Thread: Security IEEE FTP server logs unsecured, leaving Apple, Google, IBM and Oracle details exposed
View Single Post
  #1   (View Single Post)  
Old 26th September 2012
J65nko J65nko is offline
Administrator
  
Join Date: May 2008
Location: Budel - the Netherlands
Posts: 4,131
Default IEEE FTP server logs unsecured, leaving Apple, Google, IBM and Oracle details exposed
From http://www.theregister.co.uk/2012/09..._leaks_logins/

Quote:
IEEE members will be scrambling to change their logins after it emerged that more than 100,000 members’ names and plaintext passwords were left in plain sight for more than a month.

In this documentation and analysis of the breach, Danish FindZebra computer scientist Radu Dragusin notes, among other things, that bad password habits can exist even among the computer scientists, engineers and standards-developers of the IEEE as anywhere else. The most common password, he notes, was “123456”, followed closely by ieee2012.
__________________
You don't need to be a genius to debug a pf.conf firewall ruleset, you just need the guts to run tcpdump
Reply With Quote