Tuesday, August 13, 2013

Go PHISH! And the Indymedia connection


Weeeell, Tick Tock Tommy didn't want to reply.  Total silence. So we have to form our own conclusions.




Phishy Timeline
(corrected as new info comes in)


June 19 

8:04 PM: Lisa Loving solicits help on facebook to hack a blog

June 20

12:27 PM Lisa Loving outs Richard/Winston Smith for reporting her attempt to solicit hacking services from a kid

Jun 21 FRI

9:58 AM Lisa Loving goes on rampage, sending an email accusing Hadrian of being behind the "yellow blog"

June 22  SAT

8:46 AM: Lisa Loving continues rampage, sending an email accusing Ben Hoyne of being behind the "yellow blog". 


Aug 8

12:21 AM: In part of an email received by blog contact, Tom Hood is mentioned as possibly sharing his audio of board meeting:

Tom Hood had a better set up and didn't rely on battery power.  I am pressing for his recording to be posted to KBOO's fragile website soon.  Based on the fact that a board member I trust already has possession of this audio, I assume that this will happen soon.


Aug 9 FRI
 

 9:50 AM:  Time Tom Hood claims his account was hacked

 9:52 AM:  And email with the subject: TRANSACTION CONFIRMATION is sent from Tom Hood's account to multiple people including Hadrian and at least a couple others who have been attacked by the "Inner party".  It contains a link to a phishing file hosted at  http://drivesdocs.freehostingchamp.com/ with the words:
 CLICK HERE to view the important document I uploaded for you.

 Clicking on the link directs to a fake Google docs login page.

10:15 am: A recipiant recieves and queries tom about suspiscious email

10:20AMish :  Tom hood replies to query

1:01 PM:  Hadrian see and opens email; queries Tom about suspicious contents

7:31 PM:  Tom send reply to Hadrian claiming his account was hacked at 9:50AM

Aug 10 SAT


11:09 AM  Hadrian warns readers of phishing file going around that might be playing on expectation of receiving audio of last board meeting.


12:05 PM:  Forward of file recieved by blog contact email.  By this time phish file returns error instead of reported login

10:31 PM: http://drivesdocs.freehostingchamp.com/ reported by Hadrian to host


Aug 11 SUN


9:13 AM: Hadrian reports http://drivesdocs.freehostingchamp.com/ suspended by host

10:07 AM Theresa Mitchell's blog savekboo.org gets hit with extreme trolling for lulz

11:44AM:  Indymedia article reporting the Phishing attempt appears called "Keep KBOO KBOO fraudulent, dangerous to KBOO"  


1:26 PM: By this time Indymedia article is deleted

2:30ish : Reportedly Tom Hood is sent email to come clean.  Soon after Conser is reportedly emailed through KBOO.fm contact page.

3:30 PM:  Theresa Mitchell might be blocking visitors by IP address

4:00 PMish more reports from people who received phishing email



Aug 12 MON

10:20 AM:  Phishing expedition reported to Department of Homeland Security's National Cybersecurity and Communications Integration Center and their United States Computer Emergency Readiness Team.

10:43 AM Hadrian emails Tom Hood the phishing incident has been reported to multiple agencies, requesting his help:
"As you see, I take illegal actions such as this seriously. Any information you can provide about this incident would be helpful in protecting the people who were targeted by this attack.

Thanks."
10:46 AM: confirmation of US-CERT report received: incident number
PH0000002058026 


2:00 PM Phishing incident reported to Oregon Department of Justice

2:24 PM Incident reported to FCC
Aug 13 TUE

4:00AMish  Trolling of  Facebook pages and profiles begins, including "Committee to Keep KBOO KBOO":  https://www.facebook.com/KeepKBOO






Email Headers(edited):

The headers tell their own tale.  All IP addresses are private, probably Google gmail routers.  A couple are identical to both emails, implying they were sent from the same location.  Even a hacker using Toms email should show a different location. 

This is not a spoof.  A spoof is an email apparently sent from one account, but really from another.  This was sent from Tom's account.  The headers imply that Tom never lost control of his account.


Header of 1st email:
Delivered-To: xxxxxx@xxxxxx Received: by 10.70.129.226 with SMTP id nz2csp91964pdb; Fri, 9 Aug 2013 09:53:01 -0700 (PDT) Return-Path: <hood.quimbyxxxxxx> Received-SPF: pass (google.com: domain of hood.quimby@xxxxxx designates 10.60.xxxxxx as permitted sender) client-ip=10.60.xxxxxx Authentication-Results: mr.google.com; spf=pass (google.com: domain of hood.quimby@xxxxxxdesignates 10.60.xxxxxx as permitted sender) smtp.mail=hood.quimby@xxxxxx; dkim=pass header.i=@gmail.com X-Received: from mr.google.com ([10.60.xxxxxx]) by 10.60.140.168 with SMTP id rh8mr1280722oeb.76.1376067179971 (num_hops = 1); Fri, 09 Aug 2013 09:52:59 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:date:message-id:subject:from:to:content-type; bh=eu7X2gSfRZZddRQSHNF3K4i5MF7OtV+tOygFQIv6QmY=; b=Y1CqaiWpe2e1XpWkCm5qWD5/5mRBCHiXeLoJ3nYHmOWHL0Xn8VSOwFVhViJUzswlEn WEOTnMbeFGfOHq0mwn9To/PV/WjIRIJelv2a2jwBvEE6RKt1jOD/brHZj6ppJu4TzjXM YlLlRYnx0LbiSvwY4O2z5gzlKr/r46QQhItXtewg0nKDe4fh49mZmXit3Xf5VNFOLSBX BzFE43W6pShxzyeo8anrQoTxW5i7cTwRb+50F9ZojQJyQMiN0OX0iD4Nq1HHPS6sIqMW AyToieblsqLU14+EAEKOkRYMyXBrQWxXp1V2AohfeN3d9PUpCl5Vhj48Rnt7JrQRMiuq aTYg== MIME-Version: 1.0 X-Received: by 10.60.xxxxxx with SMTP id rh8mr1280722oeb.76.1376067179964; Fri, 09 Aug 2013 09:52:59 -0700 (PDT) Received: by 10.76.135.8 with HTTP; Fri, 9 Aug 2013 09:52:59 -0700 (PDT) Date: Fri, 9 Aug 2013 09:52:59 -0700 Message-ID: <CANpciL+-y27vkfqnugUSmQY1rHb-7W4F5YY0p5mbAvS1UE5J_Q@mail.gmail.com> Subject: TRANSACTION CONFIRMATION From: Tom Hood <hood.quimby@xxxxxx> To: undisclosed-recipients:; Content-Type: multipart/alternative; boundary=047d7b2e4c4672f63f04e3869b35 Bcc: xxxxxx@xxxxxx

Header of 2nd email (from "Real Tom")
Delivered-To: xxxxxx@xxxxxx Received: by 10.182.88.234 with SMTP id bj10csp473obb; Fri, 9 Aug 2013 19:31:37 -0700 (PDT) X-Received: by 10.60.61.115 with SMTP id o19mr2353818oer.85.1376101868035; Fri, 09 Aug 2013 19:31:08 -0700 (PDT) Return-Path: <hood.quimby@xxxxxx> Received: from mail-oa0-x244.google.com (mail-oa0-x244.google.com [2607:f8b0:4003:c02::244]) by mx.google.com with ESMTPS id nk8si10830982obb.37.2013.08.09.19.31.08 for <xxxxxx@xxxxxx> (version=TLSv1 cipher=ECDHE-RSA-RC4-SHA bits=128/128); Fri, 09 Aug 2013 19:31:08 -0700 (PDT) Received-SPF: pass (google.com: domain of hood.quimby@xxxxxx designates 2607:f8b0:4003:c02::244 as permitted sender) client-ip=2607:f8b0:4003:c02::244; Authentication-Results: mx.google.com; spf=pass (google.com: domain of hood.quimby@xxxxxx designates 2607:f8b0:4003:c02::244 as permitted sender) smtp.mail=hood.quimby@xxxxxx; dkim=pass header.i=@gmail.com; dmarc=pass (p=NONE dis=NONE) d=gmail.com Received: by mail-oa0-x244.google.com with SMTP id j6so2441312oag.11 for <xxxxxx@xxxxxx>; Fri, 09 Aug 2013 19:31:08 -0700 (PDT) Return-Path: <hood.quimby@xxxxxx> Received-SPF: pass (google.com: domain of hood.quimby@xxxxxx designates 10.60.xxxxxx as permitted sender) client-ip=10.60.xxxxxx X-Received: from mr.google.com ([10.60.xxxxxx]) by 10.60.140.168 with SMTP id rh8mr2902280oeb.76.1376101866286 (num_hops = 1); Fri, 09 Aug 2013 19:31:06 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :content-type; bh=AfyVNUEtoKL/78rN5icqP+ZgyN82xTJJVfDPHQLT+sc=; b=jFv3Gu1Z4KedeZ7d9LXkjFVE9vgZjKipV19o2/DjByojT7wbUoR3CRn+9dYZp7s3tZ 67bykHvTC+i8cpzuAxVIUwTYFoUUTWBubyKbgI2GU8ogEOEaSLQtX0POB+m3V8xN5Guh 79eBZIE3thUq4ZOBOY5VGisdpkwzcgnTZlOmrbWkLA6SgafTOrnMNv97bP3ZJZCKIs6s kPdGNG9QbST4u4A7BJta7czLxFuhYhxcfKyOoywystlpopZXF4nsl65UQjiJWSZpgUoX ctxjqlOLqI/2G+uIwhHjzO4iqklTnk6eZowORXn8hfZC+xYbTSqE20W6NrEjG6aDtVQN ACWA== MIME-Version: 1.0 X-Received: by 10.60.xxxxxx with SMTP id rh8mr2902280oeb.76.1376101866281; Fri, 09 Aug 2013 19:31:06 -0700 (PDT) Received: by 10.76.135.8 with HTTP; Fri, 9 Aug 2013 19:31:06 -0700 (PDT) In-Reply-To: <CAChsR50tsrkC+XsAJ25NxhTjiRBXCFEA=5zEWxGtN14zN-VBkA@mail.gmail.com> References: <CANpciL+-y27vkfqnugUSmQY1rHb-7W4F5YY0p5mbAvS1UE5J_Q@mail.gmail.com> <CAChsR50tsrkC+XsAJ25NxhTjiRBXCFEA=5zEWxGtN14zN-VBkA@mail.gmail.com> Date: Fri, 9 Aug 2013 19:31:06 -0700 Message-ID: <CANpciLKnK=YE-MJ8JMtXJcRk6DyxeUms8+QJkBTRdwfvRc8YGg@mail.gmail.com> Subject: Re: TRANSACTION CONFIRMATION From: "hood.quimby" <hood.quimby@xxxxxx> To: xxxxxx <xxxxxx@xxxxxx>


Best hypothesis so far:   Someone Tommy knew set up the phish file at champs account.  Tommy agreed to use his email to send out link. 


Speculated motive:  find out if any enemies of the people were running the evil yellow blog.

Foreknowledge:   in comments it was pointed out people were expecting an email from Tom Hood about the last board meeting audio.

In an email received this was referenced clearly:
 Tom Hood had a better set up and didn't rely on battery power. I am pressing for his recording to be posted to KBOO's fragile website soon.  Based on the fact that a board member I trust already has possession of this audio, I assume that this will happen soon.
 This email was clearly prepping the blog contact to expect an audio file from Tom, in some way.   Receiving an email from his address, with words saying, "CLICK HERE to view the important document I uploaded for you. " would fit the pattern of a set up.

That the email was never received by the blog contact might be the most pathetic failure and cancer in this situation.



The KBOO/Portland Indymedia Connection


It hasn't escaped readers attention that when anything embarrassing about the Inner Party is published on the PIMC newswire it tends to vanish.  Not everything, but enough to make readers wonder.   Rumors for weeks imply that Portland Indymedia is not only deleting articles for the clique controlling KBOO, but have been logging IP addresses and passing them on to Inner Party members.

More recently it was discovered the so called problems with "lost" compost articles were bogus, the compost link being connected to a blank page, while the real current compost link was orphaned:

Link from Indy front page: http://portland.indymedia.org/en/compost/compost2012.shtml

Real link: http://portland.indymedia.org/en/compost/compost2013.shtml


It was pointed out in comments someone was very busy on July 30 apparently deleting or disabling compost archives back to 2000.

 http://www.portland.indymedia.org/portland/en/compost/


Portland IMC seems to be taken over by "radicals" of the same stripe as the "Inner Party", in other words,  not very radical and at least as controlling as the most annoying Republican.   But now we know, from a tip in comments,  the most likely culprit "massaging" the newswire for Keep KBOO KBOO:  "Joe Anybody".

The latest  "massage" being suppressing the KBOO related phishing article by banishing it to the compost:

http://portland.indymedia.org/en/2013/08/424517.shtml

Keep KBOO KBOO fraudulent, dangerous to KBOO
author: theduhfiles
Since May a small clique of KBOO insiders afraid of losing control have been branding themselves as "anti-corporate" and "saving" KBOO. The truth is they will keep a strangle hold on the funds troubled station even if it means committing a series of felonies and attacking KBOO membership



"Joe"(apparently his real name is Mike Tabor) networks on Facebook with all the usual suspects:

Ani:


Theresa:


Lisa Loving:


 On his about page, he lists himself as an Indymedia volunteer:


https://www.facebook.com/Average.JoeAnybody/about


Under work and education

Of course, who knows how many Indy volunteers there are and what Joe's status is.  He could have admin privileges  or be Drone 398.

The following link, showing Joe helps run a list for PIMC, proves he is trusted with more access than the average "drone":

http://lists.indymedia.org/mailman/listinfo/imc-portland-requests

imc-portland-requests list run by afterthought at riseup.net, salaud at resist.ca, joeanybody at riseup.net, quill at riseup.net
imc-portland-requests administrative interface (requires authorization)
Overview of all lists.indymedia.org mailing lists


 EDIT: an important thing about this clown to remember:  he's a KBOO member:
https://kboo.fm/user/8394

 Personal information. First name: joe; Last name: anybody; Listen Online? History. Member for: 1 year 20 weeks.

And for anyone who wants to know what he looks like?  Like a "constitutional protection" according to a fan:


https://www.facebook.com/Average.JoeAnybody/posts/650465214963653

Roger David Hardesty posted a photo to Joe Anbody's timeline.
6 hours ago ·
This is what our Constitutional protections looks like.


Mkay.  If you say so.  We assume "constitutional protections" might include "free speech" at Indymedia.  Guess we were wrong.

Maybe, since he seems to be some kind of "journalist", he can look into Comrade Hollywood Hood's phishing expedition.

But don't hold your breathe.  According the the Antifas, "Joe" hangs out with a pretty sleazy crowd:

 http://rosecityantifa.weebly.com/1/post/2012/09/portland-911-truth-alliance-hosts-right-wing-bomber-courtesy-of-city-bikes-president-tim-calvert.html




Another Portland Indymedia player is Jesse London, who helps "Joe" at PIMC as "salaud at resist.ca".

Old whois puts Jesse in Portland in 2011; whether he's still in physically in Portland is not clear:

Domain ID:D12298727-LRMS
Domain Name:J512.INFO
Created On:05-Mar-2006 08:55:23 UTC
Last Updated On:06-Mar-2010 16:59:35 UTC
Expiration Date:05-Mar-2011 08:55:23 UTC
Sponsoring Registrar:GoDaddy.com Inc. (R171-LRMS)
Status:CLIENT DELETE PROHIBITED
Status:CLIENT RENEW PROHIBITED
Status:CLIENT TRANSFER PROHIBITED
Status:CLIENT UPDATE PROHIBITED
Registrant ID:CR21954693
Registrant Name:Jesse London
Registrant Organization:
Registrant Street1:PO Box 11681
Registrant Street2:
Registrant Street3:
Registrant City:Portland
Registrant State/Province:Oregon
Registrant Postal Code:97211
Registrant Country:US
Registrant Phone:+1.5035732343
Registrant Phone Ext.:
Registrant FAX:
Registrant FAX Ext.:
Registrant Email:salaud@resist.ca
Jesse London was involved with Portland indymedia since 2002 in spite of hailing from North Carolina:

http://portland.indymedia.org/en/2002/11/35652.shtml


poster of &quot;CORPORATE ACTION&quot; 26.Nov.2002 12:07

magic lantern jesse@bastardrecords.com


Jesse London ( jesse@bastardrecords.com) is the asshole who thinks murder is CORPORATE ACTION.

Tell him what you think.

http://lists.indymedia.org/mailman/public/imc-portland-editorial/2002-November/003688.html


Jesse London 26.Nov.2002 12:46

No-Doz Bukowski


Judging by his homesite at  http://www.bastardrecords.com, Jesse London appears to be a teenager with a rock band in North Carolina. Help me, please, to understand how this person managed to scoop the entire Portland Indymedia staff and post this story first; having never published here before. And how does a teenager from North Carolina become a volunteer for Indymedia in Portland?

Has anyone met this guy, or has it all been e-mail contact?

I'm also still waiting for someone to tell me more about Matt McRae's involvement in activism before the shooting.

5000. - N.


A blog by Jesse, with Indymedia links, imply he studied law in some capacity:


http://cornellnlg.blogspot.com/2009_12_01_archive.html
http://cornellnlg.blogspot.com/2009/12/free-is-really-free.html

Friday, December 18, 2009

Free is Really Free!


From Civil Liberties Defense Center:


PORTLAND - Dec 16th, 2009 - Jeff "Free" Luers, political prisoner and environmental activist, was released from the Columbia River Correctional Institution this morning after serving nine and half years. Luers was originally sentenced in 2001 to twenty two years and eight months for the politically motivated arson of three SUV's at a car dealership in Eugene, OR. This sentence was deemed grossly disproportionate to the damage sustained by the car dealership and was condemned by legal professionals, human rights groups and activists worldwide. At an appeal hearing in 2007 it was ruled that Luers' original sentence was illegal, and was consequently reduced to ten years.

Luers' release today comes after what Oregon Department of Corrections described as a 'mistake' when they released him early on October 20th this year. After a few short hours of freedom, Luers was taken back into custody in Eugene after the State agency reversed its decision and determined that he did not qualify under the new House Bill 3508 for an additional 10% reduction in sentence. DOC's gross incompetence in this situation, and the emotional toll borne by his family and loved ones, is just one of many examples of the distressing levels of bureaucratic impropriety that Luers has endured during his years behind bars.

Upon his release this morning, Mr. Luers stated:

"The last 9½ years have been difficult at best. I have witnessed things in prison that I will carry with me for the rest of my life. I have endured hardship and loss. Without a doubt, this experience has changed me. What hasn't changed is my commitment to environmental and social justice."


See the original article here on Portland Indymedia
No comments:



If Jesse is actively involved with Portland Indymedia, then he's aware of the phishing article they composted and readers shouldn't trust him any farther than they can throw him. 


We can assume the Portland Indymedia collective is not representing any anarchist, progressive or revolutionary independent media force in Portland at this time.



More to come....





46 comments:

  1. https://www.facebook.com/kbooradio
    https://www.facebook.com/KeepKBOO?filter=2

    ReplyDelete
  2. GO PHISH! LAWL!!!!

    https://www.facebook.com/kbooradio/posts/10151814691465767

    Jabbara Edwards What is on the agenda?
    Like · Reply · 1 · August 6 at 12:17pm
    Phish Food Treats http://savekboofromsavekboo.blogspot.com/2013/08/kboo-bored-meeting-at-seiu-aug-6th.html
    Save KBOO from Save KBOO: KBOO BORED MEETING AT SEIU AUG 6th!
    savekboofromsavekboo.blogspot.com
    "Where observing members were literally out numbered by cleaning staff!"The KKK ...See More
    Like · Reply · Remove Preview · 4 hours ago
    Phish Food Treats http://savekboofromsavekboo.blogspot.com/2013/07/audio-of-kboo-july-29th-bored-er-board.html
    Save KBOO from Save KBOO: Audio of KBOO July 29th Bored, er, Board Meeting!
    savekboofromsavekboo.blogspot.com
    These people are making accessing the website like planning the Battle of Verdun...See More
    Like · Reply · Remove Preview · 4 hours ago
    Phish Food Treats board meeting audio
    Like · Reply · 4 hours ago
    Phish Food Treats http://savekboofromsavekboo.blogspot.com/2013/08/hey-tommy.html
    Save KBOO from Save KBOO: HEY TOMMY!!!
    savekboofromsavekboo.blogspot.com

    ReplyDelete
  3. "3:30 PM: Theresa Mitchell might be blocking visitors by IP address "

    No "might" about it.

    ReplyDelete
    Replies
    1. Think she's disabled all commenting now.

      Delete
    2. Hey just discovered her wordpress code automatically embeds youtube video. Copypaste link, and presto video player. She's being Rick Rolled ....

      Delete
  4. God, I hope some people didn't actually fall for it.

    ReplyDelete
    Replies
    1. What makes you think anyone did?

      Delete
    2. regular readers not visiting or not commenting. like they got suddenly scared of "teh internets" .

      okay people a phishing scam can only work if you fill in all your login shit and hit enter or whatever.

      though if tom&co combined it with an image hosted at the champs ftp server they probably also logged anyone's ip who opened the email. :(

      that part isn't illegal. companies and website do it all the time. it just takes savvy to avoid it.

      Delete
    3. "regular readers not visiting or not commenting. like they got suddenly scared of "teh internets" .

      okay people a phishing scam can only work if you fill in all your login shit and hit enter or whatever."

      Protips:

      Never click blind links.

      Hover over suspicious links to see what your browser tells you

      If login page looks suspicious, check address bar(url)to see it matches website it's claiming to be.

      Delete
    4. "regular readers not visiting or not commenting. like they got suddenly scared of "teh internets" .

      They're in shock. After we started digging into this, we had a good idea what we were dealing with. But most readers/fans have been played for years and have assumed all the fail was incompetence. Not unreasonable if you don't know what to look for. Or see flags for what they are.

      To muddle things further, because the Inner Party drives off competent people, there IS incompetence. The mistake readers made was seeing it as cause instead of a symptom of the toxic control culture.

      Once you know there's a dysfunctional control culture, you can predict this shit. It was never "if" they'd pull something like this. It was always "when".

      Delete
    5. "They're in shock."

      "They're in shock. After we started digging into this, we had a good idea what we were dealing with. But most readers/fans have been played for years and have assumed all the fail was incompetence. Not unreasonable if you don't know what to look for. Or see flags for what they are."

      I was shocked at the fearful and vociferous responses to Blue Oregon Action's Thom Hartmann petition.

      I was shocked that after paying 5$ a month to Kboo I am finding out that I'm supporting a twisted cult like oligarchy.

      I'm shocked that the Inner Party would be so fearful of a blog, that they would go "Phishing" and recruit hackers to find who's writing it.

      Yeah......shocked.

      Delete
  5. phish comments on timeline deleted by enemies of the lulz, but comments on this post still there? lol

    ReplyDelete
  6. Kinda impressive just how many of these people don't have a message button on their profile. I get not having a friend button. You don't want to encourage crazy. But most of these people pretend to be journalists. Wouldn't a journalist want to be contacted?

    Lisa Loving, the media professional, has no way to message her unless you know her friends. Same way with Ani, Presswatch, even Ani's page for her show, Positively Revolting. Even Joe Anybody. Or KBOO. What kind of journalists only want to be contacted by their friends?

    ReplyDelete
  7. Yeah, but even NBC doesn't have a message button. I don't think it means anything more than people don't want spam. The legit ones should have contact info on their about page. That's were Presswatch and Joe Anybody fail. Positively Revolting and KBOO both have contact info, so yeah, competence is random with these people.

    ReplyDelete
  8. Let's recap:

    A financially struggling community radio station on the brink of bankruptcy pissed away $15,000 of grant money, throwing out the new policies and reinstating the old one, many of which are illegal. Members of the board including the president conspired with staff and volunteers to drive Lynn Fitch out of her job for doing her job. The board president misappropriated funds, a board member conspired to hack a blog, apparently the kboo engineer took her up on the offer and tried to pull a phishing scam on members.

    Now, in the middle of the president trying to renew the FCC license, multiple alphabet soup agencies are about to start breathing down KBOO's neck about the phishing scam, including the FCC.

    Did I miss anything?
    Does anyone think KBOO will make it to the October elections?

    ReplyDelete
    Replies
    1. "Did I miss anything?"
      Not much. Sadly there is a long history of such conduct from these who claim to be the stewards of KBOO.

      Delete
    2. Mebbe time for all candidates not in the Inner Party's pocket to bail in protest? Or to protect themselves. idk

      Delete
    3. $25,000 of grant money was wasted - new legal board policies, a board training manuel for new and hopeful board candidates (this was never used) to educate them on what being on a board was all about, their duties and responsibilities. None of the newly appointed board members have looked this manuel either and act as if they know nothing about the legalities involved with being on a board.

      Delete
  9. KKK seems to have stopped at 68 members strong

    https://www.facebook.com/KeepKBOO

    They have an army of DOZENS, I tell you.

    ReplyDelete
  10. Hey Readers! Wave and say Hi to Lisa "Hacker" Loving! Looking at these search results!

    http://savekboofromsavekboo.blogspot.com/search?q=lisa%20loving

    Drat! She didn't loo at anything about Tommy Phishing! She'll be no help sending him a memo.....

    ReplyDelete
    Replies
    1. I love how she acts so worried about it, but her hacking link is still there(if ur logged in):

      https://www.facebook.com/lisa.loving/posts/10151581156833673

      lmao

      Delete
    2. Yeah, for someone who looks to be up to her neck in this she's playing it cool. No admission, retractions, apologies or clarifications. But she uploaded a new pic of herself today:

      https://sphotos-a.xx.fbcdn.net/hphotos-prn2/q71/1098344_10151698049218673_945603021_n.jpg

      You know, priorities.

      Delete
    3. "love how she acts so worried about it, but her hacking link is still there"

      And still there while she returns to snoop lol!

      14 Aug 18:38:45
      Save KBOO from Save KBOO: Comrade Lisa Loving to file LOLsuit! Hacking! Cracking! OH MY!

      savekboofromsavekboo.blogspot.com/2013/06/comrade-lisa-loving-to-file-lolsuit.html
      14 Aug 18:39:51
      Save KBOO from Save KBOO: Comrade Lisa Loving Wants to Hack Blogspot
      14 Aug 18:40:02
      Save KBOO from Save KBOO: Search results for lisa loving
      14 Aug 18:40:38
      1.bp.blogspot.com/-bVN6pronHqc/UcOFkQWkeCI/AAAAAAAAAg8/q33N3gFERDk/s1600/lisadefectorouted.jpg


      Delete
  11. Random predictions:

    -KBOO fires Hood and takes credit for "doing something"
    -the person who set up the scam telling ppl to expect an audio from Tommy claims to be a victim too
    -Conser pretends not to know what's going on
    -In fact the entire Inner Party pretends not to know what's going on


    There's just a slim chance that they can wiggle out of criminal charges by pretending to be phenomenally stupid. But they'll have to sacrifice KBOO to do it.

    imho

    ReplyDelete
    Replies
    1. "-the person who set up the scam telling ppl to expect an audio from Tommy claims to be a victim too"

      A variation: they all start claiming to be hacked, and try to create evidence for "plausible deniability" as if they were all hit because of a hijacked address book. Ergo "poor Hood, he was just the first to be hit!" *yawn*

      Of course on the slim chance(very slim) this was true, after this Hood thing, they should be more prompt about notifying people.

      Anyone getting weird emails: save them, save the headers.

      Delete
    2. imho it's obvious by now someone(s) on their labyrinthine interconnected fb friends lists is/are leaking information. thanks to a history of retaliation and vindictiveness(Lynn Fitch, Richard Smith?), those people aren't likely to come forward, unless legal proceedings start against the Inner Party. it'll be almost impossible to pin those people down, but i bet they're trying.

      it's really amazing how much effort is being put into these antics while the station (figuratively) burns down around their ears.

      Delete
    3. i emailed the board about their phishy situation.
      let's see if they say anything. :D

      Delete
    4. some board members don't want anyone contacting them

      ***********************
      Adin here,

      I'm protecting myself from receiving junk mail.


      Please click the link below to complete the verification process.
      You have to do this only once.

      http://www.spamarrest.com/a2?AQN2AQVkZwb6qTWbLJWvo0OaoKthL29gBxSxnJ4j



      You are receiving this message in response to your email to Adin, a Spam Arrest customer.

      Spam Arrest requests that senders verify themselves before their email is delivered.

      When you click the above link, you will be taken to a page with a graphic on it. Simply read the word in the graphic, type it into the form, accept the Sender Agreement, and you're verified.

      You have to do this only once per Spam Arrest customer.

      ------------------------------------------------------------
      Below are the complete headers of the message that this email was generated in response to.
      ***********************

      IS THIS GUY FOR REALZ?

      LOLOLOLOL


      Delete
    5. and jeff kipilman's email is fake

      "jbkip@comcast.ne":
      domain not found, "comcast.ne"

      someone should tell marky sherman not everyone is playing by the rules.....

      Delete
    6. "i emailed the board about their phishy situation.
      let's see if they say anything. :D"

      Yeah, thanks for that. And blind copying everyone in the known universe. *roll*

      At least they can't pretend they don't know what's going on.

      Delete
    7. "and jeff kipilman's email is fake

      "jbkip@comcast.ne":
      domain not found, "comcast.ne" "

      Gonna guess that's supposed to be comcast.net. Typing fail on Jeffrey's part. And nobody on the website noticed.

      They are morons.

      Delete
    8. Yeah, his email is in this blog:

      http://savekboofromsavekboo.blogspot.com/2013/06/another-doom-and-gloom-leaktraitor.html

      jbkip@comcast.net

      You could send it again, but I wouldn't bother. After all, his fellow board members should be communicating with him, right?

      Delete
  12. SafeBrowsing › Safety Report › K › Kboo.fm
    This is a Safety Report about Kboo.

    Kboo.fm is safe and can be available by children, contains no malicious software and is not used for phishing. Kboo is popular, maybe one day it will become a reference, last time we check, its world rank was #461520. Its IP Address is 206.221.217.107 and is located in United States.

    4.5 out of 5 for Kboo.fm by Safe-Browsing

    Safety Report
    Global Safety: This site is completly safe
    Audience concerned: This site is safe and should be available by every member of your family
    Malware/Malicious Software: This website is free of malware and malicious software
    Phishing/Fraud: This domain name is not used for phishing and fraud
    Popularity/Reputation: This site seem to be popular enought to be trusted

    http://www.safe-browsing.net/safety/k--kboo.fm


    :)

    ReplyDelete
    Replies
    1. "This site is completly safe"

      Yeah, but what about the people running it?

      Delete
    2. Just because it's not reported on an Internet site, doesn't mean there's no problem:

      "The KBOO sound quality has become worse daily since John Mackey left. Current engineer Tom "Hollywood" Hood is completely incompetent as an engineer. The recent problems with the KBOO air signal, streaming signal, and virus propagating web page are the simple proof; all started long after Mackey left and have not been fixed." -http://feedback.pdxradio.com

      How ironic Hood was caught phishing.

      Do you really want to go there?

      Delete
    3. "Kboo.fm is safe and can be available by children, contains no malicious software and is not used for phishing."

      Betting this is the same douchebag who posted a comment about one of the targeted recipients we removed. IMO its also probably Hood.

      If so, he's good. But not good enough.

      NO ONE SAID KBOO.FM SERVERS WERE USED TO HOST THE PHISH FILE.

      Even the Inner Party wouldn't be that stupid.

      Delete
    4. "IMO its also probably Hood."

      Then he's prbly acting alone. He haz some minor skillz. But no fucking sense.

      Seriously, getting a buddy to set up a fish shop on a free ftp is one thing. But sending them to troll to cover your fail? And troll so badly? They know where the file was hosted. If by some long shot they were innocent and they didn't know, they would have read it. They're not pretending to engage rationally. So Co$ early 2008.

      This continues to be the act of people trying to cover, evade, whatever. Hoping it will go away. Again, irrational.

      "Oh! An internet website said kboo.fm is totally safe! We'll just ignore all the evidence we have otherwise and turn our frowns upside down! Bring on the kittehs and puppies!"

      I don't know what sadder: this guy is implying people should do that, or that he really believes there's a chance people will.

      Delete
    5. "Then he's prbly acting alone. "

      Acting alone in putting up the phish file, etc. Fucker was obviously acting with and for the rest of the Kboo Klown show.

      Delete
    6. Fuck me. Might be wrong. safe-browsing.net has same domain name registry "roger rabbit" uses:

      http://savekboofromsavekboo.blogspot.com/2013/06/serious-question-about-kboos-website.html

      Compare with this whois:

      domain: safe-browsing.net
      reg_created: 2011-11-22 23:20:18
      expires: 2013-11-22 23:20:18
      created: 2011-11-23 00:20:18
      changed: 2012-11-23 21:59:51
      transfer-prohibited: yes
      ns0: 178-32-50-38.kimsufi.com
      ns1: ns.kimsufi.com
      owner-c:
      nic-hdl: MB3749-GANDI
      organisation: ~
      person: Maxime Boroujerdi
      obfuscated: Obfuscated by Gandi
      address: (Gandi) 63-65 boulevard Massena
      zipcode: (Gandi) 75013
      city: (Gandi) Paris
      country: (Gandi) France
      phone: (Gandi) +33.170377666
      fax: (Gandi) +33.143730576
      email: 60b4c25f4bd4f3506a6be0a24de5951a-633780@contact.gandi.net
      lastupdated: 2012-07-13 11:16:39


      No idea who Maxime Boroujerdi is, but a website url search doesn't have much hits. Can't be because its French based; the website[viewed with proxy condom] uses only English.

      Honeypot?

      Delete
    7. "No idea who Maxime Boroujerdi is, but a website url search doesn't have much hits. Can't be because its French based; "

      But let's say it's Maxi and he's a friend of Roger and/or Hood. He might know English but isn't fluent enough to pick up on shit. That could explain his copypasta clueless troll.

      Of course it also means he was trying to lure people to his site.

      "Oh yeah! Here's a new link left in a dooshy manipulative comment. I'll browse there right now so you can log my location"...NOT.

      Gonna have to try harder than that, kkk scumfucks.

      Delete
  13. "They have an army of DOZENS, I tell you. "

    5 and a half, to be exact.

    ReplyDelete
  14. This is a Safety Report about Freehostingchamp.

    Freehostingchamp.com is not safe and may not be available by children. Freehostingchamp might be a new site or is not popular yet, last time we check, its world rank was #1659697. Its IP Address is 31.170.167.92.

    Safety Report
    Global Safety: Warning: This site is not safe!
    Audience concerned: Warning: This site may contain adult content - This site might not be safe for children
    Malware/Malicious Software: This website is free of malware and malicious software
    Phishing/Fraud: This domain name is not used for phishing and fraud
    Popularity/Reputation: We do not have enought data... this site might not be a very popular one.

    :)

    ReplyDelete
    Replies
    1. Isn't that precious. How were you "confused" on the host in the first place?

      And dearie? You just slipped. Don't feel too bad. It happens to the leet-est of us eventually. ;)

      Delete
    2. Trust KBOO. We must trust KBOO. Trust KBOO. We must trust KBOO...can be available by children!

      Delete
    3. "Trust KBOO. We must trust KBOO."

      Talk about a strawman. Where was it said KBOO's website was untrustworthy? Apart from the people running it of course...
      Freehostingchamps maybe a sleazy website, but doesn't seem to be "in on it".

      Mr. Smilie quotes "Phishing/Fraud: This domain name is not used for phishing and fraud", but that doesn't mean it never happens. It means it doesn't happen enough to flag the site, because when it does happen it's taken care of asap. Scammers use Yahoo and Gmail. Betting neither site registers as a fraud site either.

      Logic fail.

      Delete
    4. It's indicative of the "reasoning" that has been used by these people throughout. Take the Googledocs phish. People were prepped by smeone to expect an audio file from Tom Hood uploaded to the website. Maybe that person didn't notice readers were sorta dubious about Hood thanks to feedbackpdxradio. Or maybe they did notice, but were trying to get people to trust him: "He's not part of the problem! See? He'll prove it by getting the audio!"

      Whichever. Then he sends out an email saying an expected file is at Googledocs. That's the first suspicious thing for someone expecting an AUDIO file from this guy. Why not Soundcloud? (Apparently audio files can be uploaded to Gdocs, but I've never heard anyone do it). Even after megaupload disappeared, there are so many better options out there for audio file sharing that don't require a login.

      But the worst fail is they blew a chance to use Googledocs legitimately. If enough people sign in and edit a file, the person who uploaded it can see who is viewing. This only works with TEXT files, AFAIK. But now it won't ever work at all, because anyone following this fiasco will treat an email with Googledocs links from a KBOO member like cancer.

      Why are they using Googledocs to share KBOO stuff when they have a website to freaking host it on?


      FAIL

      Delete