Updates Below the Fold…
As I mentioned yesterday the FBI and Secret Service have opened a criminal investigation into the unauthorized access of Sarah Palin’s private e-mail account. That investigation is undoubtedly progressing quietly outside the public view.
According to media reports the Associated Press has refused a Secret Service request for copies of the stolen e-mails. Smooth move AP, I can understand your desire to protect your sources, but the theft of those e-mails represent a gross violation of Sarah Palin’s privacy. You can either be part of problem or part of the solution.
On the bright side the operator of the proxy service used by the hacker is ready and willing to cooperate with investigators. From The Register:
Memo to US Secret Service: Net proxy may pinpoint Palin email hackers
Not quite Anonymous
By Dan Goodin in San Francisco
Posted in Security, 18th September 2008 01:22 GMT
Memo to law enforcement investigators tracking down who broke into Sarah Palin’s Yahoo email account: Gabriel Ramuglia might be a good place to start.
The 25-year-old webmaster and entrepreneur is the operator of Ctunnel.com, the browsing proxy service used by the group that hacked into the vice presidential candidate’s personal email account and exposed its contents to the world. While he has yet to examine his logs, he says there’s a good chance they will lead to those responsible, thanks to some carelessness on their part.
“Usually, this sort of thing would be hard to track down because it’s Yahoo email, and a lot of people use my service for that,” he told El Reg in a phone interview. “Since they were dumb enough to post a full screenshot that showed most of the [Ctunnel.com] URL, I should be able to find that in my log.”
Ramuglia got into the proxy business a few years ago, after schools began blocking access to an online game site he used to co-own. Pretty soon, people began using the proxy service to access YouTube, Gmail, MySpace, and dozens of other sites that are routinely blocked by IT departments.
As an aside… I used to carry a badge, criminal investigations happen at their own pace. I wouldn’t expect to hear much, if anything, about the progress of this investigation for several days.
Update: I’ve seen several reports stating that the son of Tennessee state Representative has been contacted by investigators in connection with the probe into the hacking of Sarah Palin’s personal e-mail account. I will not quote from or link to those reports until such time as there is statement from the FBI or Secret Service… If reports are accurate that person has not been arrested or charged with any crime. I would urge everyone to tread lightly until we know more.
Update 10:12 p.m. eastern: Dean @ blogs4God has good rundown on how Sarah Palin’s e-mail private e-mail was hacked:
In plain English – how they hacked Sarah Palin’s Yahoo account
Sep 18th, 2008, by Dean.
Here is a plain English explanation of how Sara Palin’s Yahoo email account was compromised via Yahoo’s password recovery system – and the ugly fall-out that ensued.
- Last week, the Washington Post published an article about Sarah Palin’s use a private Yahoo e-mail account , allegedly for State business.
- firstname.lastname@example.org is published for public consumption by ThinkProgress.org and CommonDreams.org.
- Not long after that, the account was locked after numerous attempts by individuals attempting to gain access.
For Additional Updates see: