Anonymous didn't just DDOS the Department of Foreign Affairs site...

nesf

They also hacked it, got a list of passwords and released them up online: https://twitter.com/#!/AnonOpsSweden/status/164820945121456128

Great way to bring people onto your side etc. :rolleyes:

bedrock#1

not a great OP now is it?

wiseguy

name userid password email

...
Daniel Rowan        12        [B]gangster[/B] 

...
fionnuala quinlan        17        Password1        fionnuala.quinlan@dfa.ie
....

brid        6        [B]password        [/B]brid.mcgrath@dfa.ie
Brad McGrath        7        [B]password        [/B]brid.mcgrath@dfa.ie

Well with passwords like that no wonder they got hacked, they deserve it
should be a lesson in there for anyone using weak passwords

Sarky

It would have been quicker for Anonymous to try the first dozen "passwords that are famous for being totally insecure and only used by the technologically illiterate or just plain stupid" than to actually hack the site.

nesf

bedrock#1 wrote: »

not a great OP now is it?

Indeed.

bedrock#1

nesf wrote: »

Indeed.

Not a great 2nd post either....

nesf

bedrock#1 wrote: »

Not a great 2nd post either....

I've a squirming toddler to deal with, not much chance for typing this time of day.

msg11

Some serious passwords going on there !

expectationlost

nesf wrote: »

They also hacked it, got a list of passwords and released them up online: https://twitter.com/#!/AnonOpsSweden/status/164820945121456128

Great way to bring people onto your side etc. :rolleyes:

that's not what anonymous is for.

DoesNotCompute

In fairness to the dept, it looks like anonymous only got about 20 of the weakest passwords out of the roughly 700 people who work there

VinLieger

Not sure what to think of this.
On the one hand its hilarious how bad the security is on these sites and anonymous basically strolling in the door is awesome.
On the other hand it doesnt really help our fight and kinda just encourages the simplistic and uninformed view of us all just being "keyboard warriors"

brimal

I would love to know what system they have in place there.

Any backend systems I've used in corporate environments wouldn't allow passwords of this simplicity to be saved.

invinciblePRSTV

Seems that these passwords are for people who may no longer work for the DFA.

A quick google reveals that a Rory Coveney appears on the donations list to Simon Coveney, so I'll presume they are brothers. Seems this Rory Coveney used to work for the DFA but now appears to have landed a plum number working for RTE.

Isn't it great how scions of wealthy Irish families seem to always land themselves in cushy public service numbers? Rory seems to have landed his handy number for RTE in mid 2011, just after his bro became a Minister, probably just coincidence of course.

EDIT - my bad, seems Rory joined RTE in 2007, and is in his current role - strategic advisor to RTE's Director General - since mid 2011. Still suspicious timing imo.

sarkozy

I know these people!

Some of the addresses are defunct, anyway.

paddydriver

These are likely from a local user database on the web server or its OS, and these are sometimes in cleartext or weak encryption but supposedly in a directory not accessible from the outside - notice that "Arekibo" accounts in there for the company that likely set up the site - http://www.arekibo.com/info/overview-services.aspx

Think DFA might be asking some questions of Arekibo as to why this happened...

sarkozy

Actually, that's a excellent theory. I'd say that's exactly it, but I'm not saying exactly why.

And, yes, Arekibo might be in for a few questions from DFA.

drunkmonkey

The FG Press officer @oireachtas.ie's password is Gangster.

This guy should be investigated if that's the first word he can think of.

paddydriver

drunkmonkey wrote: »

The FG Press officer @oireachtas.ie's password is Gangster.

This guy should be investigated if that's the first word he can think of.

Now... I need you to come up with a password, whats the first thing that comes into your mind... maybe something to do with the people you work for:D

davoxx

damn now i have to change my password from Password1 to Password2 ... they'll never guess that ... :rolleyes: