No vacation for hackers. After the revelations about the hacking of Sony in December, a group called Linker Squad has claimed the attack, there are several days of TF1′s website. With this piracy, the group would have collected the personal data of 1.9 million people.
This is the specialist website Zataz.com data reveals that attack. According to the journalist Damien Bancal joined by L’Express, the hacker group contacted him to tell him of his actions, with supporting evidence. The attack targeted the area “press subscriptions” TF1 website, which allows you to subscribe to magazines. It would be managed by a subcontractor. The flaw was handled by TF1 technical leadership within an hour of the alert.
“Neither spies nor professional”
“They are not spies or professionals. We are dealing with young people who are good with a search engine, with two or three software. To hack a database now just a little savvy, “says Damien Bancal.
To prove their attack, hackers have sent him including screenshots showing the email addresses and passwords (not encrypted). The hackers also claim to have recovered RIB. They said they wanted, by this gesture, “showing pirated companies to do anything” with their website. But Damien Bancal, their actions do not really reflect a noble cause.
Two other sites targeted
“I quickly understood that their motivation was the act of piracy itself, they want above all that we talk about them, “he explains. In other words, Linker Squad had not intended to help a company improve security of its site. Behind this act can also hide the idea of stealing data and then sell them on the black market. “They can sell the bank details or email addresses, for example to other hackers who will use it to send pubs, malware or unwanted advertising.”
Damien Bancal knew there ten days that the TF1 website had been hacked. He then warned the chain and waited for the flaw to be repaired to disseminate information. But since then the Linker Squad group claimed other attacks. The specialist warned referred companies and prefers not to name them as the flaws are not corrected.
“No 100% security in IT”
Are companies too lax in securing their databases? “We have to stop typing on the directors. In computing, 100% security will never exist,” said Damien Bancal. “Do not fall into paranoia. But computers, they are numbers. Just a small mistake, a human forgetfulness to create a loophole.” More site grows and adds new pages, it becomes fallible. “It’s like a house: the more you have windows, plus there is risk of drafts.”
No comments:
Post a Comment