Feeds

Hertfordshire plod passwords leaked by pro-Assange data burglar

Database raid by lackadaisical protestor

Website security in corporate America

A UK police website has been hacked, exposing usernames, unencrypted passwords and other sensitive login details for more than 90 serving officers.

The miscreant who raided the Hertfordshire force's database also lifted and leaked workplace phone numbers, email addresses, warrant numbers and PINs of the county's Safer Neighbourhood Team.

The hacker claims to be a sympathiser of Julian Assange, who is holed up in Ecuador's embassy in London to avoid extradition to Sweden, and the digital break-in is seen as a protest against efforts by UK police to arrest the Wikileaker-in-chief.

The home county's top cops have suspended part of the knackered website as a precaution while tech sleuths investigate the breach, as this statement explains:

Hertfordshire Constabulary is currently investigating following the publication on the internet of information stored on a database linked to the public Safer Neighbourhoods pages of the external constabulary website.

As a precaution these pages have been temporarily disabled whilst the circumstances as to how this information was obtained is investigated.

There is absolutely no suggestion that any personal data relating to officers or members of the public has been, or could have been compromised. Nevertheless matters of IT security are extremely important to the constabulary and an investigation is already under way.

The black hat hacker who claimed responsibility for the breach leaked what looks like records from the Hertfordshire Police website database along with a quote from Assange and an "OpFreeAssange" banner. The miscreant involved dissociated himself from Anonymous by saying he was not a member of the hacktivist collective.

He stated: "I am not a member of Anonymous. Do whatever the fuck you want with this information, I don't give a fuck! This is nothing big not some l33t h4x shit... but this tells how insecure the web is."

Anonymous has run a number of operations in support of Wikileaks and Assange over recent months, including attacking banks and PayPal for blocking the whistle-blowing website's online fundraising efforts.

Cops are poised outside the Ecuadorian embassy in west London ready to cuff Assange should he attempt to make a break for it. The UK authorities have agreed to extradite Assange to Sweden for questioning over sexual assault allegations made by two women. The Wikileaks founder preempted his arrest by legging it to the embassy and successfully applying for asylum. ®

Protecting users from Firesheep and other Sidejacking attacks with SSL

More from The Register

next story
Early result from Scots indyref vote? NAW, Jimmy - it's a SCAM
Anyone claiming to know before tomorrow is telling porkies
TOR users become FBI's No.1 hacking target after legal power grab
Be afeared, me hearties, these scoundrels be spying our signals
Home Depot: 56 million bank cards pwned by malware in our tills
That's about 50 per cent bigger than the Target tills mega-hack
Hackers pop Brazil newspaper to root home routers
Step One: try default passwords. Step Two: Repeat Step One until success
NORKS ban Wi-Fi and satellite internet at embassies
Crackdown on tardy diplomatic sysadmins providing accidental unfiltered internet access
UK.gov lobs another fistful of change at SME infosec nightmares
Senior Lib Dem in 'trying to be relevant' shocker. It's only taxpayers' money, after all
Critical Adobe Reader and Acrobat patches FINALLY make it out
Eight vulns healed, including XSS and DoS paths
Spies would need SUPER POWERS to tap undersea cables
Why mess with armoured 10kV cables when land-based, and legal, snoop tools are easier?
prev story

Whitepapers

Secure remote control for conventional and virtual desktops
Balancing user privacy and privileged access, in accordance with compliance frameworks and legislation. Evaluating any potential remote control choice.
WIN a very cool portable ZX Spectrum
Win a one-off portable Spectrum built by legendary hardware hacker Ben Heck
Storage capacity and performance optimization at Mizuno USA
Mizuno USA turn to Tegile storage technology to solve both their SAN and backup issues.
High Performance for All
While HPC is not new, it has traditionally been seen as a specialist area – is it now geared up to meet more mainstream requirements?
The next step in data security
With recent increased privacy concerns and computers becoming more powerful, the chance of hackers being able to crack smaller-sized RSA keys increases.