The Missouri Sheriff’s Association training website is one of the happy new government entities hacked by AntiSec.

AntiSec – a campaign being run by various Anonymous members in collaboration with spin-off hacker group LulzSec – claimed responsibility for the hack and dump personal information of more than 7000 law enforcement officers.

The dump, as far as it has been given us the opportunity to have a look at it, contains names, addresses, social security numbers and IDs (login/password) of more than 7000 police officers and related.

Many of the passwords employed by the officers were ordinary dictionary words, or were identical to their names or badge numbers, showing that law enforcement agents often make the same careless mistakes others do in setting up security pass codes. Assuming these people used the same password for other accounts, as is common, their email accounts would also be compromised [read here].

The fact that password are so easily given away  strongly suggests that the training site failed to follow industry best practices by securing the password database with one-time hashes to prevent them from being read by attackers.

UP4B offers a wide range of process and network analysis to make sure that your network is protected against what is really important for your business: information leak, network protection (penetration testing,…), network availability and more.

Feel free to contact us for more information on our IT Security services and get your company IT Sec ready.

• Search

• Tags

  Anonymous AntiSec attack cybercirme cybercrooks economy FBI hack hacker hacking hacktivist IT Security LulzSec Mantech International US government US Senate wikileaks
  Powered by SEO Tag Cloud

• Latest Posts

  • 

    AntiSec…

    Aug 2, 2011

  • 

    Being an US gov sub contractor…

    Jul 30, 2011

  • 

    Cybercrime ecosystem

    Jul 25, 2011

• Categories

  Select Category IT Security  (4)

• Archives

  • August 2011
  • July 2011
  • June 2011

  Share the news