Hacker raids Aunty, dumps 44,560 email addresses

Powered by SC Magazine
 

Old website confirmed hacked.

Updated: An attacker has hacked into an ABC website and dumped almost 45,000 user email addresses and hashed passwords following a broadcast of an interview with radical Dutch politician Geert Wilders.

The ABC confirmed the attack which targeted the outsourced website of 2010 program "Making Australia Happy" and exposed registered users.

Spokeswoman Sally Cray said the ABC will contact the 45,000 affected users.

"As soon as the ABC was made aware of this activity the site was shut down," Cray said.

"This breach originated at an overseas location and an activist has claimed responsibility for it.

"The ABC will be in contact with audience members who have been directly affected."

Disused websites become easy targets for hackers when adminstrators no longer maintain them and apply patches. Such micro-sites should be taken down after use or kept updated.

Random checks against user identities listed within the 10 page online database dump returned legitimate matches.

Passwords are vulnerable. While not in clear text, the details are unsalted and encrypted with SHA-1. Online services can easily reveal some passwords.

The hacker claiming responsibility said the attack was in response to an interview broadcast on the ABC's Lateline program with the right-wing Wilders. The attacker claimed the ABC gave Wilders "a platform to spread hate".

Updated with a statement from the ABC.

Copyright © SC Magazine, Australia


Hacker raids Aunty, dumps 44,560 email addresses
 
 
 
Top Stories
Microsoft confirms Australian Azure launch
Available from next week.
 
NBN Co names first 140 FTTN sites
National trial extended.
 
Cloud, big data propel bank CISOs into the boardroom
And this time, they are welcome.
 
 
Sign up to receive iTnews email bulletins
   FOLLOW US...
Latest Comments
Polls
In which area is your IT shop hiring the most staff?




   |   View results
IT security and risk
  26%
 
Sourcing and strategy
  12%
 
IT infrastructure (servers, storage, networking)
  22%
 
End user computing (desktops, mobiles, apps)
  14%
 
Software development
  26%
TOTAL VOTES: 247

Vote
Would your InfoSec team be prepared to share threat data with the Australian Government?

   |   View results
Yes
  62%
 
No
  38%
TOTAL VOTES: 80

Vote