The Indelible Bonobo Experience

Renaissance Monkey: in-depth expertise in Jack-of-all-trading. I mostly comment on news of interest to me and occasionally engage in debates or troll passive-aggressively. Ask or Submit 2 mah authoritah! ;) !

Quote Post
The attackers are using brute-force tactics to break into user accounts for WordPress and Joomla sites. The top five user names being targeted are “admin,” “test,” “administrator,” “Admin,” and “root.” In a brute-force attack, the perpetrators systematically try out all possible combinations until they successfully login to the account. It is easier to guess and figure out simple passwords such as number sequences and dictionary words, and a botnet automates the entire process . The top five passwords being attempted in this attack happen to be “admin,” “123456,” “111111,” “666666,” and “12345678.
WordPress, Joomla Sites Under Brute-Force Password Attack
Posted in it security wordpress joomla brute force attack admin root sucuri cloudflare brobot botnet webserver passwords | 1 note
Photo Post
Ironically, prosecutors tried to turn Mr. Auernheier’s upbeat and sarcastic Reddit comments against him at the sentencing hearing the next day. They pushed for 4 years — nearly the maximum sentence. The judge instead sentenced him to a slightly shorter 41 months sentence, to be followed by 3 years of supervised release, during which time his electronic behavior will be monitored. (via DailyTech - Goatse Security iPad Hacker Gets 41 Months for “Doing Arithmetic”)

Ironically, prosecutors tried to turn Mr. Auernheier’s upbeat and sarcastic Reddit comments against him at the sentencing hearing the next day. They pushed for 4 years — nearly the maximum sentence. The judge instead sentenced him to a slightly shorter 41 months sentence, to be followed by 3 years of supervised release, during which time his electronic behavior will be monitored. (via DailyTech - Goatse Security iPad Hacker Gets 41 Months for “Doing Arithmetic”)

Posted in andrew auernheimer security it computer data hacking sentencing usa incarceration prison
Photo Post
nationalpost: Student expelled from Montreal college after finding ‘sloppy coding’ that compromised security of 250,000 students personal dataA student has been expelled from Montreal’s Dawson College after he discovered a flaw in the computer system used by most Quebec CEGEPs (General and Vocational Colleges), one which compromised the security of over 250,000 students’ personal information.Ahmed Al-Khabaz, a 20-year-old computer science student at Dawson and a member of the school’s software development club, was working on a mobile app to allow students easier access to their college account when he and a colleague discovered what he describes as “sloppy coding” in the widely used Omnivox software which would allow “anyone with a basic knowledge of computers to gain access to the personal information of any student in the system, including social insurance number, home address and phone number, class schedule, basically all the information the college has on a student.”“I saw a flaw which left the personal information of thousands of students, including myself, vulnerable,” said Mr. Al-Khabaz. “I felt I had a moral duty to bring it to the attention of the college and help to fix it, which I did. I could have easily hidden my identity behind a proxy. I chose not to because I didn’t think I was doing anything wrong.” (Image courtesy of safesolvent.com) Is it surprising that those in charge of higher education are a bunch of dumb phux?

nationalpost:

Student expelled from Montreal college after finding ‘sloppy coding’ that compromised security of 250,000 students personal data
A student has been expelled from Montreal’s Dawson College after he discovered a flaw in the computer system used by most Quebec CEGEPs (General and Vocational Colleges), one which compromised the security of over 250,000 students’ personal information.

Ahmed Al-Khabaz, a 20-year-old computer science student at Dawson and a member of the school’s software development club, was working on a mobile app to allow students easier access to their college account when he and a colleague discovered what he describes as “sloppy coding” in the widely used Omnivox software which would allow “anyone with a basic knowledge of computers to gain access to the personal information of any student in the system, including social insurance number, home address and phone number, class schedule, basically all the information the college has on a student.”

“I saw a flaw which left the personal information of thousands of students, including myself, vulnerable,” said Mr. Al-Khabaz. “I felt I had a moral duty to bring it to the attention of the college and help to fix it, which I did. I could have easily hidden my identity behind a proxy. I chose not to because I didn’t think I was doing anything wrong.” (Image courtesy of safesolvent.com)

Is it surprising that those in charge of higher education are a bunch of dumb phux?

Posted in it security cegep montreal coding | 281 notes