[WASC-WHID] WHID 2011-73: Royal Navy hacker claims to have broken into space agency site

WASC Web Hacking Incidents Database wasc-whid at lists.webappsec.org
Mon Apr 25 09:20:02 EDT 2011


*Entry Title: *WHID 2011-73: Royal Navy hacker claims to have broken into
space agency site
*WHID ID: *2011-73
*Date Occurred: *April 18, 2011
*Attack Method: *SQL Injection
*Application Weakness: *Improper Input Handling
*Outcome: *Leakage of Information
*Attacked Entity Field: *Government
*Attacked Entity Geography: *
*Incident Description: *Login credentials for database, email and other key
systems that a poster claims belong to the European Space Agency were posted
on a full disclosure mailing list over the weekend.
*Mass Attack: *No
*Reference: *
http://www.eweekeurope.co.uk/news/european-space-agency-confirms-ftp-server-hack-26976
*Attack Source Geography:*
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.webappsec.org/pipermail/wasc-whid_lists.webappsec.org/attachments/20110425/50529db8/attachment-0003.html>


More information about the wasc-whid mailing list