[ISN] Hackers deface old UTS system, dump user database

From: InfoSec News <alerts_at_private>
Date: Tue, 25 Sep 2012 04:19:13 -0500 (CDT)
http://www.zdnet.com/au/hackers-deface-old-uts-system-dump-user-database-7000004694/

By Michael Lee
ZDNet
September 24, 2012

One of the subdomains for the University of Technology, Sydney (UTS) 
fell victim to an attack over the weekend, with hackers, going by the 
names Apollo and 0day, defacing the sub-site and dumping user 
information.

The two hackers left a message for the system administrators, telling 
them to fix their security and to "hire some staff who actually know 
what they are doing."

They also claimed to have deleted everything on the server as a lesson 
and dumped the contents of a database.

UTS confirmed the breach, stating that the server was used to publish 
news to the UTS website and its IT staff detected it on Saturday morning 
at 7:45 a.m. AEST. The main UTS website was not affected.

"The affected machine was locked down, and service restored by 9 a.m. on 
Sunday," UTS said in a statement.

[...]


--
ExpandingSecurity.com Live OnLine classes won&#8217;t wreck your schedule.
Get that cert and be done before 2012 ends. Last ISSAP 2012 class starts
Sept. 25th. Last 2012 CISSP and CEH starts Oct. 1:
CEH info signup: http://www.expandingsecurity.com/product/ceh-certified-ethical-hacker-online/
CISSP info signup: http://www.expandingsecurity.com/product/cissp-live-online-10-week-course/
ISSAP info signup: http://www.expandingsecurity.com/product/issap-information-systems-security-architecture-professional/ 
Received on Tue Sep 25 2012 - 02:19:13 PDT

This archive was generated by hypermail 2.2.0 : Tue Sep 25 2012 - 02:13:52 PDT