FBI website hacked and data released, mocked by hackers

Recently, the FBI was slapped in the face by hackers. Not only was the website hacked, but the website data was directly published online. The intruder also publicly expressed his slightly sarcastic "New Year's greetings" through social networks. It is understood that the leaked data are several backup files of the website, which have been published on the Pastebin website. They include the usernames, email addresses, passwords encrypted with the SHA1 algorithm, and the salt value used for encryption. The intruder CyberZeist's intrusion method mainly exploited a zero-day vulnerability in the CMS content management system used by the FBI website. This system, called Plone, is recognized as the most secure CMS content management system ever. It is reported that the intruder CyberZeist was once a member of the "Anonymous" hacker group Anonymous, and he himself is also "notorious" in the industry. In 2011, he hacked into FBI-related agencies. In addition, he also hacked Barclays, Tesco Bank and MI5 (yes, the "Military Intelligence Five" you saw in the James Bond movie). When trying to access CyberZeist's Twitter, he was launching a public vote to let everyone help him determine the next target of network intrusion. There were four options: government organizations, banking institutions, military, and others. However, although CyberZeist was an intruder, the zero-day vulnerability he used to hack into the FBI was not discovered by him. CyberZeist said: I am not the discoverer of this vulnerability. I just took this vulnerability to the FBI website and tried it. I didn't expect it to work! CyberZeist revealed that he bought the vulnerability from the anonymous network Tor. The vulnerability exists in some python modules of the Plone content management system. The seller did not dare to use the vulnerability to hack into the FBI website (but he did), and it has been stopped for sale. But CyberZeist said that he would announce the vulnerability on Twitter later. After learning about CyberZeist's intrusion, the FBI immediately assigned security experts to carry out repair work, but the 0-day vulnerability of the Plone content management system has not been fixed yet. CyberZeist also released a mocking tweet about this. In addition, CyberZeist also expressed strong dissatisfaction with the FBI's negligence in security. He said that he was originally worried that hackers would use the vulnerability to attack the FBI, and he tried it on the FBI website for the purpose of security testing. As a result, it was found that the FBI's website administrator made some low-level mistakes. They exposed a large number of backup files directly on the same server, which eventually led to CyberZeist's successful access to these files. After that, CyberZeist released another message saying that Amnesty International's website was also affected by this vulnerability, and the news was confirmed by the other party. It is understood that as long as the vulnerability is not fixed, all websites using the system may face the same risk, including the European Union Network Information and Security Agency and the Intellectual Property Coordination Center.

As a winner of Toutiao's Qingyun Plan and Baijiahao's Bai+ Plan, the 2019 Baidu Digital Author of the Year, the Baijiahao's Most Popular Author in the Technology Field, the 2019 Sogou Technology and Culture Author, and the 2021 Baijiahao Quarterly Influential Creator, he has won many awards, including the 2013 Sohu Best Industry Media Person, the 2015 China New Media Entrepreneurship Competition Beijing Third Place, the 2015 Guangmang Experience Award, the 2015 China New Media Entrepreneurship Competition Finals Third Place, and the 2018 Baidu Dynamic Annual Powerful Celebrity.

<<: Limited to 200 units worldwide! Bronze iPhone 7/7 Plus makes stunning debut

>>: Google Nexus 6 gets Android 7.1 update

Finger-clip oximeter, blood oxygen watch, blood oxygen app... Which one is more reliable? We did a scientific evaluation and doctors gave us professional advice. Save it now!

Blog

How do educational and training institutions attract traffic through video accounts?

Blog

100 days, 1000 meters, a new starting point

Blog

Are dried shrimps and soy milk good at supplementing calcium? Do middle-aged and elderly people need calcium supplements? Exposing 8 rumors about calcium supplements

Blog

Should I choose B-end or C-end for interaction? Read this personal analysis!

Science Illustrations | International Day of the Blind: Technology beautifies life and allows the visually impaired to "see" the world

Blog

GAC Aion: From January to December 2022, Aion's cumulative sales volume reached 271,000 units, a year-on-year increase of 126%.

GAC Aion announced that it delivered 10,206 new c...

FBI website hacked and data released, mocked by hackers

Finger-clip oximeter, blood oxygen watch, blood oxygen app... Which one is more reliable? We did a scientific evaluation and doctors gave us professional advice. Save it now!

How do educational and training institutions attract traffic through video accounts?

100 days, 1000 meters, a new starting point

Are dried shrimps and soy milk good at supplementing calcium? Do middle-aged and elderly people need calcium supplements? Exposing 8 rumors about calcium supplements

Should I choose B-end or C-end for interaction? Read this personal analysis!

Solar panels: a protective umbrella for space exploration

Huaxiaozhu's user growth strategy

【Android】I can’t describe this effect

As the Great Heat arrives, what should you pay attention to in order to maintain your health?

Science Illustrations | International Day of the Blind: Technology beautifies life and allows the visually impaired to "see" the world

Recommend

Meizu Note 9 review: A sub-flagship nightmare, the best PUBG smartphone you can buy

A complete online event plan!

Learn these 8 "head to toe" health self-test methods to teach you to check yourself in time to eliminate health risks

iPhone 6 running score exposed again

GAC Aion: From January to December 2022, Aion's cumulative sales volume reached 271,000 units, a year-on-year increase of 126%.

Can AI meet human emotional needs?

How do genes determine our lives? Can the Human Genome Project solve the mystery of birth, aging, illness and death?

What issues should be paid attention to in Foshan website construction? Don't be fooled!

Mi Xiaoquan Animation Idiom Lesson Part 2

With wireless charging coming, will iPhone 8 still come with a data cable as standard?

Brand promotion: build a brand from 0-1!

5 ways to use eye tracking to improve website operations

How can I create a high-authority Zhihu account?

Dry eyes...how did it become a terminal illness?

What role does advertising play in the three processes of operation?