+ Post New Thread
Page 2 of 2 FirstFirst 12
Results 16 to 21 of 21
IT News Thread, LinkedIn Hacked in Other News; speaking of site hacks.. did we ever get a post about what happened to a certain IT Pro Life Line ...
  1. #16

    RabbieBurns's Avatar
    Join Date
    Apr 2008
    Location
    Sydney
    Posts
    5,527
    Thank Post
    1,339
    Thanked 470 Times in 307 Posts
    Blog Entries
    6
    Rep Power
    200
    speaking of site hacks.. did we ever get a post about what happened to a certain IT Pro Life Line site?

  2. #17

    SYNACK's Avatar
    Join Date
    Oct 2007
    Posts
    11,225
    Thank Post
    874
    Thanked 2,717 Times in 2,302 Posts
    Blog Entries
    11
    Rep Power
    780
    Quote Originally Posted by RabbieBurns View Post
    speaking of site hacks.. did we ever get a post about what happened to a certain IT Pro Life Line site?
    It was disussed in the ask the admins bit of the conf. Basicly there was a zeroday hole in the forum software that EG patched within hours but not before it was cracked by some Australian scriptkiddy who probably got the same email. He hung aroud for a bit before messing with the system. The possibility of a full breach was limited given the level of the exploitation and the limits on data transfer imposed by PHP timeouts on the server at the time meaning that it was unlikely they were able to dump the user table or anything like that.

  3. #18


    tom_newton's Avatar
    Join Date
    Sep 2006
    Location
    Leeds
    Posts
    4,475
    Thank Post
    866
    Thanked 850 Times in 672 Posts
    Rep Power
    196
    Also, edugeek's passwords are salted MD5 - so harder to crack large numbers of them than say linkedin's unsalted sha1.

    According to @zero_hour the attacker had limited access (no root) and while it was possible to see the hashed passwords, no evidence of a mass download was there.

  4. #19

    Join Date
    Jun 2012
    Posts
    5
    Thank Post
    0
    Thanked 2 Times in 2 Posts
    Rep Power
    0
    From the article

    "Skycure Security said the the mobile app was sending unencrypted calendar entries to LinkedIn servers without users' knowledge.

    The information included meeting notes, which often contain information such as dialling numbers and passcodes for conference calls."

    Rather irresponsible of Linkin to be sending any kind of private data unencrypted...

  5. #20

    Geoff's Avatar
    Join Date
    Jun 2005
    Location
    Fylde, Lancs, UK.
    Posts
    11,804
    Thank Post
    110
    Thanked 583 Times in 504 Posts
    Blog Entries
    1
    Rep Power
    224
    run:

    Code:
    unset HISTFILE
    before you run any 'sensitive' commands. This will disable the command history being recorded to file for the session.

  6. #21

    DaveP's Avatar
    Join Date
    Oct 2006
    Location
    Can't talk now: The mother-ship is calling!
    Posts
    8,982
    Thank Post
    352
    Thanked 1,300 Times in 890 Posts
    Blog Entries
    4
    Rep Power
    1131
    Link: Forgot Your Password? at Aram Bartholl – Blog

    LinkedIn passwords on display in museums around Europe:

    ...4.7 million LinkedIn clear text user passwords printed in alphabetical order in eight books...

SHARE:
+ Post New Thread
Page 2 of 2 FirstFirst 12

Similar Threads

  1. Website hacked...
    By _Bat_ in forum Web Development
    Replies: 8
    Last Post: 27th July 2007, 09:17 AM
  2. Are we being hacked?
    By Paul_L in forum General Chat
    Replies: 2
    Last Post: 13th September 2006, 08:31 AM
  3. linkedin
    By russdev in forum General Chat
    Replies: 5
    Last Post: 25th May 2006, 08:07 AM
  4. Replies: 34
    Last Post: 9th May 2006, 12:56 PM
  5. Video demonstrating hacking WEP in 10mins
    By Geoff in forum Wireless Networks
    Replies: 11
    Last Post: 3rd February 2006, 06:40 PM

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Tags for this Thread

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •