consider myself on the spectrum, like i prefer the company of computers than people. So for me spending sixteen twenty hours. A day in front of a computer is natural and I've done it since i was ten or eleven years old. So you spend that much time in front of us something you become good at it. So i've spent my whole, you know, the last forty years on a keyboard. Then i went to university eighteen didn't like uni. It was coding. I hate coding. So dropped out of uni. Uni wasn't really for me. So then i went into the sector, so it was it really it eighty percent, then security twenty percent. But I went into the banking sector. So i spent the next ten years in banks, in Australian banks, which you could probably tell from my accent ten years in banks. And then someone said to me, what do you want to do now? And i said, you know what i want to do? Some pen testing. And then I set my own pen testing company. So i did pen testing for another ten years after that around the world. And then one of my customers from Pentesting wanted a same solution. I said, look, I can help you out. I can stitch some open source products together, like elastic and stuff like that. And i did that and they really loved it. And then they said, why don't you give it to the rest of the world? So they can have a look at which was essentially the platform that I'm running now sea monster version one. So we rolled that out, it got a lot of traction. And essentially that's my full time gig. I am the czo of seamonster Sre monster. What a Siem does is it collects all the security logs of an organization and alerts when there's a security incident. And chris made his own called Siem Monster, which came about because he was breaking into companies and saying things like, oh, if you had logging turned on, you could have saw me. And those companies were like well set up logging. So we can see you. So he's got quite a bit of experience in both the offensive and defensive side of cybersecurity. So while i was talking to chris, he started telling me about a job that he had in the Middle East. And i'm not even sure what kind of job this was exactly a penetration test, and it's not exactly an incident response. Research and engagement is probably a better word for it. So when i was doing pen testing, people would say, Chris, you seem like a guy that would do outside activities. And then I would get approached for these outside activities. And then, you know, around the world to hack into this person, hacking to this company, you know, get these secrets and that sort of stuff. So essentially, both pasts are zweitausendein are working so through word of mouth. There's someone in the Middle East who needs a hacker's help. And heard that Chris is the guy to call for these sort of things. So he calls him up and says, can we meet? Usually they do it in person. So, in this case, i flew to a neutral area, so I flew to Istanbul in Turkey. And then met over dinner to talk about the exercise that he put forward. That's a. That's quite. I mean, already I'm intrigued, right? Because it's like, hey, we have this job. If you want more details, meet me in Turkey. Yeah, it's, and i say it off the cuff, because that's natural for me. And i know, a lot of, you know, pen testers don't see that side of the world. You know, they see it in a forensics report, or, you know, instant response. But once you live it, uh, and you go through it, uh, it's very interesting. Well, like it's, you know, Jack, you, you know, I'm always, you're an example. You know, you get paid every week, slash, fortnite, whatever. And you get your paycheck tax comes out of it stuff like that. But when you're on that other side, it doesn't work like that. Obviously there's no tax. But you've got to get your money. And things are expensive. Burner phones, burner laptops, crypto, peer to peer money. And getting your money washed all that sort of stuff. Different world. It's great learning curve. But a lot of us don't get to experience that sort of stuff. Well, yeah, what is this engagement? Tell me more about how this was pitched to you and what's the job and stuff? Yeah, so I met this guy, Warren's call him Mike. I met Mike. And Mike worked for a company and they were rich Middle Easters, who essentially he was one of five brothers. And each of the brothers was worth about a billion dollars, but he was only worth two hundred million dollars. So he was like the poor loser of the family. So i know that sounds really weird, but he had to take bigger risks Ÿousand to compete with his brothers to get to that billionaire status. And that's why he would engage hackers to assist him with his business activity. So in this case, it was put forward to me that one of his subsidiaries, he thought that they were stealing money and then moving that money to another company, another offshore company and also the IP from that company. So he asked whether i'd be interested in zweitausendein in finding out whether it was true, and then to recover as much money as possible. Huh? We're dealing with a few mega rich billionaires from the Middle East here. But the one brother isn't quite a billionaire yet. And he's keen on hiring a hacker's help to investigate where some of this money went in this exercise, it was a cash deal. I mean, it was offered gold in a briefcase, which is pretty fucking useless, getting gold overseas, but you know, you get you to get offered, you know, different types of currencies. Gold in a briefcase is what they offered you. I know it's. When I heard that story. First of all, i thought it was just a shit story. But no, they had cash ready to go for the exercise. And but if they said i prefer gold, i could get gold. So being not a native from that part of the world, it was pretty useless for me. Okay? So did you meet with this multimillionaire directly in Turkey? No, you always go through an agent. So i don't want to sound rude, but when you're dealing with middle easterns, you don't actually deal with the middle eastern guys. I'll say you deal with a white guy because they don't want to have any direct link to the foreigner. So i met with an agent of the rich guy, and he was from South Africa and him and i discussed what was required the targets. Chris, this is not a normal incident response or engagement or exercise or whatever it is. You called it, when i hear that they wanted this extra layer between, like the client and you, it makes me think that they want like plausible deniability. So like if you get caught they can be, like we don't have any aussies on our payroll. I'm not sure who you have, but that's not our problem. And they'll just leave you in the dust. Like do you see it that way too? So the answer is, yes, you were spot on. It was essentially one level removed. And the reason I hesitated with my language before about talking about white guy, we refer them as skirt wearers. So, you know, like the Middle Eastern with their, you know, the long garb that they, so it was your skirt wearer will not meet a western guy. So there's always a western guy dealing with a western guy. That's the language that we would use for these sort of assignments. So since this client has heard that Chris has done some mercenary type work before they wanted him to come investigate this theft. See if he can help them build a case against the guy who took it spot on. And there's parts of the world that essentially are the Wild West. So Middle East, for example, they do not do give two shits about the law or that sort of stuff. So if they need, if you need to hack into a bank to get their money returned, they'll do it. You need to hack and the company do it. It's normal. And when you're dealing with, like government sponsored stuff, it's normal activity for them. So don't put your American brain on it, think of it as like the Wild West. Now, typically, with a penetration test, you are given a scope, you know, like you can hack into this stuff, but don't hack into that stuff. But he wasn't given a scope. He was told by any means necessary conduct your investigation and on a typical incident response youd be given some internal network access or at least access to some logs or documents to comb through to figure out what happened. But heres the problem. All this company knew was that they gave this money to an investment firm and they didnt get what they expected. So they wanted Chris to pretty much do the incident response by getting into that investment firm and combing through their logs and documents to try to find proof that they did misappropriate this money or steal money, zweitausendein or steal intellectual property. So really all they gave Chris was this suspected company's name. And the people who worked there they were like, here's our suspects. We don't have any other details, no, we got a list of names. So those eight names and what information they knew about them. Whether it be phone numbers, personal email addresses, work email addresses, name of the company, nothing else that was completely then, you know, earn your fucking money and get in by any means necessarily. So the names you were given are the employees that work there, some in the company and some outside of the company. Because the theory was that money was going into this company. And then going out to another company, another investment firm that was essentially going to steal the IP from the subsidiary and then launch another iteration of that with the IP and the funds that was coming from the original investment company. And so what are your like first steps? What do you get? What do you get going? What do you do? Yeah, so the first step. So we had a number of targets, it wasn't a single target. We had essentially eight targets on our list. So essentially we essentially map out the person, you know, the Internet dumb research on who this person is, how they live, their lives, you know, LinkedIn, social media, all that sort of stuff, getting that sort of information, obviously phone numbers, email addresses, physical addresses and stuff like that. And then plan an attack like who are we gonna go after first. Are we gonna go after the prime target? First, I'll use the guy bob. You know, Bob and Alice is an easy one to use. So in this case, we were the prime target was Bob. But we had all these other targets like Alice and Jane and all that sort of stuff. And maybe we don't go after Bob first, maybe we map out these other people first. So when we do an exercise like this, and we're talking big money. When we do exercises like this, we own. We don't just send like a blind email and then just like, oh, you know, they're on choice or we got in successfully. So we'll essentially own their whole world. So we talk about level one, level two, level three. So level one is their inner circle, you know, in this case, Bob's wife, Bob's kids, all that sort of stuff. Then you have a layer two, you know, things like accountants, lawyers, gyms, all that sort of stuff, level two. And then you have the three like the affiliates on the outside. So we might target. In this case we would target level three, level two first. And when i say target as in own emails, so you could be actually, if we sent an email to bob, he would reply to it and wouldn't think it's dodgy. If that makes sense, not from dodgyidiotmail, dot com dot, it's actually a real person. So we would target level three, level two. And then once we're comfortable with all those assets. Now I know that sounds like very exhaustive. But when you're doing these sort of gigs, those level two, level three. Come in, handy down the track. Whoa, this guy's serious. I've told you many times. Don't open attachments on emails or click on links from texts from people. You just don't know. But what Chris is doing is he's targeting people. This guy, Bob, did know getting into their emails and their network first. So that when it's time to target Bob, he'll be sent an email from someone he does know and perhaps even a document that he's been expecting. Like for instance, if you get an email from your doctor with the lab results included that would likely be an attachment that you would think is safe to open. This is the kind of stuff that Chris was trying to do to avoid any suspicion that Bob is being hacked into or spied on Ÿousand. This to me has a level of sophistication that I'm impressed by. Yeah. So what made you interested in Bob as opposed to the other seven? Bob was the boss. So he was the. He's the CEO. So essentially, he's target number one on our list. Like, you know, if you've got like a deck of American deck of cards, he's like the ace of hearts. If that makes sense. Okay, so you were going to start with him, and if you need more information, you go down the line with the others. Actually, no, we did in reverse order. Remember, i talked about we do like level three, first level two, level one. So we essentially start bottom up because we want to have. You don't want to send like a blind email, you need to understand, you need to read the emails and get the personality of Bob before you approach Bob. So you need to know, you know, Bob's dealing with Jane, what's the normal language flow between Bob and Jane? So you compromise, Jane, you get the, you know, the from emails from bob. So you can see language and what time of day emails get sent, you know, that sort of stuff. So we. We do not do the first target until last, if that makes sense. So as Chris gets to know more about Bob, he starts hacking into everyone around Bob, their emails, their computers, their phones, their locations. This allows him to see who's in Bob's orbit and how does communication look between them. And at the time, Chris had some really nice vulnerabilities, an Adobe PDF Reader, and would send emails to someone and getting them to open the PDF. And that would allow him to install a remote access Trojan and get access to their computer. Yes, so in that case, the Adobe was enough to get, you know, probably four or five of the eight people, and also the sitter research. A lot of the pen testers, who listen to this, will know that you know, once you've got remote Shelley, this pretty much came over at that stage things like keyloggers and stuff like that. But the more complex things that we did is we didn't have access to the investment firm that Bob was moving assets to or IP to. So. So it was time for Plan B. Plan A was to hack into the laptops of the employees of that company. But even though he could get the Trojan installed, he just couldn't get a connection into their machine when they were in the office. So we wouldn't get the shell, we wouldn't get the shell returned to us. So it was either some sort of egress back filtering that we couldn't get an open shell. So we would have PDF's being clicked on, but we couldn't get a remote session from the target. So we have to walk me through what's supposed to happen here? Is it metasploit that you've used? So yes and no. In this case we would use metasploit as a pen Tester. But we would do our own custom PDF's that we would run against AV. So we would upload it against virustotal to make sure nothing picked it up. And so we would send the PDF off, that when it was double clicked, it would then remote connect back to us on a port four hundred, forty three, whatever that we thought would get back through an egress port back to us. That would then essentially have a listener like metasploit. But we would have our own listeners listening. In this case he wanted to get into the company's network. He was hoping there, he'd find some file servers or something which could offer him more evidence of what got taken. And this company was a small investment company and didn't have a dedicated office. But instead was working out of a co working type space, kind of like we work, but to break into an office in another country, you really need to come prepared. You need all the plans, Plan A, Plan B, Plan C and escape routes, too. This isn't a mock exercise. This is playing for keeps and potentially very dangerous. The first plan never works like it's just one of those things in life and it never works. So alifa daz is like man, you know, that was. That was the one in chance. So you're right multi gear. So it's one of those things you have to plan for the worst. The goal was to get access to this company's network. But where's that company's network? And how do you get into it without being caught? This is where the more you know about that company the better he discovered. This company had a Wi Fi network set up in the building. And what's more is, the Wi Fi they were running was using WEP encryption. This was years ago when WEP wasn't so uncommon. Today we use WPA, which is much more secure, but WEP had some vulnerabilities. If you could get a radio near the WEP Wifi router, you could intercept enough beacons and packets to get on their Wi Fi network. So that was the goal. Get in the building, get within range of their Wi Fi router and plant a device to listen to and capture the web packets we hit. He had to do custom built stuff. So, you know, I got an Italian motherboard. It was like the tiniest motherboard at the time. And then built up my own Ÿousand a Linux stack with Wi fi hacking and things like putty and reverse shell tools like plink and stuff like that, that we would use, that we would plant close to the VC firm. So he loads up his kit full of cool gadgets and flies over to that country. You got any sort of way you dress up. When you go out to these things, just look black or blue suit with a white shirt and tie like it's just, it's just. Even if it's fifty degree heat like in Kuwait. That's what you wear. That's not what a black hat hacker looks like, I know, exactly, right? So, yeah, so, Hoodie, all that sort of stuff that doesn't command respect over there, but suit guy over there in their eyes. Respect. He goes to the office building and starts planning out how to get in. That's the easy part. A white guy in a suit with a laptop with a, you know, someone holding like lots of books. Someone will open the door for them. You know what I mean? Like it's one of those pen testing stories that you probably heard a million of that people, like the doors that works in the us or even in Australia. But if you're a white guy walking into a place with a bunch of people that don't look the same. Now you're out of place. Your thinking's right. But when a white. So let me show you middle eastern companies like a westerner in there. Because these people have been trained outside of the Middle East. We trust them. They've been to, you know, Cambridge and mit all this stuff. So it comes with inherent and inherent trust. So you're right, Jack. You're thinking as, oh, you know, the white guy sticks out of place, but no over there. A white guy. You do what they say, because if you've done any work in the Middle East, they employ, you know, the best German engineers and the best English financiers and stuff like that. It's not unusual for a waikai to come in pretty much, run the show if that makes sense. So he's led in the building, no problem. And it's a coworking space, which means there's a lot of small businesses working out of this building. And he can use that to his advantage, because everyone is used to seeing strangers roaming around. Getting access to the building was really easy, because it was, like, you said, it was a co working space. And then finding out that they were on a floor that had one of those communal kitchens, like, for us. It was like easy as i didn't have to get past, you know, a receptionist or someone. What are you doing here? It was essentially, you know, a guy making a coffee, pulling the microwave forward, sticking something behind her, and then boom, we had a device planted in to get this last VC firm. You said, we a few times, who else is on your team? Yeah, when I'm talking about owning level three, level two, level one targets, I mean, there might be twenty targets behind the scenes. So we're talking about, you know, Bob's doctor, Bob's lawyer, Bob's accountant, Bob's Jim. You know, in extreme cases things like Bob's Bank. You can't do that all by yourself. I mean, that would be a year long exercise and it's not worth the effort. So i always work in a team to do these activities just to make that load easy if that makes sense, okay? So it was fairly uneventful getting in, but he managed to slip in, go into their kitchen, go behind their microwave, plug in this little computer with an Antenna and then slip out of the building. Now him or his team can access this little device remotely because it has its own cell connection, so that he can just access it from anywhere in the world. Their first goal is to get on the Wi Fi network, to do that they're going to have to crack the WEP protocol. They log into that little device and fire up a tool called aircrack NG. What this does is, it intercepts as many Wifi packets as it can. If you think about it, Wi fi is wireless. So the packets are just flying through the air all over the place. It's pretty easy to tune your antenna to just see them and grab them. Today's modern WPA protocols make it. So even though you can grab the packets out of the air, you can't see what's in them. But with wet Ÿousand encryption, there are vulnerabilities in which you could grab enough packets to be able to decipher it and get into the Wifi yourself, which is what they did after running aircrack ng. Long enough. They got their little device on the Office Wifi, which now they have a little machine on the inside, giving them an inside, look into their network, a network scan, shows them a few devices that are there. And then they look at what ports are open on those systems, and then they can guess what devices those might be. They find a file server which employees were using to store documents and such, and remember, this is an investment firm, so they're managing a lot of money and have to maintain relationships with people and know which businesses they are. Invested in. So all this must be documented somewhere. And this file server was exactly where it all was. That's correct. And then we had access to file service and stuff like that and email servers. And that's how we got into that company that we couldn't get in through the whole remote PDF stuff. At this point, Chris has a huge amount of visibility into this investment firm. And the suspects who might be stealing this money and intellectual property, he's got a ridiculous amount of listeners in place. Full access to the network, like he can look at all the files on their file servers and email servers. Full access to some of the suspect's computers through remote access Trojans that were put on there. He's able to see every email in and out. And he also has keyloggers on their computers. So you can see what their usernames and passwords were. But he also has access to emails and computers with people around the suspects, family members, friends, doctors. He's also looking to see what kind of bank accounts these people have. Just in case he needs to get in there and take a look to see where money's going. So with all this access he starts finding stuff that the client might be interested in on fall service. You'd start saying folders like a folder. And then we're talking about in the investment firm. You would see like a, you know, bobs. And then you would see things like ip and stuff like that, which we would then run past our clients saying, is this the sort of stuff that you're worried about leaking into somebody else's hands? And then we would send that to our handler, who'd say yes, no, yes, keep targeting that sort of stuff. So you start starting building a picture. And i mean, this exercise went for a long time. I don't want to exaggerate, but i think this one went for nine plus months on this exercise. It was just a continual string. So over that time you're reading every email back and forth. And so you would get all that sort of information and learning how they speak and how they think. And proper language. So you start piecing the puzzles together on what this guy is actually doing. And because i'll say this polite, we don't give a shit what he's doing. It's essentially. Here's what he's doing. Client Ÿousand, is this what you want? Is this what you suspected? There's no emotion like we didn't give a fuck. It's just a job. And then we would give that. Say yes. No. How do you want us to proceed? And then go from there. The client kept telling him he's on the right track, keep finding more details and send them over. And, like he said, he maintained his access for quite a while. As he gathered all this info. But he doesn't want his presence to be detected. So he has to be very careful. Not to be seen. So essentially, what we would do with a blackout exercise, we might compromise. Say eight targets around the world. And the last hop would be from the home country. So for example, we might, you know, compromise a hotel in Pakistan and an Airbnb in India. And then another country. Now these countries don't participate. They don't do forensics with each other. Like they're essentially at war with each other. So you would pop your traffic across these. And then the last hop would be. In this case it was a Q eight. So essentially, the last hop before the target would be a Q eighty IP. And we actually owned the telco at that stage in Q eight. So it was essentially. Didn't really matter. Just looked like an at. And t what, my gosh? Just to log into their gmail. You're like, wait, we can't do it from australia. Let's get over there and log in from there. I'll tell you what. I got a plan. First we're going to hack into an Airbnb in Pakistan. Then we're going to hop over from there to hack into a telecom provider in that country. And then from the telecom provider. That's when we're going. That sounds so crazy. Yeah, and so. And it's a great. So when you talk like when people talk about like a little black book, we would essentially have a network of these compromised targets. Not the telcos. Let's leave the telka. We would have a network of a path we could use when we want to do a hack job. And we're not doing it from the local McDonald's or or from your home, for example. So we would have this rotating list of our own proxies. Not tall or anything like that. We're our own targeted proxies. That do the hops that we want. Like we definitely want to do India, Pakistan, Sri Lanka, Bangladesh. Because, like I said, They hate each other. So there's no. Oh, can you give us your disk for, you know, for this activity, it's not going to happen. So we would use, you know, the. The wars of the world to benefit us. So that would be our black book of targets that we always have. And when we're not working, we would essentially find these targets for our next assignment. So you always have that little black book of, like you talked about before tools, we would have compromised targets around the world. That we were going to bounce off. The telco was just happened to be something that i love working. I love hacking telco. So it was one of those things that was going to come gosh. So to carry out a task like this, he has to spend quite a bit of time and resources finding vulnerable systems around the world. So he can hack into them only to use that system to jump over to another computer in the world this way. It's impossible for anyone to track his route back to where he came from. But also think about the fact that he has that little computer behind the microwave in the office that he's targeting. It's on the same wi fi as the people in that office. So he could use that computer to log into things like gmail, which would appear to be the same IP. Those people are typically logging in from making gmail think this is normal activity and not alert the user. After a while. Chris had collected and delivered enough evidence that the client called the police. Yeah, so the evidence was essentially what they suspected. That both money that had been sent to the company to build. The company was being moved to both personal accounts and to the outside investment firm, as well as IP, that was created in the business. Zweitausendein the subsidiary was being moved to another investment firm is essentially our collateral, our moat. For example, this is the data. So how did you find that? Where was that smoking going? That was freaking everywhere. That was everywhere. These guys were operating like, again, the wild west are operating their emails. Both gmail, both company emails, false servers, everything. It was just, the evidence was everywhere. It just took a while to put it all together and connect the dots ÿousand. Yeah, and remember, that was not our job. Our job was to present what we found. And then they were to go. Is this your cause? We don't care. Like I said before, I don't sound non echelon, but is this your shit? Yes. No. Do you want us to find more shit? No, we have all the shit we need. Go, do your job. That's how we operate. Because again, it's not personal. We don't care what the information is. Is this the right shit? Are we on the wrong track? We just need to know the payment for this. Was it sufficient? Because I can imagine them saying here's a briefcase of money. And then you're like, well, dude, okay, we've been working on this for three months. If you want us to keep more, we need another briefcase. Yeah, how we operate is, we'll have an initial fee, a finalization fee, and then we will have what we call an ongoing fee. So you know the jobs like this, we like to have over within a month. So, initial fee, completion fee. But if you want us to continue monitor these eight people and this outside company, you're going to have to have a, like a monthly charge, almost like a subscription model, where they would pay to just find out what's going on in these people's lives. So you don't want them to think they're idiots. So you'll put a you'll put a quote in front of them, and they'll say we agree to that quote. You better stand by that quote. You know what I mean? Like if you want referral jobs going forward. Like if you said half a mil or a mil or two mil, whatever you quote that you stick to, that you don't say we need more. Like you make your crystal clear. Because again, this is repeat business that you want. Yeah, I'm just starting to put the picture together of like how much you charge versus how much they're losing. It's worth more to them to pay a million or two million to you. And if they're going to recover what, how much money do you think was being stolen here? In this case, I know exactly how much money was being sold. I think it was two point five us or two point seven. Five USD million dollars. In this case. But You got to think when you're in business, Jack, I know you're in business. But when you're working with a customer, their initial first year spend might be. Let's say it's half a million dollars for the initial spend. Once they see how useful you are. And then you do repeat business. It's like it's an investment firm. They're always investing shit. So they're always going to use your service down the track. So he might do. It's a bit like a drug dealer. Like you might give them a taster for half a mil. And the next job's gonna be worth two. You know what I mean? Like you just they know your work, they know your style. And then you know you're gonna get repeat business with higher stakes. I mean, he's dealing with wealthy people here, billionaires, oil, money. Yeah, if he can prove that he's the go to person to these folks, yeah, these could be long term customers of his. And in this case, they were very happy with him. They got enough evidence to take action on this zweitausendein. They then got lawyers involved from their side. They had to be really careful about what they presented to the lawyers. But it was, we believe, xyz. And then get the police to arrest the ringleader mob at that moment. So that was essentially their goal to get him in jail because they took it personally that they were, like I said, you got to treat them with respect. And if you disrespect them, then they get really emotive. And then for them, jail was the worst case of action for them. Okay, story's over, right? You found the thief. They put them at him in jail. Yeah. So, Jack, the story's not over there. This is where it gets exciting. So stay with us. We're gonna take an ad break, but it's gonna get exciting. After that, this episode is sponsored by Flair IO as a darknet diaries listener. You know that cybercriminals are always one step ahead. Ÿousand and info stealers are their weapon of choice. These malware attacks harvest everything from saved passwords and session cookies and sensitive data, which is quickly sold off on Telegram or other underground platforms. Imagine the damage that could be done if someone takes over your streaming service, e commerce or even critical business accounts with just a stolen cookie. This is where flair IO steps in. Flare IO is a threat exposure management solution with a unique, fully searchable cybercrime database that specializes on cybercrime channels and info stealer logs, businesses and pen testers can use Flare IO to find compromised accounts, detect active sessions, and lock them down before criminals do. And right now, flare IO is offering darknet Diary's listeners an exclusive, two week free trial. Click the link in the episode description to take control and stay ahead of the threat with Flair IO, a leader in continuous threat exposure management. Thank you, Flair IO, for supporting darknet diaries. There was enough evidence to prove that this guy, Bob, stole the money and the intellectual property. But they told Chris they were worried about the money. The customer were worried that bob was going to use that money as a defence. He was going to get on all his bloody shapiro lawyers to fight his case and use the funds that he'd stolen to fund that exercise. So they asked Chris, get us back that stolen money, do your job as a hacker by any means necessary and return the money to us. Which, in my opinion, is crazy, because why not just have the police return the money? They didn't want to wait, because you're thinking American system, not Middle Eastern system. They didn't want to fuck around with that sort of stuff. They didn't want to go through. We want the money, you know. We want this, we want, you know. And then put a brief together stuff like that. They don't roll that way. So his objective was clear. Get into this guy's bank account while he's in jail and move the money out. This job has essentially turned into a bank heist at this point. And it seems to me that Chris doesn't have any moral concerns about robbing a bank. No, no, no. And, Jack, I've listened to a lot of your sessions, and that comes up quite a lot. I don't have that boundary. Does that make sense? So for me? Well, so, okay. So this doesn't make sense, just economically, right? So, if somebody pays you fifty thousand dollars to go get a million dollars out of a bank account. Why don't you just go get the million dollars and be like, you know what i'm forget you. I'm just going to go still my own money. I don't mean, and that's actually happened on jobs before where you take your share as well. But you, so in our case, remember, we were returning the funds. We didn't return the funds in a little bit extra. Yes, we could have taken money from somebody else's account, but that raises flags. If in case, so we were essentially returning the money that was stolen. So there's no actual victim. Does that make sense? The money was returned to the rightful person, but yeah, it does make sense. Okay? And remember, we're up to repeat work and word of mouth, which is how you work over there. It's like building a business. Okay? So you accept this job to get the money back. Now, how'd you do it? How'd you get the money back? We compromised the bank, which was pretty easy. So we essentially use the same sort of techniques of PDF's inside going to the core banking system, finding out the internal where their Internet banking web servers were replacing the front page to actually log all the usernames and passwords and two factors. And then we would have a log file of all the username, passwords and two factor. So what he just said was, that he found a bank employee, sent them a phishing email, got them to open a PDF, which planted a Trojan on their computer. And then he was able to get into their computer. And from there he hopped into the server of the bank's network. And from that he was able to find the front end web server for the online banking. And he configured the online banking site, so that anyone who logged in their username and password would be stored in a log file, so that he could see it. But on top of that he was also logging two factor authentication codes that people are entering. This is incredible. Well, he's only trying to get access to a single user account. He's basically accessed All the bank users who logged in during that window while he was watching. I just can't believe this guy. I suppose. The question is, why are you surprised at you talk to people, you know, for years and. And you know, the pen tests that are out there that people can talk about. It's fucking normal. Like you do not, you do know, but you don't believe. You would not believe how shit banks are, locally and internationally, like the shit security that they have out there. That it's just, you know, if there was more bad people in the world, there'd be more banks getting done. Well, I guess maybe that's why I'm surprised is because the hackers of the world is the immune system for all these banks, right? And so what? You got a shit security bank? So, Okay, well, there's million hackers out there that are going to fix that for you real quick. Yeah, exactly. Right. And the thing is, Jack, you might have a million hackers, you know, eight hundred. Thousand of those are just like new to the industry, you know, the zero to five. And then, you know, if you then look at the, like the bell curve of people who go into banks, there's, you know, i'll just say one thousand for argument's sake, but it's a smaller number that you need to protect against. But, Jack, i've seen some banks there where I've gone in and I've gone into ad and have a look at, you know, Joe Smith. And it has the description of where they work and what they put in. The description was the user's password, so, you know, password one or password two thousand in clear text in the descriptive field of the LDAP field. Because when someone rang up and said, oh, I forgot my password, they just read out the description filled from the LDAP, and I couldn't fucking believe it. So they would have everyone's password on the list and just read off it. And anyone knows anything about LDAP. You can just, you know, query that. But that's the shit that we see as a pen tester and as a black hat. Well, we've done. We've done banks, Jack, where we've seen other hackers in there ÿousand in the bank itself, like, it's just fucking hackers, right? Beside us. Wait till then. You're like, hey, i recognize you. I've seen you at Defcon. Well, exactly right. And the beauty of, the beauty of stuff like that is, you work around each other. No one wants to lose. This is like, this is like that Beastie Boys video, Paul Revere. You know, that song, where they're just hanging out at the bar. And then suddenly, the one guy's like, I'm gonna rob this place. You want you in? Yeah, i'm in. Let's go. Do I? Exactly, right? And you don't know why they're there, you don't know, if it's government, you know, if it's other hackers, or whatever it is, you just work around each other. The beauty is, if you do find tools that they're using you take a copy of those tools because we can then use those tools to plant on another target site. So they get the blame for it, not us. So, you know, you look at the techniques that they're using. Whether, you know, today we use apt groups, stuff like signatures. You'll create those signatures and you'll plant them somewhere else. So you might. [Sos/eos], you know, compromise a target, format the dis before you format the dish, throw the tools on, format it, and then all of a sudden, some deloitte's guy runs in case and goes. Oh, I can see. So the deleted toolkit must be this group. And then they get the blame for it. Oh my gosh. Did you hear that? If Chris really wants to hide his tracks, he'll plant evidence on servers, which makes it look like some nation state hackers were there, which throws off investigators who are on his trail. And he only knows what tools that some of these other hackers use. Because in the past, he spotted them on the same servers that he's hacked into and watch what they've done. Okay, so you got to the web page. You were able to see this target, Bob's username, password, two factor authentication code. And were you able to log in and transfer his money out with this? No, because when you did a transfer it, then asks for your two factor authentication code again. Now the the problem we had is fucking bob's in jail at this stage. So he doesn't have access to his text. Oh, right. How's he going to do online banking from jail? They managed to get his username and password and were able to log into his account before he went to jail. But there's this problem with the two FA code now. So when you go to wire the money out, it asks you for another two factor authentication. Correct. This bank did. Yes. And you didn't have a way to get that second one. No, because we've had the session live, so we kept that that session live, so it wouldn't log us out when we got access before we went to jail. But when it then asked for another transfer, it did like, oh, you need another code to do that transfer. So we couldn't move that money out. You're insane. Okay, so plan a failed. How do you do it? Yeah, so plan a failed. And i don't want to sound like glasses are full, but it was enough to prove that the money was, or not the whole money, but a good proportion of the money was still there. Bob obviously had some expenses. So at this stage, remember, we'd already compromised the bank itself. So it was just essentially going in as essentially as a teller. When your bank teller, you're god, you can do whatever the fuck you want. So, and if bank teller doesn't have the rights, you can be treasurer, you already own the bank. He can move up horizontally, vertically, to get the guys access to move the money, huh? Interesting. If he can pose as a bank teller, get the access they have. They have the power to conduct any transfer they want and keep in mind. Chris spent ten years working in the banking sector. So he knows exactly how banks operate. Well, step one, comb through the directory of employees, find which ones are the tellers, then find which ones have remote access to the bank where they can do. Work from home stuff, maybe like phone support or something. Then grab their username and hash and crack the hash. And now you can log in as that teller and move money around. Which is exactly what he did as a teller. He transferred Bob's money out into another account. So remember, we talked about two point seven five. And i was fumbling over the two point seven five and two point five. Essentially, we recovered the two point five, but the original was two point seven five. Two point five million dollars were taken from that guy's account while he was in jail. Crazy. This is black hat Bank Robbery type stuff. Now I'm starting to put it all together on what he means. When he says he doesn't care if he does illegal Black hat type hacking. He's like a mercenary hacker for hire, you know, and maybe that makes him grey hats. Where, yes, it's illegal, but he's helping someone fight a bad guy. But what I don't get is why the bank didn't raise alarm bells from all this. Like if two point five million dollars got transferred out of the bank in a very suspicious manner, you'd think they'd launch a full on investigation. Like bring in the teller who did this transfer? And ask them a bunch of questions. Ÿousand and look through the security logs for any unusual activity. And if they notice all the usernames and passwords are being stored in the logs, then that's a data breach that should be disclosed to their customers and maybe impact their share price or something. Yeah, so you raised good points. In my world, there's people to make transfers disappear. So in my world I can contact, I've got bank accounts that i can use, that can be scrubbed on the other end in the swift network to say that that that didn't exist. And then it goes through a laundry process where that money's cleaned over a nine month period. So that money gets returned. So in there, the answer to your question is, in Bob's case, no one gave a shit. Bob's, you know, had money in his account and body money was returned. So there is no victim does that make sense. Like Bob stole the money. Money got returned. There's no one whinged the bank. Where's my money, huh? Since nobody complained the money was stolen, then maybe nobody ever investigated this zweitausendein. Which means they don't have to hide the money trail either. Like he was preparing to wire the money to a bank where he can launder it and have it come out clean. But since this money rightfully belonged to the client, they didn't think he needed to go through all the hassle of cleaning the money. No, in this case we didn't need to it was just transferred back to the investment firm. So it was just like from bob to investment firm has been returned. It's been misallocated, misappropriated, and it's been returned. How wild. Somehow this all slipped past the bank. I mean, perhaps later they saw this but never came public about it or reversed the transfer. And maybe it was because Bob was in jail and never complained about it. Or maybe they wanted to avoid embarrassment of being hacked. Or maybe it was because they saw where the money went. And it was to a very influential person who they didn't want to disturb or ask questions about. Or maybe they did ask that person questions. And that person simply said, yeah, the money was stolen by Bob who's now in jail. And here's the police report. Thank you so much for reversing the charge. This whole thing's just got my brain up in knots. In this method here we could have created a fake teller. And then, you know just, you know, just done a copy user and then replace. And then just done the transfer that way. But we knew we didn't have to the fact that the customer just wanted. Their money returned to their bank account. Not a washing station like a laundromat. Then it was just that it was just who gives a shit. Like we didn't have to do any. We don't have to delete the user. We don't have to delete the transaction. I guess what I'm wondering also is, like, if this is. If this is going back to the appropriate person, then why can't, I mean, the person, your client is a very influential Person in the region. Why can't they just go to the bank and be like, listen, i found the guy who stole this money. We need to reverse the charge. Just do this. This is a legitimate reverse. That's a great question. All i can tell you is what we were told. We were told, they feared that that money was going to be. If the money was there, which it was, the money was going to be used as in a court process. Like it was going to be a strewing out two to three year court trial. And they were going to use those funds. So the time that they got that money back they would have, you know, the bank said you need a court order. Can you prove it? Blah, blah, blah. They were worried about that now, whether they could have just, you know, overridden that I don't know. But in their head, that's what they were worried about. So keep in mind who we're dealing with. Here, this guy we're calling. Bob has the guts to steal money from an investment firm owned by a super rich guy. Even though Bob got caught, he's still pretty smart. So he's probably got a plan for when all this goes wrong. So it's important for Chris to keep eyes on him as he goes to jail. So he watches who bob is messaging and what's he up to look? He's a kind of guy that i actually have respect for this guy because he's pretty cunning and because I've been reading his emails. I knew him so well inside and out. You know what? It's like when you're reading or you may be dojack. But, you know, when you read someone's emails, you know, you have a. You have a relationship with them whether they don't know it, but you actually know them inside and out. So Bob's quite crafty, but Bob used that i am ill carb. And he worked with his doctor to get a bail hearing that he could get out on bail while this case was going forward. So he was essentially in jail for a week. And then the doctors wrote. My client is sick note, which we could verify because we talked about level two and level three. We had access to his doctor. So we got to see what was going on that he used his doctor to get to get out of jail. After two weeks in jail, what happened is, we were reading some of the emails when he was in jail, obviously, and then outside of jail and his language changed he almost like he was putting it on. You know, like when you're an actor, you act. And when you're not actor, you look like an idiot. And bob was essentially looked like he was acting in his emails. And i said to the customer Ÿousand, this is not normal emails that he's sending out. He was going on fishing trips. He was planning a fishing trip. And the kind of never been fishing. You know what I mean? It was all these sort of I'm gonna be here at this time. And it was was too much information. That the thing i think you know he's on. He knows that you're. We're reading his emails and he's putting it on. And i said, look what? This guy's a flight risk. And they since he went, no, no, no, he's fine. We got his passport. Blah, blah, blah. So because Chris had such a deep level of visibility into Bob. He watched him closely to see where he was going. Bob didn't actually go fishing. He was smuggled across the border in a bloody burka. And we tracked his headers of his IP. Saying, look, the guy's not even the fucking country anymore. You guys think he's there. He's not, he's in Oman. So you know all this shit. Talk about, we got your passport. He's not going anywhere. And he actually escaped the system on a second passport. Because this was in real time over. Maybe a twelve hour period. I'll say twenty four hour period. Essentially, the guy was moving fast, you know, car. He was in a car. We later found out that he was in a boot. And then he went into the backseat with a burker. And then he went hopped a border. And then got an. He had another passport and then used that. But because we had the IP headers, we could see where he actually was like he was. I'm not saying he's stupid, because a lot of people don't Ÿousand in that world. Don't understand IP headers. But you were in his phone. No, he was sending emails out from his device. Okay, i will make that clear. Normally we do get into phones. But this case wasn't a phone. It was just email headers, not IP. Don't get me wrong. And i talk about this, but sometimes we'll send a ping packet. So you get the odd SMS, and, you know, Jack, you'll get an SMS, and you'll click on it. You know, your ups mail is late, and you click on it and go. It's just some fucking scam. It's asking for my username and password, but what it does is just tracks your location from your phone. We used that a couple of times on this project, but it wasn't a tool that was was needed. Does that make sense? We had enough from the IP headers that we didn't need a GPS location. Once bob left the country, there was nothing. Chris's client could really do about it. So they said, thanks for letting us know. I guess that's it. Then here's your final payment. That's the end of the engagement. Um, weird question. Have you ever killed anybody? Uh, only virtually. Yeah. Virtually. Oh, the answer is going to be no on this podcast, Jack. Have i birthed it now? Have i birthed anybody? That's another story. You. You have many kids. I have many kids. I have many kids. See, the thing that put Chris Rock on my radar is a talk he gave at Defcon in twenty fifteen titled. I will kill you. And in this talk, he explains exactly how to use, hacking, to kill someone. Part of my career i was, you know, pen tester, mercenary, you know, scene founder is research. And one of my first DEFCON talks was, i was at watching the news in Australia. And one of the news report was a hospital accidentally sent out two hundred death notices instead of two hundred discharge notices. And i went what the fuck? How is that even possible? And then that led me down the rabbit Warren of researching the death industry, the medical component and the funeral director component on how the system has moved online and the flaws that involved ÿousand where you could actually physically create a real person like a fake person and how you could kill them. Okay, so walk us through this step by step, how to kill someone? Yes, in America, actually, it's very similar around the world. But in the US, they have a. They used to have a paper based system where the funeral director would fill out half form on how the person died or where the person died, like where they're buried and all that sort of stuff. Next to the Kim and the doctor would fill out the first part of the form, which is the cause of death and those sort of details, name of the victim and then how they died, that one piece of paper would go into essentially the birthdest and marriages system. And then that person would be declared dead. What's happened now is that's moved online. So essentially, when somebody dies, the process is, the doctor will log on to a US system called EDRs, log on with their username and password and actually put in what caused the person to die embolism or whatever a heart failure, that sort of stuff. And then that information would then pass to the funeral director. A funeral director would [SOS/EOS] complete their part again, username and password to log in, and that would form essentially the death certificate in the EDRS system. Now, the flaw in the system is both the medical and the funeral director component is essentially, if you want to be registered to declare people dead, you essentially put in what your license number, your medical license number and your office address. Now, if anyone's looked up a doctor before to see if they're a real doctor, that all this shit's online. Ÿousand, there's databases all around the world to say whether your doctors are licensed to practice their registration number and their office number. So you could register yourself as a doctor. And then you could. Then you could actually kill somebody off the first part. And again, with the funeral director component, it's pretty much the same as a doctor where you can declare yourself, a funeral director, and form the second part of that form and to kill somebody off and get essentially a death certificate. And why would you want to kill someone? Well, there's multiple reasons why you want to kill someone. First of All, you know, if you want to kill your parents, for example, like you know, you're waiting for their will, but they're not giving you the money, you could actually kill them off. You could kill your boss, you know, your bosses, being an asshole, you could kill him just to, you know, fuck with them. Or if you're under investigation, say, you know, you've got, you know, prosecution and judge and all that sort of stuff. You could actually kill them up to make their life more difficult. Oh my gosh, you're ridiculous. And so you're saying, you're saying this flaw in the death system can also be done in the birth system? Yes. So it's exactly the same, well, it's a different system, but exactly the same as ERS for deaths. And you need two parties. So you need the doctor or midwife and you need the parents. So then, you know, the name of the child, the weight of the child and stuff like that. So the two parts would then make the birth certificate very similar to the funeral director and the doctor making a death certificate. So and if you have a home birth, you may not even have a midwife. So it's only actually done by the parents. And so once you have a online, you have an online system, you have a birth certificate that person's then born. So in theory, you can create fake children, and then when they hit a certain age, you could kill them off and get their life insurance and build up their credit and all that sort of stuff to do both of the things. Well, i was, i really like this idea of making a fake persona to use as a second identity. In case i've been bezel some money from a middle eastern millionaire and i need to leave the country. Exactly, Jack. And you think, and why have one, when you can have one hundred? So you can have a hundred fake people that have different credit. And so if you screw up your life and you go to jail and you have to come out and you go get another job or whatever. You have another clean identity, like another virtual, virtual id. And it's real, like it's not, it's not like someone entered it in the back end. It's actually registered person that you can have, you know, i suggest you keep yourself looking young because you might create someone who's zero. But there's little flaws in the system as well. And i may have mentioned that they don't want people going through life without being recorded. So you have up till the age of five to get yourself registered. So if you have, you can take five years off your virtual person by registering five years after they're born. Because they want to capture people as they go into the school system and they don't want them be to prevent it from going to school or getting driver's license or stuff like that. So you don't have to register a baby at zero, you can register them at five as well. You know, when i saw you do this talk at Defcon, i was so surprised that the government's haven't like knocked on your door and said, hey, would you shut up about this? You can't just go making killing people and making babies that are not real. You're teaching people to do bad things. Yeah, so the government haven't done shit, even since my talk now. My talk was done nine years ago, Jack. So those same flaws exist today. Nothing's changed. If you're intrigued to know more about how to kill someone like a hacker, go to YouTube and type in Chris Rock Defcon, he actually is given three talks at Defcon and they're all phenomenal. In the second talk, he explains how to overthrow a government and i have a sneaking suspicion that he's actually done it or was very much involved. With overthrowing a government in the past. Let me know if you liked him and you want me to have him back on and tell that story. And his other talk is about how to bypass radio jammers. In case someone is trying to jam your cell phone and he'll show you how to get through it. Anyway, a big thanks to Chris Rock for coming on the show and giving us a good story. Come join our discord. You can talk to a lot of people who are fans of the show. But it's also my favorite place to hang out. You can find us at discord. GG darknetDiaries. And on November nineteenth we're gonna be doing a t shirt giveaway, so you can win some cool darknet diaries. Swag. So come on over to discord. This Episode was created by me, the script kiddie it Jack Reciter. Our editor is the captain. Background ÿousand based Tristan Ledger. Mixing done by proximity. Sound in our intro music is by the mysterious brakemaster cylinder. Hey Siri, why am I so bad at women? My name is Alexa. Damn it. This is darknet diaries.