+ Post New Thread
Page 2 of 2 FirstFirst 12
Results 16 to 21 of 21
IT News Thread, LinkedIn Hacked in Other News; speaking of site hacks.. did we ever get a post about what happened to a certain IT Pro Life Line ...
  1. #16

    RabbieBurns's Avatar
    Join Date
    Apr 2008
    Location
    Sydney
    Posts
    5,532
    Thank Post
    1,341
    Thanked 470 Times in 307 Posts
    Blog Entries
    6
    Rep Power
    200
    speaking of site hacks.. did we ever get a post about what happened to a certain IT Pro Life Line site?

  2. #17

    SYNACK's Avatar
    Join Date
    Oct 2007
    Posts
    11,270
    Thank Post
    884
    Thanked 2,747 Times in 2,321 Posts
    Blog Entries
    11
    Rep Power
    785
    Quote Originally Posted by RabbieBurns View Post
    speaking of site hacks.. did we ever get a post about what happened to a certain IT Pro Life Line site?
    It was disussed in the ask the admins bit of the conf. Basicly there was a zeroday hole in the forum software that EG patched within hours but not before it was cracked by some Australian scriptkiddy who probably got the same email. He hung aroud for a bit before messing with the system. The possibility of a full breach was limited given the level of the exploitation and the limits on data transfer imposed by PHP timeouts on the server at the time meaning that it was unlikely they were able to dump the user table or anything like that.

  3. #18


    tom_newton's Avatar
    Join Date
    Sep 2006
    Location
    Leeds
    Posts
    4,491
    Thank Post
    868
    Thanked 855 Times in 675 Posts
    Rep Power
    197
    Also, edugeek's passwords are salted MD5 - so harder to crack large numbers of them than say linkedin's unsalted sha1.

    According to @zero_hour the attacker had limited access (no root) and while it was possible to see the hashed passwords, no evidence of a mass download was there.

  4. #19

    Join Date
    Jun 2012
    Posts
    5
    Thank Post
    0
    Thanked 2 Times in 2 Posts
    Rep Power
    0
    From the article

    "Skycure Security said the the mobile app was sending unencrypted calendar entries to LinkedIn servers without users' knowledge.

    The information included meeting notes, which often contain information such as dialling numbers and passcodes for conference calls."

    Rather irresponsible of Linkin to be sending any kind of private data unencrypted...

  5. #20

    Geoff's Avatar
    Join Date
    Jun 2005
    Location
    Fylde, Lancs, UK.
    Posts
    11,850
    Thank Post
    110
    Thanked 598 Times in 514 Posts
    Blog Entries
    1
    Rep Power
    227
    run:

    Code:
    unset HISTFILE
    before you run any 'sensitive' commands. This will disable the command history being recorded to file for the session.

  6. #21

    DaveP's Avatar
    Join Date
    Oct 2006
    Location
    Can't talk now: The mother-ship is calling!
    Posts
    9,262
    Thank Post
    353
    Thanked 1,334 Times in 919 Posts
    Blog Entries
    4
    Rep Power
    1189
    Link: Forgot Your Password? at Aram Bartholl – Blog

    LinkedIn passwords on display in museums around Europe:

    ...4.7 million LinkedIn clear text user passwords printed in alphabetical order in eight books...



SHARE:
+ Post New Thread
Page 2 of 2 FirstFirst 12

Similar Threads

  1. Website hacked...
    By _Bat_ in forum Web Development
    Replies: 8
    Last Post: 27th July 2007, 10:17 AM
  2. Are we being hacked?
    By Paul_L in forum General Chat
    Replies: 2
    Last Post: 13th September 2006, 09:31 AM
  3. linkedin
    By russdev in forum General Chat
    Replies: 5
    Last Post: 25th May 2006, 09:07 AM
  4. Replies: 34
    Last Post: 9th May 2006, 01:56 PM
  5. Video demonstrating hacking WEP in 10mins
    By Geoff in forum Wireless Networks
    Replies: 11
    Last Post: 3rd February 2006, 07:40 PM

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Tags for this Thread

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •