Mailing List Archive: Full Disclosure: Full-Disclosure

fear mongering and utter BS from secnap

Full Disclosure full-disclosure RSS feed

Index | Next | Previous | View Threaded

reepex at gmail

May 10, 2008, 12:13 PM

Post #1 of 6 (485 views)
Permalink

fear mongering and utter BS from secnap

Where is secreview when you actually need them? After the useless thread
about gmail blah blah I decided to check out http://www.secnap.com/ and all
I can say is WHAT THE FUCK.

The first lines of their website:
"The Internet comes with built in threats from hackers, industrial
Espionage, spyware and employee abuse."

Sounds like some homeland security brochure

Followed shortly by:
"Our Managed IPS solution includes our patent pending HackerTrap™ IPS that
will block external attacks as well as protect your company from employee
abuse and loss of confidential information. "

I would love to see some proof of them stopping confidential information
from being gathered over an internal network, but based on their site I am
sure this is more BS anyway.

Then I browse to:
http://www.secnap.com/services.php?pg=3

"Are you aware that there are an estimated 100,000 hackers on the Internet
today, actively scanning government and corporate networks, looking for
vulnerabilities they can exploit to gain access to critical corporate
information?"

Speaks for itself....

If you follow the link on this page you find a pdf here:
http://www.secnap.com/pdfs/pentest.pdf

Where it details how they will run public vulnerability scanners and compare
your banners to known vulnerable services. Who are the script kiddies here
again?

This company is trash and their members should not be allowed to post on
this list. They are Homeland Security/George Bush type fear mongering
retards trying to make a buck and scare people into their nonsense.

Looking at their site they are another group of paid script kiddies in
business suits.
You better hope that one of "100,000 internet hackers" don't have any
exploits that aren't covered by nessus or secnap will not be able to protect
you anymore.

reepex at gmail

May 10, 2008, 7:26 PM

Post #2 of 6 (449 views)
Permalink

Re: fear mongering and utter BS from secnap [In reply to]

so because I use a gmail account it means everything I said is invalid? Why
not answer some questions about your practices since it seems your company
is a bunch of script kiddies for hire & master's of scaring people into
buying services

Also where did the 100,000 hackers figure come from? Did you make this up
also?

On Sat, May 10, 2008 at 9:18 PM, Robert McGuire <rmcguire[at]secnap.com> wrote:

> I'll take you seriously when you come out from behind your gmail mask.
>
> Bob McGuire
> Director, Channel Sales East
> >| SECNAP Network Security
> Direct Line 404.446.1961
> 1-877-NOSPAM4U (877-667-7264) ext.1961
> http://www.spammertrap.com/
>
> SpammerTrap – Everything Channel Hot Product of 2008
> SECNAP Voted Hot Company of 2008 at Technosium Summit
> www.technosium.com/hotcompanies/
>
>
>
> -----Original Message-----
> From: reepex [mailto:reepex[at]gmail.com]
> Sent: Sat 5/10/2008 3:13 PM
> To: Michael Scheidell; full-disclosure[at]lists.grok.org.uk;
> bugtraq[at]securityfocus.com; dailydave[at]lists.immunitysec.com; Kevin Barnabe;
> Robert McGuire; Jennifer Hamilton
> Subject: fear mongering and utter BS from secnap
>
> Where is secreview when you actually need them? After the useless thread
> about gmail blah blah I decided to check out http://www.secnap.com/ and
> all
> I can say is WHAT THE FUCK.
>
> The first lines of their website:
> "The Internet comes with built in threats from hackers, industrial
> Espionage, spyware and employee abuse."
>
> Sounds like some homeland security brochure
>
> Followed shortly by:
> "Our Managed IPS solution includes our patent pending HackerTrapT IPS that
> will block external attacks as well as protect your company from employee
> abuse and loss of confidential information. "
>
> I would love to see some proof of them stopping confidential information
> from being gathered over an internal network, but based on their site I am
> sure this is more BS anyway.
>
> Then I browse to:
> http://www.secnap.com/services.php?pg=3
>
> "Are you aware that there are an estimated 100,000 hackers on the Internet
> today, actively scanning government and corporate networks, looking for
> vulnerabilities they can exploit to gain access to critical corporate
> information?"
>
> Speaks for itself....
>
> If you follow the link on this page you find a pdf here:
> http://www.secnap.com/pdfs/pentest.pdf
>
> Where it details how they will run public vulnerability scanners and
> compare
> your banners to known vulnerable services. Who are the script kiddies here
> again?
>
> This company is trash and their members should not be allowed to post on
> this list. They are Homeland Security/George Bush type fear mongering
> retards trying to make a buck and scare people into their nonsense.
>
> Looking at their site they are another group of paid script kiddies in
> business suits.
> You better hope that one of "100,000 internet hackers" don't have any
> exploits that aren't covered by nessus or secnap will not be able to
> protect
> you anymore.
>
> _________________________________________________________________________
> This email has been scanned and certified safe by SpammerTrap(r).
> For Information please see http://www.spammertrap.com
> _________________________________________________________________________
>

coderman at gmail

May 10, 2008, 7:45 PM

Post #3 of 6 (450 views)
Permalink

Re: fear mongering and utter BS from secnap [In reply to]

On Sat, May 10, 2008 at 7:26 PM, reepex <reepex[at]gmail.com> wrote:
> ...
> Also where did the 100,000 hackers figure come from? Did you make this up
> also?

select count(distinct(alias)) from defacements;

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

reepex at gmail

May 10, 2008, 8:56 PM

Post #4 of 6 (445 views)
Permalink

Re: fear mongering and utter BS from secnap [In reply to]

I scratched my reply to this mail because don's reply was much better

On Sat, May 10, 2008 at 10:33 PM, Robert McGuire <rmcguire[at]secnap.com>
wrote:

> I don't believe remaining anonymous invalidates comments, just seems
> unnecessary, much like FUD.
>
> Can't argue with reepex, FUD is unnecessary and utterly transparent so you
> have to wonder why every company in the "industry" perpetuates it. It's
> counterproductive in fact, makes my job more difficult so were it up to me
> it wouldn't be a part of our message.
>
> If either of you have better insight regarding the impact, cost, effect of
> spam please share.
>
>
>
> Bob McGuire
> Director, Channel Sales East
> >| SECNAP Network Security
> Direct Line 404.446.1961
> 1-877-NOSPAM4U (877-667-7264) ext.1961
> http://www.spammertrap.com/
>
> SpammerTrap – Everything Channel Hot Product of 2008
> SECNAP Voted Hot Company of 2008 at Technosium Summit
> www.technosium.com/hotcompanies/
>
>
>
> -----Original Message-----
> From: don bailey [mailto:don.bailey[at]gmail.com]
> Sent: Sat 5/10/2008 10:39 PM
> To: reepex
> Cc: Robert McGuire; Michael Scheidell; Kevin Barnabe; Jennifer Hamilton
> Subject: Re: [Full-disclosure] fear mongering and utter BS from secnap
>
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> reepex wrote:
> | so because I use a gmail account it means everything I said is invalid?
> | Why not answer some questions about your practices since it seems your
> | company is a bunch of script kiddies for hire & master's of scaring
> | people into buying services
> |
> | Also where did the 100,000 hackers figure come from? Did you make this
> | up also?
> |
> | On Sat, May 10, 2008 at 9:18 PM, Robert McGuire <rmcguire[at]secnap.com
> | <mailto:rmcguire[at]secnap.com>> wrote:
> |
> | I'll take you seriously when you come out from behind your gmail
> mask.
> |
> | Bob McGuire
> | Director, Channel Sales East
>
> You may not want to take him seriously, but I suggest you take
> his questions seriously. People in this industry don't particularly
> appreciate FUD or bullshit "facts".
>
> And my name really is "Don Bailey" so you can be assured that I'm
> not hiding behind any "mask".
>
> D
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v2.0.9 (GNU/Linux)
>
> iEYEARECAAYFAkgmXFIACgkQttfe3HwtctNlQQCeNgdVXFuoy3zJbDwf81i07qyc
> 5JEAniRfy6fCyRPL5c76UCPwlLizk3aU
> =TC/X
> -----END PGP SIGNATURE-----
>
> _________________________________________________________________________
> This email has been scanned and certified safe by SpammerTrap(r).
> For Information please see http://www.spammertrap.com
> _________________________________________________________________________
>

reepex at gmail

May 10, 2008, 8:57 PM

Post #5 of 6 (447 views)
Permalink

Re: fear mongering and utter BS from secnap [In reply to]

very well said :)

I guess bullshit and made up stats are acceptable since everyone else is
doing it.

On Sat, May 10, 2008 at 10:49 PM, don bailey <don.bailey[at]gmail.com> wrote:

> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> Robert McGuire wrote:
> | I don't believe remaining anonymous invalidates comments, just seems
> unnecessary, much like FUD.
> |
> | Can't argue with reepex, FUD is unnecessary and utterly transparent so
> you have to wonder why every company in the "industry" perpetuates it.
> It's counterproductive in fact, makes my job more difficult so were it
> up to me it wouldn't be a part of our message.
> |
> | If either of you have better insight regarding the impact, cost,
> effect of spam please share.
> |
>
> Well now that you're admitting that FUD is part of your business model
> I'm saddened that this e-mail isn't to a public mailing list. I'm sure
> many professionals would be interested in your ethics. Blaming other
> companies in the security industry is child's play and only serves
> to make you look foolish.
>
> I find it extremely laughable that you are attempting to redirect this
> discussion to "the impact, cost, effect of spam". Our focus is your
> company's blatant use of fake "facts" to push your product. Do you
> really think you're talking to adolescents? I'm not distracted by
> your shiny nickel. Either stay on topic or end the conversation.
>
> D
>
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v2.0.9 (GNU/Linux)
>
> iEYEARECAAYFAkgmbKsACgkQttfe3HwtctNreACgkS4VrTOS00qxmdnFigrXmnHW
> lK0AnjYr1Ob52O6nlM2pZJsPOr0H9Dlz
> =tNH1
> -----END PGP SIGNATURE-----
>

fdiggle at gmail

May 10, 2008, 11:05 PM

Post #6 of 6 (445 views)
Permalink

Re: fear mongering and utter BS from secnap [In reply to]

1 row returned -> Fredrick Diggle Security

On Sat, May 10, 2008 at 9:45 PM, coderman <coderman[at]gmail.com> wrote:
> On Sat, May 10, 2008 at 7:26 PM, reepex <reepex[at]gmail.com> wrote:
> > ...
>
> > Also where did the 100,000 hackers figure come from? Did you make this up
> > also?
>
> select count(distinct(alias)) from defacements;
>
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/
>

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Index | Next | Previous | View Threaded

Interested in having your list archived? Contact lists@gossamer-threads.com