Home page logo

funsec logo funsec mailing list archives

Re: Youth expelled from Montreal college after finding "sloppy coding" that compromised security of 250, 000 students personal data
From: Rich Kulawiec <rsk () gsp org>
Date: Thu, 24 Jan 2013 12:46:42 -0500

Oh, this story just keeps getting better:



        This, despite the fact that a primary Dawson College public
        domain may remain compromised following a 2011 incursion by an
        unknown hacker named "iskorpitx". That hacker appears to have
        successfully uploaded a 'Shell' to the domain, leaving a public
        'f** file' alerting administrators of the site that a successful
        incursion had taken place.

        As of midnight Monday, the Dawson College server still returned
        the file using any web browser, despite credible Twitter alerts
        about the compromise to @mydawsoncollege earlier that evening
        from multiple sources.

Apparently the incompetent lying morons at Dawson College are far more
worried about a student who is arguably brighter than they are than they
are over exposing the information of their faculty/staff/students.

Fun and Misc security discussion for OT posts.
Note: funsec is a public and open mailing list.

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]