Details on the Overstock.com Cyberstalking and Spyware Campaign

Standard

Judd Bagley, cyberstalker at Overstock.comA couple of weeks ago, I commented on a post that Judd Bagley, chief Overstock.com (NASDAQ:OSTK) stalker and “Deep Capture reporter” made on the InvestorVillage message board for Overstock. He stated there: “…my first master stroke was getting a tracking cookie placed on the laptop computer of Dan Schoenherr…”

I thought it might be important to revisit the cyberstalking and spyware tactics used by Judd, with a little help from Scipio Africanus, a blogger who did much to expose dirty tactics used by supporters of Overstock.com.

Some history on Judd Bagley and Overstock.com: Judd Bagley is responsible for a site called AntiSocialMedia, which has a history of posts about critics of Overstock and its CEO, Patrick Byrne. Those posts have historically focused on the harassment and intimidation of those critics.

Although Patrick Byrne initially denied any knowledge of the person behind AntiSocialMedia, the relationship between Byrne and Bagley can be traced back to at least November 2005.Sometime on or before August 24, 2006, Bagley was hired by Overstock.com, and he eventually became the “Director of Communications.” Bagley’s authorship of AntiSocialMedia was exposed in January 2007 by Roddy Boyd, writing at the time for the New York Post.

Judd has specialized in getting his hands on the IP addresses of Overstock.com critics through very questionable means. For the less technically inclined, an IP address is to computers what a telephone number is to a telephone. Some people have fixed IP addresses, which are the same each and every time they get onto the internet. Others have IP addresses which change from time-to-time (sometimes each time they access the internet). So in that regard, IP addresses differ from telephone numbers, but they can be used to track the activity of people online. Each time you access a website, there is a record that your IP address visited there.

Whenever someone visits my website, I have the opportunity to see what their IP address is. That’s a legitimate way to get an IP address. When you visit my site, you may also receive a “cookie,” which is a bit of technology that will allow me to see when you come back to my site and might alert me to that fact.

Here’s where the use of technology to harvest IP addresses and get people to accept a cookie gets very sketchy: When someone secretly embeds something in a third party website without permission from the site owner or the people who will be accessing that site.

Judd Bagley has done this more than once on message boards related to Overstock.com. He added a hidden graphic to posts he made on those boards, and anyone who even looked at those posts had unknowingly been giving Judd their IP address and often accepting a cookie from him. Because these things were done on sites not owned by Bagley, users had no reason to believe he was accessing their IP address information or accepting cookies from him.

This message on the InvestorVillage stock message board exposes the fact that someone put one of tese hidden images in a private message made through that site:

PM message includes hidden image link for tracking IP addresses
—————————————
From: StockFoo
Sent: 1/8/2007 11:22:29 AM
Subject: wrong link

I think you put the wrong link up on the SCOX thing. That link didn’t say what you said it would.<br><img src=”http://am1.activemeter.com/webtracker/track.html? method=track&pid=26393&java=0″>; <br>StockFoo

The part of the message that starts “img src” is actually the hidden code that is meant to track the online activity of the person who looks at the message. The person can’t actually see that code when they read the message. She or he has to look at the source code behind the message to realize what has happened.

The tracking code wasn’t just inserted into message board posts and private messages on message boards. They have also been inserted into emails, often using false names and false pretenses to get the recipient to open them (and therefore get the tracking code onto their computer). If the recipient forwards that email, the tracking code also ends up on the computer of the person who received it.

Bagley’s favorite service to use this little “technique” is called ActiveMeter, and he’s also used hidden images hosted on servers owned by Provo Labs, a private company that he worked for in early 2006.

He’s bragged on more than one occasion about doing this, saying:

“The cool thing I figured out was using ActiveMeter on remote sites. Maybe its been done before (In fact, I’m sure it must have) but this iteration was developed independently by me and you have no idea the insights it has yielded.”

The reason why this is so insidious? He’s essentially stealing information about traffic from a third party site (like InvestorVillage) without anyone’s knowledge or permission.

The key word is “remote” site. In other words, he’s stealing traffic data from a 3rd party site without anyone’s knowledge.

Judd Bagley even tried to shut up a critic of Overstock by trying to blackmail him. He sent Scipio Africanus an email, saying he knew his real identity and would tell the world who he was and where he lived if he didn’t stop writing about Overstock.com. Bagley Evren Karpak (paid shill for Overstock.com and Patrick Byrne, and person working in concert with Byrne and Bagley) repeated the threat on a Yahoo message board:

You call? Very simple, then. Respond to this message and violate the condition ASM has set on not revealing what he has. Make your denial.

And then Bagley did proceed to publish the information on Scipio Africanus. Similar tactics have been used against other critics of Overstock.com, and to this day, Bagley, Byrne and Company continue to try to intimidate critics of Overstalk.

6 thoughts on “Details on the Overstock.com Cyberstalking and Spyware Campaign

  1. Scipio

    “Bagley repeated the threat on a Yahoo message board:”

    That threat was actually issued by then “ASM contributor” Evren Karpak, later hired by Overstock.com and then by Deep Capture. The message was deleted by Yahoo, but the proof remains:

    http://search.messages.yahoo.com/search?.mbintl=finance&q=condition+ASM+has+set&type=UfZSGTfVWsdLN.2a53b_APnMzqZDs_Eq6cEwWIu.5eF3tTf7DBkOrIT5YWs2G.GS&action=Search&srch=0&v=_9gRB7LVWscCKdWKGZvcD7qapbTq16CpSFR5F5wHpLPPbVF7z45U_3R6_4_pFQ–&b=1&within=subject&within=msgtext&showthread=tm&sentiment=0&postedon=pd&sMonth=8&sDay=14&sYear=2008&eMonth=8&eDay=14&eYear=2008

  2. Peter Landis

    Tracy, now that Byrne was vindicated from all your claims of accounting fraud, and vindicated regarding his claims of naked short sale abuses, is this the best you have left? I can’t wait until this vindication comes as well.

    There are a million things you could focus your attention on tell me, why this? What is the cause for the obsession?

  3. Tracy Coenen

    Hi Peter – Thanks for your interest in my site. You should really check out more of it. I’m a fraud investigator, and here I blog about frauds, scams, unethical behavior, and questionable accounting. That’s what my interest is here.

    To my knowledge, my allegations of accounting improprieties at Overstock.com have not been disproven. Not even one of them.

    As for naked short selling, I’ve never claimed that it didn’t exist. I just don’t believe that it has anything to do with the price of stock at Overstalk.com. I think the price of their stock is directly a result of the company’s pathetic performance, in conjunction with the aforementioned accounting improprieties as well as strategic hyping and pumping of the company stock by certain insiders.

    I’m not sure what issue you have with me writing about fraud. It’s my profession. Yes, there are a million other professions I could have chosen. I chose fraud investigation, and that’s what I write about. Much like others choose professions of their own. Thanks again for your interest.

  4. Tracy Coenen

    Scipio – Thanks for clarifying.. I will correct my posting to reflect that this statement was made by Evren Karpak, paid shill for Overstock.com and Patrick Byrne. Here’s a nice screen shot of the information you linked to.

    Threats to Scipio

  5. hateOverstock

    If they can scam SEC and the shareholders, why not you?

    This is the shittiest to do business with. I am an affiliated partner with Overstock. They just scam you big time each and every step. They use scary tactics that don’t work!!

    I would urge all the overstock affiliates pull out from this company full of dumb head bastards.

    Do NOT ever shop on their mediocre web site. You will never get good deals from these @[email protected] They always cheat you on returns.

Leave a Reply