CyberInsecure.com

Daily cyber threats and internet security news: network security, online safety and latest security alerts
March 22nd, 2012

US Army CECOM Website Breached, 30 Record Sets With User IDs, Clear-text Passwords, Private Data Posted On Pastebin

Black Jester, the hacker who yesterday demonstrated that he managed to gain unauthorized access to a NASA site, leaked sensitive contract information from a site connected to the US Army Communications and Electronics Command (CECOM).

A number of 30 record sets that include names, user IDs, physical addresses, email addresses, telephone numbers, and clear-text passwords were published in a Pastebin document.

“Old crappy server, but has good info inside it. The list is not complete due the lazy condition and msaccess db , enjoy!” the hacker wrote next to the data dump.

The Pastebin post doesn’t contain the name of the site from where the data was leaked, but the hacker provided us with the IP address associated with it. That IP address led us to a Software Engineering Services site on which only “eligible users” may register.

We couldn’t reach the hacker for further comment, but he told us on a different occasion that the names of such sites would not be disclosed to the public to prevent “script kiddiez” from breaching them.

We have sent an email to the webmaster of the site in question and notified him on the incident, but so far we haven’t received any response.

Black Jester is known in the hacker community as the one who wanted to help the United Nations patch up a couple of its public websites. Instead of doing what most security researchers do in this situation and send an email, he went down to their offices in person.

His other hacks, which he claims are unrelated to the UN incident, targeted NASA and a Qwest datacenter, whose servers he held hostage with the purpose of forcing the company to patch up the vulnerabilities.

Credit: Softpedia.com News

Share this item with others:

More on CyberInsecure:
  • European Space Agency Website ESA.int Hacked, FTP And Email Passwords Leaked
  • Monster.com And USAJobs.gov Database Breached (Again), Private Data Of Millions Stolen
  • Security Research Shows 75 Percent Of US Bank Websites Have Flaws
  • Acer’s European Website Acer-euro.com Breached, 40,000 Users Data Stolen
  • Patients Personal Data Compromised In Walter Reed Army Medical Center

    • Posted in Breaches And Incidents, Data Theft, Hacked, Targeted Attacks | Print This Post Print This Post

    This entry was posted on Thursday, March 22nd, 2012 at 6:59 pm and is filed under Breaches And Incidents, Data Theft, Hacked, Targeted Attacks. You can follow any responses to this entry through the RSS 2.0 feed. You can skip to the end and leave a response. Pinging is currently not allowed.

    If you found this information useful, consider linking to it from your own website.
    Just copy and paste the code below into your website (Ctrl+C to copy)
    It will look like this: US Army CECOM Website Breached, 30 Record Sets With User IDs, Clear-text Passwords, Private Data Posted On Pastebin

    Leave a Reply

    Comments with unsolicited links to other resources will be marked as spam. DO NOT leave links in comments. Please leave your real email, it wont be published.

    *
    To prove you’re a person (not a spam script), type the security word shown in the picture. Click on the picture to hear an audio file of the word.

    « «
    » »