View Single Post
  #1   (View Single Post)  
Old 8th December 2011
J65nko J65nko is offline
Administrator
 
Join Date: May 2008
Location: Budel - the Netherlands
Posts: 4,128
Default Dutch PKI provider's web site security breach under investigation

From http://h-online.com/-1392605

Quote:
The web site of Gemnet, subsidiary of KPN and provider of PKI certificates to the Dutch government, succumbed to a hacker's attack according to Webwereld reportsDutch language link. It appears that the attackers gained access to a database on the server managed by a PHPMyAdmin instance which was not protected by a password.

The attacker then used this web access to get to the database without a password. The company was informed that it was leaking information on Wednesday night and has been taken off the air by parent company KPN, who then launched an investigation.
__________________
You don't need to be a genius to debug a pf.conf firewall ruleset, you just need the guts to run tcpdump
Reply With Quote