Breach not a hack, says IS

LOL. Well somebody is going to be in hot water.

Secondly the fact that a SQL injection attack worked speaks volumes in itself.
 
It is currently not clear how the person responsible for the security breach got hold of the admin username and password, but IS is investigating the issue.
Click to expand...

...That says it ALL. So basically they have NO IDEA how this guy got in, well MAYBE HE 'HACKED' your system? They are just doing this to minimize the damage that has already been done. This by all means is a hack whether they like it or not. The guy snuffed out your admin password in whatever method he chose fit therefore in all cases...this was a H-A-C-K.

IS sucks and they know they are in HOT water with clients and customers a like. This is Karma for your crappy network and expensive prices.
 
VioAdmin said:
...That says it ALL. So basically they have NO IDEA how this guy got in, well MAYBE HE 'HACKED' your system? They are just doing this to minimize the damage that has already been done. This by all means is a hack whether they like it or not. The guy snuffed out your admin password in whatever method he chose fit therefore in all cases...this was a H-A-C-K.

IS sucks and they know they are in HOT water with clients and customers a like. This is Karma for your crappy network and expensive prices.
Click to expand...

I disagree. This does not sound like a "HACK". I think the relevant admin might have save his password list on his own pc and that might have fallen into the wrong hands.
 
...and since when is all this not classified as "HACKING" ? Gaining access to a system without permission is hacking. Just because it might be an inside source does not make it any less getting HACKED.
 
Illegal entry to any system is hacking. Finish en klaar.

Wikipedia : Hacking (English verb to hack, singular noun a hack) refers to the re-configuring or re-programming of a system to function in ways not facilitated by the owner, administrator, or designer. The term(s) have several related meanings in the technology and computer science fields, wherein a "hack" may refer to a clever or quick fix to a computer program problem, or to what may be perceived to be a clumsy or inelegant (but usually relatively quick) solution to a problem, such as a "kludge".

The terms "hack" and "hacking" are also used to refer to a modification of a program or device to give the user access to features that were otherwise unavailable, such as by circuit bending. It is from this usage that the term "hacking" is often used to refer to more nefarious criminal uses such as identity theft, credit card fraud or other actions categorized as computer crime.
 
What's really scary is this is the best answer the braintrust at DiData could provide.
 
So they are say their setup leaks info without even the need for a technically sophisticated hack? Way to go.

This smells of social engineering. Which in the hacking scene is considered a legitimate technique.
 
Anyone who read the official response from Mweb could derive that they weren't hacked. But it's cool, mybb jumped on the OMFG HACKED wagon within seconds and got their pageviews, and now even more pageviews from the article correcting the previous one.

Journalism.
 
The_Librarian said:
Illegal entry to any system is hacking. Finish en klaar.

Wikipedia : Hacking (English verb to hack, singular noun a hack) refers to the re-configuring or re-programming of a system to function in ways not facilitated by the owner, administrator, or designer. The term(s) have several related meanings in the technology and computer science fields, wherein a "hack" may refer to a clever or quick fix to a computer program problem, or to what may be perceived to be a clumsy or inelegant (but usually relatively quick) solution to a problem, such as a "kludge".

The terms "hack" and "hacking" are also used to refer to a modification of a program or device to give the user access to features that were otherwise unavailable, such as by circuit bending. It is from this usage that the term "hacking" is often used to refer to more nefarious criminal uses such as identity theft, credit card fraud or other actions categorized as computer crime.
Click to expand...

Surely this case is technically phishing or similar, if it is true that some unauthorized person got hold of the password. (But maybe they hacked some other system to get that.)

HavocXphere said:
So they are say their setup leaks info without even the need for a technically sophisticated hack? Way to go.

This smells of social engineering. Which in the hacking scene is considered a legitimate technique.
Click to expand...

Someone had the user name and password, why would they need to hack?
 
Kelerei said:
Erm... if I'm reading the article correctly, they tried SQL injection attacks after they successfully authenticated, but failed.

If I'm not reading the article correctly, then just ignore the line above. :)
Click to expand...

My bad. I read 'was only successful after login'. I blame a hard day at work for that. :whistle:
 
maybe the username was admin and the password "password"
It might have still been a brute force hack which succeeded at the first try!
 
You must log in or register to reply here.
Back
Top
Sign up to the MyBroadband newsletter
X