[e-gold-list] GoldNow.st Still in Business?

[BigBooster]

Does anybody know if GoldNow.st is still
in business?
Two friends I referred to them say that
GoldNow hasn't funded their debit cards,
for more than a week, isn't answering emails,
and seems to have "hijacked" their money.
Frederick Mann

---
You are currently subscribed to e-gold-list as: [EMAIL PROTECTED]
To unsubscribe send a blank email to [EMAIL PROTECTED]
Use e-gold's Secure Randomized Keyboard (SRK) when accessing your e-gold account(s) via the web and shopping cart interfaces to help thwart keystroke loggers and common viruses.

[e-gold-list] Does Steve Renner Pay?

[BigBooster]

About a week ago, I requested a transfer
from VCash to my e-gold a/c.
Does anyone know:
(a) Does Steve Renner actually honor such transfers?
(b) If yes, how long does it usually take?
(c) What can be done to persuade Steve to pay?
Frederick Mann



---
You are currently subscribed to e-gold-list as: [EMAIL PROTECTED]
To unsubscribe send a blank email to [EMAIL PROTECTED]
Use e-gold's Secure Randomized Keyboard (SRK) when accessing your e-gold account(s) via the web and shopping cart interfaces to help thwart keystroke loggers and common viruses.

[e-gold-list] CashCards.net Still in Business?

[BigBooster]

Does anyone know if CashCards.net is still
in business or how to contact them?
They seem to have stopped funding cards
with money sent to them. Also not asnwering
emails or their phone.
Frederick Mann



---
You are currently subscribed to e-gold-list as: [EMAIL PROTECTED]
To unsubscribe send a blank email to [EMAIL PROTECTED]
Use e-gold's Secure Randomized Keyboard (SRK) when accessing your e-gold account(s) via the web and shopping cart interfaces to help thwart keystroke loggers and common viruses.

[e-gold-list] Looking for Debit Cards

[BigBooster]

I'm looking for debit cards that can
be funded via e-gold at reasonable rates
with good service.
Does anyone know of a website that provides
a comparison between different debit cards
fundable via e-gold?
Frederick Mann
""
---
You are currently subscribed to e-gold-list as: [EMAIL PROTECTED]
To unsubscribe send a blank email to [EMAIL PROTECTED]
Use e-gold's Secure Randomized Keyboard (SRK) when accessing your e-gold account(s) via the web and shopping cart interfaces to help thwart keystroke loggers and common viruses.

[e-gold-list] Re: WARNING! Unable to login to e-gold account.

[BigBooster]

See E-Gold and Alternative Currency FAQ


You're also welcome to to join Gold Account Security discussion
list to ask questions and discuss issues reated to alternative
countires -- to subscribe, send a blank email to
<[EMAIL PROTECTED]>
or join at .

Frederick Mann

--On Tuesday, October 01, 2002 07:43:05 PM -0700 "J. D." 
<[EMAIL PROTECTED]> wrote:

>  I would like to inform you that I can't login to my
> e-gold account!!! I have 500$ in there, I didn't
> changed the password , never revealed my password to
> anyone, in anyway, so the only ones who know my
> password is me and e-gold.com !! Who obviously changed
> my pasword or have some very big problems in the
> system. I want  to notice that I didn't used any
> exchangers or market makers so there are no other
> suspects in this matter.


---
You are currently subscribed to e-gold-list as: archive@jab.org
To unsubscribe send a blank email to [EMAIL PROTECTED]

Use e-gold's Secure Randomized Keyboard (SRK) when accessing your e-gold account(s) 
via the web and shopping cart interfaces to help thwart keystroke loggers and common 
viruses.

[e-gold-list] Re: The market stats

[BigBooster]

Where did you get your 869,910 from?

My guess is that there may very well be of
the order of at least 100,000,000 people in
the world with per capita income of $10,000+.

If someone opens an a/c and never uses it,
that hardly represents penetration! There
are about 150,000 funded e-gold a/cs. Some
active users have multiple a/cs -- I have
about 10. Allowing for this, there may be
about 100,000 active e-gold users.

These numbers and assumptions suggest a
market penetration of about 0.1% of the
target market.

Frederick Mann
E-Gold and Alternative Currency FAQ


--On Monday, July 22, 2002 10:36:35 AM -0400 George Matyjewicz 
<[EMAIL PROTECTED]> wrote:

> Assuming folks with per capita income over $10,000 would be the target
> market for gold, that means there are approx 869,910 people who are
> candidates.  Since e-gold now has 491,415 accounts, it looks like they
> reached 56.5% of the target market.  That's quite an impressive reach.


---
You are currently subscribed to e-gold-list as: archive@jab.org
To unsubscribe send a blank email to [EMAIL PROTECTED]

Use e-gold's Secure Randomized Keyboard (SRK) when accessing your e-gold account(s) 
via the web and shopping cart interfaces to help thwart keystroke loggers and common 
viruses.

[e-gold-list] Re: antiscam OSGold?

[BigBooster]

>Frederick,
>
>Your card is now active. As regards to funding it, we are waiting for
>OSGold to redeem funds to us.
>
>Would you like a refund for the funded amount?
>
>Graham Kelly CEO

Graham,

I sent you $500 on 5/14/02 to fund my card -- long
before OSGold started their "non-redemption game."

I suggest you use some of the funds you get for
the OSGold purchases you receive to fund my card.

Frederick Mann

--On Monday, July 08, 2002 02:55:44 AM + Graham Kelly 
<[EMAIL PROTECTED]> wrote:

> Most people "in the know" are negative about OSGold... and I don't blame
> them. However, I believe OSGold'll get going again, once they sort out
> their banking problems.
>
> I could be wrong, but I don't think so. Time will tell...
>
> Graham Kelly CEO

> Apply for your GoldNow anonymous debit card, now! 

---
You are currently subscribed to e-gold-list as: archive@jab.org
To unsubscribe send a blank email to [EMAIL PROTECTED]

Use e-gold's Secure Randomized Keyboard (SRK) when accessing your e-gold account(s) 
via the web and shopping cart interfaces to help thwart keystroke loggers and common 
viruses.

[e-gold-list] Fund Debit Card / antiscam OSGold? (fwd) (fwd)

[BigBooster]

Graham,

So, when do you plan to activate and fund
my debit card?

Frederick Mann

--On Sunday, July 07, 2002 08:11:26 PM + Graham Kelly
<[EMAIL PROTECTED]> wrote:

> Naturally, our OSGold purchase order level has reduced, but we are still
> getting plenty of OSGold purchase orders, at NORMAL rates.

> Graham Kelly CEO

> Apply for your GoldNow anonymous debit card, now!



---
You are currently subscribed to e-gold-list as: archive@jab.org
To unsubscribe send a blank email to [EMAIL PROTECTED]

Use e-gold's Secure Randomized Keyboard (SRK) when accessing your e-gold account(s) 
via the web and shopping cart interfaces to help thwart keystroke loggers and common 
viruses.

[e-gold-list] Re: CardAccounts.tv alert

[BigBooster]

I've seen several similar complaints on other
forums during the past week.

Frederick Mann
* Alternative Currency Debit & Credit Cards



--On Monday, June 10, 2002 06:22:41 PM -0400 GoldSpender 
<[EMAIL PROTECTED]> wrote:

> Greetings Ladies and Gentlemen!
>
> I don't understand what's going on with the CardAccounts.tv service, but
> it seems to be something terrible. I sent them a funding request for $2100
> about a week ago, and there are still no funds on my debit card. I've
> contacted them several times and got some replies, but the fact is that my
> card remains unfunded. My latest request for $2000 was processed
> successfully and fast enough. What happened?
>
> WBR,
> Paul
>


---
You are currently subscribed to e-gold-list as: archive@jab.org
To unsubscribe send a blank email to [EMAIL PROTECTED]

Use e-gold's Secure Randomized Keyboard (SRK) when accessing your e-gold account(s) 
via the web and shopping cart interfaces to help thwart keystroke loggers and common 
viruses.

[e-gold-list] Articles on Alternative Currencies

[BigBooster]

I've recently added four articles on alternative currencies
to BuildFreedom.com:

* Is the Private Sector Really Part of the Public Sector?
<http://www.buildfreedom.com/economic/eco_10.html>
* E-Gold and Alternative Currency FAQ
<http://www.buildfreedom.com/economic/eco_11.html>
* Alternative Currency Debit & Credit Cards
<http://www.buildfreedom.com/economic/eco_12.html>
* Massive Change Is Upon Us
<http://www.buildfreedom.com/economic/eco_13.html>

The articles may be of interest to anyone involved in
businesses utilizing digital gold currencies and other
alternative currencies and payment systems.

* E-Gold and Alternative Currency FAQ
<http://www.buildfreedom.com/economic/eco_11.html>
includes some security information that may be of
interest to people with individual alternative currency
accounts.

The articles may also be of interest to anyone to
whom the expansion of freedom is important.

I would appreciate suggestions for improving
the articles.

Frederick Mann

Earn BIG! Save BIG! Give away SUPER STORES online FREE!
Saving and earning has never been easier! Get yours FREE TODAY!
<http://www.freestoreclub.com/go/bigbooster>


---
You are currently subscribed to e-gold-list as: archive@jab.org
To unsubscribe send a blank email to [EMAIL PROTECTED]

Use e-gold's Secure Randomized Keyboard (SRK) when accessing your e-gold account(s) 
via the web and shopping cart interfaces to help thwart keystroke loggers and common 
viruses.

[e-gold-list] Re: Is anyone trying to hack e-gold account during Christmas holiday?

[BigBooster]

There have been invalid access attempts on all my e-gold a/cs, today
and yesterday. The higher the a/c #, the later the attempt. (Fortunately,
nothing stolen.)

Several people on another list have reported similar hacking attempts.

This suggests that someone has written a program to automatically
attempt to access each e-gold a/c in turn, probably using the same
password, with the hope that someone is using that password. (It's
relatively easy to write such a program.)

If so, the thief can continue endlessly checking all e-gold a/cs for
particular passwords.

It's probably wise to make passwords long and complex.

Gold Account Security discussion list -- to subscribe, send
a blank email to <[EMAIL PROTECTED]>
or join at .

Frederick Mann

At 06:02 PM 12/25/2001 -0500, "CW" <[EMAIL PROTECTED]> wrote:
>Hi to e-gold users:
>When I logged into my e-gold account I have noticed
>that last login invalid attempt was sometimes earlier today, 25/12/2001.
>My other accounts have also registered invalid attempts, at various times,
>according to the order of the account number: The larger the account
>number, the later time was registered.
>Similar situation also happened to a friend of mine, who also held several
>accounts.
>I wonder if similar situation also happened to anyone of you? Or is this
>just a bug on e-gold server?


---
You are currently subscribed to e-gold-list as: archive@jab.org
To unsubscribe send a blank email to [EMAIL PROTECTED]

http://www.e-gold.com/stats.html lets you observe the e-gold system's activity now!

[e-gold-list] Andros Bank

[BigBooster]

Does anyone have any experience with Andros Bank
?

We are pleased to now accept direct deposits to your
bank account with us from the following..
E-Gold
O/S Gold
Evocash
E-bullion
Standard Reserve

Frederick Mann


---
You are currently subscribed to e-gold-list as: archive@jab.org
To unsubscribe send a blank email to [EMAIL PROTECTED]

http://www.e-gold.com/stats.html lets you observe the e-gold system's activity now!

[e-gold-list] Re: Nothing ? e-gold ripped off / osgold ripped off

[BigBooster]

At 10:08 PM 12/07/2001 -0500, "Boby Storm" <[EMAIL PROTECTED]> wrote:
>I have something to report. JPM what about this: on 1st of Octomber 2001 I
>checked my account and everything was ok, my money were there. I checked
>my balance yesterday and NOTHING. How do you explain this ? I never
>accepted to send my money to anyone than me and somebody broke into my
>account and spend all my money from there ? What security offers E-gold ?
>Where are my money now ? I want some IP's from where was the transfer done
>to know where to fly and kill that scammer ! Same, OSGOLD tricked me with
>more than $6,000 that I had into my account and yesterday nothing. Explain
>! I wrote another message yesterday and why is not here posted ? Explain
>also !

Here's a possible explanation, which may or may
not apply in your case:

1. You use a Windows system.

2. A hacker-thief planted a Trojan in your system.
(This could have been done when you opened an
attachment or accessed a website.)

3. The Trojan sends the hacker-thief your IP address.

4. The hacker-thief logs into your system remotely.
(You have no way of finding out when someone logs
into your system remotely.)

5. The hacker-thief obtains account access information
from your system and uses it to raid your accounts.

Frederick Mann

Gold Account Security discussion list -- to subscribe, send
a blank email to <[EMAIL PROTECTED]>
or join at .


---
You are currently subscribed to e-gold-list as: archive@jab.org
To unsubscribe send a blank email to [EMAIL PROTECTED]

http://www.e-gold.com/stats.html lets you observe the e-gold system's activity now!

[e-gold-list] Re: e-gold customer confidence down?

[BigBooster]

At 12:05 PM 10/04/2001 -0700, Dagny Taggart <[EMAIL PROTECTED]> wrote:
>Sold another six bars?
>
>Wow, I think that is a first to have six bars at once
>disappear from examiner?
>
>Dagny

It may not be related to customer confidence.

I know of someone who has collected well over a million $s
in e-gold (and OSGold) and shifted it into an offshore a/c for
an investment program.

Frederick Mann

For some great high-yield programs that work well see
<http://www.bigbooster.com/business_opportunities/#PLC>.
Scroll down and register as BigBooster Associate.
Or go direct to <http://www.bigbooster.com/plc>.


---
You are currently subscribed to e-gold-list as: archive@jab.org
To unsubscribe send a blank email to [EMAIL PROTECTED]

Did you know that e-metal is a wonderful holiday gift? Avoid the hassle this year! 

[e-gold-list] Re: e-Bullion Article

[BigBooster]

The de facto "US Constitution" consists of eight words:

ANYTHING GOES... THAT WE CAN GET AWAY WITH.

Frederick Mann

At 01:12 PM 07/21/2001 -0400,Craig Spencer <[EMAIL PROTECTED]> wrote:

>There are all sorts of ways (what the government is fond of calling
>enforcement "tools") that ANYONE in the US can be targeted, jailed,
>bankrupted, have all their property stolen and generally have their
>life made a living hell without ANY legal process, let alone "guilt"
>of anything (just or not) being proven. 


---
You are currently subscribed to e-gold-list as: archive@jab.org
To unsubscribe send a blank email to [EMAIL PROTECTED]

[e-gold-list] Re: My security measures [Log-in #]

[BigBooster]

You make an important point. Though there's still a touch
of "It's OK to leave the door half open, because closing it
won't protect you against a gang with a battering ram."

Why make it easy for even relatively unskilled hackers to
raid e-gold a/cs?

What becomes even clearer from your post is that it's
dangerous if hackers find out you have an e-gold a/c,
you use Windows, and your system is insecure.

Maybe e-gold and GoldMoney should provide clients with
some guidelines on how to make their systems more
secure. I no longer use a Windows system to access my
e-gold a/cs. I don't use a computer that receives or sends
email to access my e-gold a/cs. Also firewalls.

Frederick Mann


At 11:49 PM 06/12/2001 +0200, Luc Van den Borre wrote:
>MIME-Version: 1.0
>Content-Type: text/plain;
> charset="iso-8859-1"
>Content-Transfer-Encoding: 7bit
>X-Priority: 3
>X-MSMail-Priority: Normal
>X-Mailer: Microsoft Outlook Express 5.50.4522.1200
>X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4522.1200
>
>| In another case, the hacker doesn't know the log-in #. He
>| most likely does not have a practical way of quickly identifying

>| any string of characters as the log-in # for an e-gold a/c. This
>| makes it much more difficult for the hacker to find the log-in #
>| and the password.
>
>This is assuming the hacker is using an off-the-shelf keyboard sniffer.
>It would be fairly straightforward for a skilled programmer to write a Trojan
>that targets e-gold account access specifically, using more sophisticated ways
>than keyboard sniffing. It wouldn't take me long to write a program that, for
>example, intercepts calls to wininet.dll, neatly extracting all the needed
>log-in, account info and passwords.
>
>Voila, the log-in number now offers no extra protection. How long would it 
>take
>to implement this if e-gold decides to use log-in numbers - a day perhaps?
>
>Using a hidden log-in number amounts to 'security through obscurity' - 
>which is
>a false and temporary security at best.
>
>The best recipe for security is keeping your system safe (not always easy,
>certainly on Windows), and using a 'hard' passphrase. Catching the thief after
>the act is not going to get easier.
>
>IMHO,
>
>--Luc


---
You are currently subscribed to e-gold-list as: archive@jab.org
To unsubscribe send a blank email to [EMAIL PROTECTED]

[e-gold-list] Re: Funds stolen from Account

[BigBooster]

At 04:56 PM 06/12/2001 -0400, "Viking Coder" <[EMAIL PROTECTED]> wrote:
> > Because of the fact that you have to make your e-gold a/c# public to 
> receive
> > payments, you provide hackers with half of what they need to access your
> > a/c.
>
>Wrong. The above is only true if your passphrase is extremely easy to
>guess. Just because I know where the bank is doesn't mean that I have half
>of what I need to steal from it. The acct# is half of what *you* need to
>access the account. However, the acct# is simply an address. It is very
>easy to choose an acct#; 256437 is a valid e-gold acct#. That doesn't make
>it any easier to break into. It is only easy if you have an easily guessed
>passphrase.

Picture a hacker receiving data streams from a number of
Trojans he's planted in the computers of e-gold a/c holders.

In one case, he knows the e-gold a/c #. He has a program
which scans the data stream, looking for the a/c #. When
he finds it, it's very likely that what follows is the password.
This makes it very easy for the hacker to find the password.

In another case, the hacker doesn't know the log-in #. He
most likely does not have a practical way of quickly identifying
any string of characters as the log-in # for an e-gold a/c. This
makes it much more difficult for the hacker to find the log-in #
and the password.

How easy or difficult the password is to guess doesn't make
much difference. Little, if any, guessing is involved. The hacker
reads whatever follows the a/c # in the data stream.

(The Trojan could even be written so it produces a data stream
only for the characters following a specific e-gold a/c #.)

> > I suggest you contact Douglas Jackson <[EMAIL PROTECTED]> and
> > request that he upgrade his system, to provide a log-in# which is
> > different from the a/c#. You never reveal the log-in# to anyone.
>
>So how would propose to make this type of change backward compatible? Do
>we just tell people who don't have valid contact infomation to piss off
>and forget about their acct? How long before the cries of 'e-gold stole my
>acct and won't let me access it anymore'? The acct# isn't the problem.
>Your computer's security and/or  your choice of passphrase is.

e-gold can communicate with its a/c holders via email and notices
on its website. Accommodation can be made for those who wish
to continue to use their a/c # as a log-in #.

I urge everyone with an e-gold a/c to continue contacting Douglas
Jackson <[EMAIL PROTECTED]> until he corrects this absurd
and unnecessary weakness in his system.

Such issues can be further discussed on the
Gold Account Security discussion list -- to subscribe, send
a blank email to <[EMAIL PROTECTED]>
or join at .

Frederick Mann




---
You are currently subscribed to e-gold-list as: archive@jab.org
To unsubscribe send a blank email to [EMAIL PROTECTED]

[e-gold-list] Re: My security measures

[BigBooster]

At 03:40 PM 06/12/2001 -0400, Paul Richards <[EMAIL PROTECTED]> wrote:

>Seems to me, that if a keyboard sniffer is present, then typing a login ID 
>would be reported, along with the password, so what difference would 
>having another ID make?!

It makes a huge difference.

Picture a hacker receiving data streams from a number of
Trojans he's planted in the computers of e-gold a/c holders.

In one case, he knows the e-gold a/c #. He has a program
which scans the data stream, looking for the a/c #. When
he finds it, it's very likely that what follows is the password.
This makes it very easy for the hacker to find the password.

In another case, the hacker doesn't know the log-in #. He
most likely does not have a practical way of quickly identifying
any string of characters as the log-in # for an e-gold a/c. This
makes it much more difficult for the hacker to find the log-in #
and the password.

Such issues can be further discussed on the
Gold Account Security discussion list -- to subscribe, send
a blank email to <[EMAIL PROTECTED]>
or join at .

Frederick Mann


---
You are currently subscribed to e-gold-list as: archive@jab.org
To unsubscribe send a blank email to [EMAIL PROTECTED]

[e-gold-list] Re: Funds stolen from Account

[BigBooster]

At 10:59 PM 06/11/2001 -0400, [EMAIL PROTECTED] wrote:
>My entire balance was taken on a spend to "goldmine" on
>June 9. Problem is, I didn't do the spend, never heard of
>"goldmine" and have NEVER, absolutely NEVER told anyone
>my passphrase. EVER. NOBODY! Also, I have never told
>anyone my balance! I reported this to Omnipay immediately,
>but found no answers...just another (yawn) weirdo who gave
>out his passphrase to some crook. Well, not this time...
>
>Note that someone not only knew my passphrase, but also
>my BALANCE! Is this just an ingenious hacker, who entered
>the e-gold system, and made off with the loot, or ?
>
>I have been a member since the beginning, and have been an
>avid supporter of E-Gold. I now feel that something smells
>very badly WITHIN E-gold.

There have been numerous reports recently of e-gold accounts being raided.
I've personally been affected to the tune of nearly 3K.

Because of the fact that you have to make your e-gold a/c# public to receive
payments, you provide hackers with half of what they need to access your
a/c. (Making your e-gold a/c# known also subjects you to someone repeatedly
trying to access your a/c, making it inaccessible. You then have to get e-gold
to change the password and send the new password to you. This has also
happened to me.)

There are almost certainly people selling software to potential e-gold
thieves that makes it very easy for them to plant a Trojan Horse in your
Windows-based system and access your e-gold a/c if they know your
a/c#. (I have several e-gold a/cs. The only one raided was the one for
which the thief knew the a/c# because I made it public.)

I suggest you contact Douglas Jackson <[EMAIL PROTECTED]> and
request that he upgrade his system, to provide a log-in# which is
different from the a/c#. You never reveal the log-in# to anyone. (Having
to make my e-gold a/c# public has cost me nearly 3K.)

If Mr. Jackson responds that doing the above won't protect you against
all types of hacker attacks, tell him that it's silly to leave your door half
open, because closing it won't protect you against a gang with a
battering ram.

I suggest you continue hounding Douglas Jackson <[EMAIL PROTECTED]>
until he corrects this absurd and unnecessary weakness in the e-gold
system. You could also ask everyone you know who has an e-gold a/c
to hound Mr. Jackson until he corrects his system.

(Personally, I no longer use a Windows-based computer to access my
e-gold a/cs -- I use another operating system. I also wouldn't use a
computer that receives or sends email to access my e-gold a/cs.)

Frederick Mann


---
You are currently subscribed to e-gold-list as: archive@jab.org
To unsubscribe send a blank email to [EMAIL PROTECTED]

[e-gold-list] Keyboard Sniffer Detection

[BigBooster]

At 10:37 AM 05/24/2001 +1000, [EMAIL PROTECTED] wrote:
>For the record, can those who know post up some suggestions of good
>programs that can be run on Windows machines to look for keyboard
>sniffers?  I already use anti-v and firewall software (ZoneAlarm), but
>some sort of scanning software that can be run periodically would be
>handy, too (paranoia is good!).
>
>Thanks,
>
>Brendan.

Try TDS-3 Trojan Defence Suite
.

It's the best I've found.

Frederick Mann





---
You are currently subscribed to e-gold-list as: archive@jab.org
To unsubscribe send a blank email to [EMAIL PROTECTED]

[e-gold-list] Re: Open Letter to Douglas Jackson: E-gold Weakness

[BigBooster]

At 01:47 AM 05/24/2001 +0200, <[EMAIL PROTECTED]> wrote:

>It is a granted here that we are talking about protection from sophisticated
>trojans, keyboard sniffers etc. I think most of us on this list know that we
>should have good passphrases and should not enter them on other sites.
>That's not what I'm worried about. If someone can convince me that that's my
>only concern, I will be very happy, but Frederick's story appears to confirm
>my fears.
The hacker was pretty sophisticated.

The three files added to my startup menu were added
on Jan 29, Feb 6, and Mar 4, respectively.

The Trojan itself was installed on Apr 20.

The raid took place on Apr 27.

The first Anti-Tojan software I used to scan my system did not detect
even one of the above files. I then searched for the best Anti-Trojan
package I could locate. It identified the above files as "suspicious" or
"possible Trojan."

Frederick Mann


---
You are currently subscribed to e-gold-list as: archive@jab.org
To unsubscribe send a blank email to [EMAIL PROTECTED]

[e-gold-list] Re: Open Letter to Douglas Jackson: E-gold Weakness

[BigBooster]

At 07:02 PM 05/23/2001 -0400, "Viking Coder" <[EMAIL PROTECTED]> wrote:

>The more important lesson here is to not open every single attachment sent
>to you and to be sure that you are ONLY entering your passphrase at the
>https://www.e-gold.com site; NOT the http://www.e-qold.com site. Also make
>sure you have a secure, hard to guess passphrase.
A Trojan Horse can be implemented in your system without
your opening any attachment. It can be installed as a result
of accessing a malicious website. (I never accessed e-qold
-- my browser "remembers" sites I've accessed and doesn't
remember e-qold.

Frederick Mann


---
You are currently subscribed to e-gold-list as: archive@jab.org
To unsubscribe send a blank email to [EMAIL PROTECTED]

[e-gold-list] Re: Open Letter to Douglas Jackson: E-gold Weakness

[BigBooster]

At 12:38 AM 05/24/2001 +0200, <[EMAIL PROTECTED]> wrote:

>I don't see any problem with people knowing my account number per se, but I
>agree the e-gold system only offers very basic level security. To get into
>my main online bank account and send money, I need:
>
>1) A customer login number - not the same as my account number
>2) A permanent password
>3) A password requested at random from a list of 25 on a card.
>
>I would fully support a multi-password system like the above for e-gold.
>It's pretty simple to use when you get used to it.

Rather than a Payment #, e-gold could enhance the system so you
use a log-in # which is different from your a/c #. This way, you never
reveal your log-in # to anyone. This would make e-gold much more
secure.

Frederick Mann


---
You are currently subscribed to e-gold-list as: archive@jab.org
To unsubscribe send a blank email to [EMAIL PROTECTED]

[e-gold-list] Re: Open Letter to Douglas Jackson: E-gold Weakness

[BigBooster]

A hacker (who knew the # of one of my e-gold a/cs) planted
a Trojan Horse in my computer that reported my password
enabling him/her to raid my account. (He didn't know the a/c
#s of any of my other e-gold a/cs, so he/she didn't touch them.)

The Trojan Horse was named "Kern32.exe" and was loaded into
my Widows\System folder. It was run by adding files to my Startup
menu.

Not all Anti-Trojan software recognized the Trojan, but I found a
great package that did.

I repeat, revealing your a/c # is a huge risk. It gives the hacker half
of what he needs to access your a/c.

Your e-gold accounts would be much more secure if you had to
reveal a Payment # to get paid, and you reveal your a/c # to nobody.

Frederick Mann


At 03:27 PM 05/23/2001 -0700, Vince Callaway <[EMAIL PROTECTED]> wrote:

>[snip]
> > A hacker (who knew the # of  one of my e-gold a/cs) planted
> > a Trojan Horse in my computer that reported my password
> > enabling him/her to raid my account. (He didn't know the a/c
> > #s of any of my other e-gold a/cs, so he/she didn't touch them.)
>[snip]
>
>The only way someone could have "hacked" your account is a) your
>passphrase sucks and only took a couple of tries or b) you gave it to
>them.
>
>More than likely is was b) in the form of cliking on an e-qold link
>instead of e-gold.
>
>Having an account number is no security risk.  I can go to the E-Gold site
>and pick a number at random and start trying passwords.  Of course I would
>get locked out in short order, but that is beside the point.


---
You are currently subscribed to e-gold-list as: archive@jab.org
To unsubscribe send a blank email to [EMAIL PROTECTED]

[e-gold-list] Open Letter to Douglas Jackson: E-gold Weakness

[BigBooster]

Dear Mr. Jackson,

I'm interested in using e-gold as one of the payment
systems for a program I'm developing. It will work on the
basis that participants in the program pay one another,
rather than paying a central company which then pays out
commissions.

This will require that their account #s be revealed in order
to receive payments. This means that it will be very easy
for hackers to get hold of theaccount #s.

A hacker (who knew the # of  one of my e-gold a/cs) planted
a Trojan Horse in my computer that reported my password
enabling him/her to raid my account. (He didn't know the a/c
#s of any of my other e-gold a/cs, so he/she didn't touch them.)

The whole point is that by revealing your account #, you make
it much easier for hackers to discover your password and
raid your account.

I urge you, as a high priority, to enhance e-gold by adding a
Payment #, associated with each account. Then, in order to
get paid, you reveal the Payment #. You never reveal your a/c
# to anyone. (When someone pays you, he/she sees the a/c
name and the Payment #, but never the a/c #.)

This would make it considerably more difficult for hackers to
raid your account.

Frederick Mann 


---
You are currently subscribed to e-gold-list as: archive@jab.org
To unsubscribe send a blank email to [EMAIL PROTECTED]

[e-gold-list] Anonymous E-Gold Debit Card - Early Birds Will Win Big!

[BigBooster]

Every now and then a new business is started
to provide a much-needed service of great benefit
to everyone doing business on the Internet!

Now Card is such a business
.

It will be officially launched during December 2000.
That means you have the opportunity to get in right
at the beginning. They provide a range of services
to satisfy the needs of as many as possible.

Get an anonymous offshore debit card to make your
financial affairs as private as possible. Set up an
IBC (International Business Corporation) to move
your earnings and business(es) offshore.

Access your funds at any ATM worldwide!

Free Affiliate Program!

Uses e-gold
.

These are just a few of many benefits. Nobody can
afford to miss out on this great opportunity!
.

Frederick Mann 


---
You are currently subscribed to e-gold-list as: archive@jab.org
To unsubscribe send a blank email to [EMAIL PROTECTED]

[e-gold-list] Fwd: E-gold Trojan... Be Careful! - Please Forward

[BigBooster]

 From a friend:

>I wanted to get this out to folks ASAP.
>
>I received an email today entitled "OMNIPAY/G&RS".
>
>I downloaded the file that was attached.  It was a zipped file, and they
>were wanting some due diligence.
>
>I clicked on the EXE file and it put a SYSREQ in memory.
>
>Since, I have deleted the file, and cleaned my system.
>
>Do NOT Open this file, I think it's a TROJAN Virus getting Passphrase
>information.

Frederick Mann


---
You are currently subscribed to e-gold-list as: archive@jab.org
To unsubscribe send a blank email to [EMAIL PROTECTED]

[e-gold-list] Fwd: SEC and e-gold

[BigBooster]

>Date: Wed, 01 Nov 2000 13:09:23 -0800
>From: withheld
>To: Frederic Mann <[EMAIL PROTECTED]>
>Subject: SEC and e-gold
>
>Hi Frederick,
>I got a call last week from the SEC and they wanted
>to ask a lot of questions about e-gold.
>Wanted to know if I was a member, done any transactions, etc.
>I gave them very little info; played stupid.
>I live in Canada so found it strange they would be calling
>me about a US regulatory agency.
>When I asked them how they found me they said from the internet.
>Just wondering if they are snooping around with you or other folks.
>All the best,
>A.

Has anyone had a similar experience?

Frederick Mann



---
You are currently subscribed to e-gold-list as: archive@jab.org
To unsubscribe send a blank email to [EMAIL PROTECTED]