SAP admits staff took Oracle's data

Repost from a while back:

I was curious about all these computer systems being broken into and laptops being stolen across the board of public, private and governmental institutions.

With all these events I examined I saw no commonalities between them except the theft of information itself so it wasn't the institution itself that was the target but the information was the target and in the form of easy pickings. Especially by not leaving any tracks by breaking into a system electronically and just swiping the hard drive itself.

I got bored of the media always providing the same old blanket reasons for these thefts which was for the purpose of ID theft since unless they know the thieves or unless the thieves told them why they did it, the media does not know why so providing the blanket reason of these things happening because of ID theft is pure conjecture.

So I compiled a list of the dates or approximate dates (some are not known to the day or month for lack of observations of their own systems) of these thefts. This spans a few years.

I was looking for in other places after that info on the increase of ID theft shortly after these thefts. I didn't find any corresponding pattern.

I noticed that a plethora of systems were hit and the bulk of them not exactly containing the info needed in one shot to steal someones ID. So I thought that maybe by hitting multiple systems they would get bits and pieces from different systems to get the basics needed to steal identity and that didn't pan out either because of all the public, private and governmental institutions hit, there was little to no real chance of the possible victims having bits and pieces in each one of these systems. Especially when the stolen goods were not banking oriented.

If these thefts were for the purpose of ID theft there inherently would have been an upsurge of ID theft immediately following or not long after the thefts but the statistics don't reflect that because they the thieves would act on that rather quickly before flags or locks went up on those accounts. This type of stolen material is like any other hot item, depending on what is stolen, you transfer it fast or hold it. ID theft and such fraud has remained consistent or increased steadily without a surge so since they would have to do this quick, this isn't the cause.

So I was wondering what else could be of value in all that info.

So there was left outstanding one thing that caught my eye.

Email addresses. Fresh and valid ones too.

So I looked a little further and I found a pattern of the upsurge of spam corresponding with the thefts. Then another upsurge a while after after that as if that list of email addresses had changed hands.

Just a coincidence or someone in the spam industry could be responsible for these thefts?

speed buggy wrote:

~~
So there was left outstanding one thing that caught my eye.
Email addresses. Fresh and valid ones too.
So I looked a little further and I found a pattern of the upsurge of spam corresponding with the thefts. Then another upsurge a while after after that as if that list of email addresses had changed hands.
Just a coincidence or someone in the spam industry could be responsible for these thefts?

Check this: http://www.private.org.il/harvest.html

Yeah they have always used those methods but I don't see any mention of these types of methods of stealing.

Such as employee theft of the email address and selling the list or targeting hacking financial institution databases for the purpose of throwing off investigators into thinking that it was money info or ID theft they we after.

Instead, they take all the info and really just wanting the email addresses. If they only targeted the email addresses they would give themselves away so once inside they don't hit the company email database they hit the cutomer account info.

A list within a larger source and it is the larger part that covers their real intentions.

TALK 2 EXPERTS

SAP forums:
http://www.sap.talk2experts.com

.