Feeds

MS hacker gets in touch with The Reg

But Dimitri's not giving too much away though

  • alert
  • submit to reddit

Intelligent flash storage arrays

The hacker that worked his way into Microsoft's servers through a known security hole has contacted The Reg to refute a claim we made yesterday that he was lying about hacking into M$' servers for a second time.

We were skeptical about Dimitri's claim that he had re-entered the servers through the same route five days after his initial hack, even though Microsoft had developed the patch for the hole back in August. Dimitri (Dimitri Van de Giessen, apparently) claimed he had uploaded a file called Oopsididitagain, a reference to a Britney Spears song. In the file he spoke of enjoying the pop star's concert in the Netherlands that weekend.

The email read: "I really laught when I read your article. So you think I'm bluffing?" A link was then given to hack mirror site Attrition which confirmed his side of the story. The hack message, put up on Microsoft's events Web site, ran: "Patching your systems is very hard huh. MSG to Britney Spears. I loved your concert in the netherlands."

We asked Dimitri if he'd like to send us the encypted file of adminstrative user names and passwords that he said he'd picked up while inside Microsoft. He said he would on the condition that we get Britney to call him and provided us with his phone number. Our Lucy is perfecting her American drawl as we speak.

He also confirmed that he had been in touch with Microsoft in the Netherlands after its requests to do so after the second hack.

And so we apologise to Dimitri for having the audacity to doubt his side of the story (even though it sounded well dodgy). We still think he's a naughty boy for hacking in in the first place though. ®

Related Link

Attrition mirror of the second hack

Related Stories

MS hacked by Dimitri again. Perhaps
Microsoft hacked again

Beginner's guide to SSL certificates

More from The Register

next story
I'll be back (and forward): Hollywood's time travel tribulations
Quick, call the Time Cops to sort out this paradox!
Megaupload overlord Kim Dotcom: The US HAS RADICALISED ME!
Now my lawyers have bailed 'cos I'm 'OFFICIALLY' BROKE
MI6 oversight report on Lee Rigby murder: US web giants offer 'safe haven for TERRORISM'
PM urged to 'prioritise issue' after Facebook hindsight find
BT said to have pulled patent-infringing boxes from DSL network
Take your license demand and stick it in your ASSIA
Right to be forgotten should apply to Google.com too: EU
And hey - no need to tell the website you've de-listed. That'll make it easier ...
Assange™ slumps back on Ecuador's sofa after detention appeal binned
Swedish court rules there's 'great risk' WikiLeaker will dodge prosecution
prev story

Whitepapers

Go beyond APM with real-time IT operations analytics
How IT operations teams can harness the wealth of wire data already flowing through their environment for real-time operational intelligence.
10 threats to successful enterprise endpoint backup
10 threats to a successful backup including issues with BYOD, slow backups and ineffective security.
Forging a new future with identity relationship management
Learn about ForgeRock's next generation IRM platform and how it is designed to empower CEOS's and enterprises to engage with consumers.
High Performance for All
While HPC is not new, it has traditionally been seen as a specialist area – is it now geared up to meet more mainstream requirements?
Website security in corporate America
Find out how you rank among other IT managers testing your website's vulnerabilities.