nav search
Data Centre Software Security DevOps Business Personal Tech Science Emergent Tech Bootnotes
BOFH
Lectures

back to article
Hackers steal personal data of military, gov personnel

This topic is closed for new posts.
Silver badge

Ouch

Goes to show that sometimes, there is no such thing as "good enough security".

Though, really, passwords? Which implies they were stored unhashed? Maybe I'm just nitpicking. After all, with the data they had, Gannet probably thought the lock of the safe was unbreakable anyway.

2
0
Anonymous Coward

They are not sure how it happened

Come on we all know it will be either

A) SQL Injection due to shit coding

B) Someone opened an email attachment inside the LAN

2
0
Pirate

Vuln

I can confirm it was SQLi in this case.

0
0
Facepalm

RE: They are not sure how it happened

Don't forget the obvious answer: the gov were running Winblows

1
4
Silver badge
FAIL

@AC 08:34

Right! Because SQLi attacks only work against M$ platforms!!!

Oh, wait ...

1
0
Stop

@AC 08:34

May be a ring of truth but as a committed Linux and OSX user even I had to down vote that one!

0
0
Anonymous Coward

Misleading title

I thought from the title that it was a govt/military site that was hacked, not a public site.

Mind you, those concerned should not have given this site anything more than the essentials (what is needed to subscribe) - and definitely not details about their position within any government/military organisation. Fail on them if they have.

1
0
FAIL

Guilty of this one myself ...

I'm in the British Army. On a US military kit site, I gave my country and arm of service to get the military discount. Combine that with the standard e-commerce stuff and I'm a big fat spear-phishing target.

0
0
This topic is closed for new posts.

The Register - Independent news and views for the tech community. Part of Situation Publishing