Adrian Lamo — Part 3

501 pages · May 15, 2026 · Broad topic: General · Topic: Adrian Lamo · 501 pages OCR'd

‹

TRATIETEIINI b6é -1,2 02/26/2002 08:11 PM b7c -1,2 To: ce: Subject: NYT Hacker Article just posted -- http://online.securityfocus.com/news/342NEWS New York Times Internal Network Hacked How open proxies and default passwords led to Adrian Lamo padding his rolodex with information on 3,000 op-ed writers, from William F. Buckley Jr. to Jimmy Carter. By Kevin Poulsen Feb 26 2002 4:15PM PT Security holes in the New York Times internal network left sensitive databases exposed to hackers, ineluding a file containing social security numbers and home phone numbers for contributors to the Times op-ed page, SecurityFocus ° Online has learned. In a two-minute scan performed on a whim, twenty-one-year-old hacker and sometimes-security consultant Adrian Lamo . discovered no less than seven misconfigured proxy servers acting as doorways between the public Internet and the Times' private intranet, making the latter accessible to anyone capable of properly configuring their Web browser. - “The very first server | looked at was running an open proxy," says Lamo. “The server practically approached me." Once on the newspaper's network, Lame exploited weaknesses in the Times password policies to broaden his access, eventually browsing such disparate information as the names and social security numbers of the paper's employees, logs of home delivery customers’ stop and start orders, instructions and computer dial-ups for stringers to file stories, lists of contacts used by the Metro and Business desks, and the “WireWatch" keywords particular reporters had selected for monitoring wire services. But measured by sheer star power, the hack is most notable for Lamo's access to a database of 3,000 contributors to the Times op-ed page, the august soap box of the cultural elite and politically powerful. The roster includes social security numbers for former U.N. weapons inspector Richard Butler, Democratic operative James Carville, ex-NSA chief Bobby Inman, Nannygate veteran Zoe Baird, former secretary of state James Baker, FBI(19-cv-1495)-1607

›

TRATIETEIINI

b6é -1,2

02/26/2002 08:11 PM b7c -1,2

To:
ce:

Subject: NYT Hacker Article just posted --

http://online.securityfocus.com/news/342NEWS
New York Times Internal Network Hacked

How open proxies and default passwords led to Adrian Lamo padding his rolodex with
information on 3,000
op-ed writers, from William F. Buckley Jr. to Jimmy Carter.

By Kevin Poulsen
Feb 26 2002 4:15PM PT

Security holes in the New York Times internal network left sensitive databases exposed to
hackers, ineluding a file

containing social security numbers and home phone numbers for contributors to the Times op-ed
page, SecurityFocus °

Online has learned.

In a two-minute scan performed on a whim, twenty-one-year-old hacker and sometimes-security
consultant Adrian Lamo .

discovered no less than seven misconfigured proxy servers acting as doorways between the
public Internet and the

Times' private intranet, making the latter accessible to anyone capable of properly configuring
their Web browser. -

“The very first server | looked at was running an open proxy," says Lamo. “The server
practically approached me."

Once on the newspaper's network, Lame exploited weaknesses in the Times password
policies to broaden his access, eventually browsing such disparate information as the
names and social security numbers of the paper's employees, logs of home delivery
customers’ stop and start orders, instructions and computer dial-ups for stringers to file
stories, lists of contacts used by the Metro and Business desks, and the “WireWatch"
keywords particular reporters had selected for monitoring wire services.

But measured by sheer star power, the hack is most notable for Lamo's access to a
database of 3,000 contributors to the Times op-ed page, the august soap box of the
cultural elite and politically powerful.

The roster includes social security numbers for former U.N. weapons inspector Richard Butler,
Democratic operative

James Carville, ex-NSA chief Bobby Inman, Nannygate veteran Zoe Baird, former secretary of
state James Baker,

FBI(19-cv-1495)-1607

TRATIETEIINI

b6é -1,2

02/26/2002 08:11 PM b7c -1,2

To:
ce:

Subject: NYT Hacker Article just posted --

http://online.securityfocus.com/news/342NEWS
New York Times Internal Network Hacked

How open proxies and default passwords led to Adrian Lamo padding his rolodex with
information on 3,000
op-ed writers, from William F. Buckley Jr. to Jimmy Carter.

By Kevin Poulsen
Feb 26 2002 4:15PM PT

Security holes in the New York Times internal network left sensitive databases exposed to
hackers, ineluding a file

containing social security numbers and home phone numbers for contributors to the Times op-ed
page, SecurityFocus °

Online has learned.

In a two-minute scan performed on a whim, twenty-one-year-old hacker and sometimes-security
consultant Adrian Lamo .

discovered no less than seven misconfigured proxy servers acting as doorways between the
public Internet and the

Times' private intranet, making the latter accessible to anyone capable of properly configuring
their Web browser. -

“The very first server | looked at was running an open proxy," says Lamo. “The server
practically approached me."

The roster includes social security numbers for former U.N. weapons inspector Richard Butler,
Democratic operative

James Carville, ex-NSA chief Bobby Inman, Nannygate veteran Zoe Baird, former secretary of
state James Baker,

FBI(19-cv-1495)-1607

OCR quality for this page

Community corrections

First editor: none yet Last editor: none yet

No user corrections yet.

Comments

Document-wide discussion. Follow the Community Standards.

No comments on this document yet.

1 2 3 4 5 501

Continue Exploring

Use the strongest next step for this document: continue reading, jump to the topic hub, or move into the matching agency collection.

Continue Reading at Page 4

Jump straight to page 4 of 501.

Reader

Adrian Lamo — Part 2

Stay inside Adrian Lamo with another closely related document.

Topic

FBI Documents & FOIA Archive

Open the FBI agency landing page for stronger archive context.

FBI

Adrian Lamo Topic Hub

See the topic overview, related documents, and linked subtopics.

Hub

Agency Collection

This document also belongs in the FBI Documents & FOIA Archive landing page, which is the stronger starting point for agency-level browsing and for searches focused on FBI records.

FBI Documents & FOIA Archive

Open the agency landing page for introduction text, topic links, and more FBI documents.

FBI

Explore This Archive Cluster

This document belongs to the General archive hub and the more specific Adrian Lamo topic page. Use these hub pages when you want the broader collection context, linked subtopics, and more documents around the same archive thread.

Broad Topic Hub

General

1802 documents · 617 subtopics

Topic Hub

Adrian Lamo

4 documents · 1324 known pages

letter bureau

Related subtopics

John Murtha

57 documents · 1471 known pages

Subtopic

Sen Joseph Joe Mccarthy

42 documents · 2653 known pages

Subtopic

D B Cooper

41 documents · 13789 known pages

Subtopic

Kansas City Massacre

38 documents · 5300 known pages

Subtopic

Black Panther Party

36 documents · 3066 known pages

Subtopic

Malcolm X

36 documents · 3932 known pages

Subtopic