TechSpot

IEEE accidentally exposed 100,000 unencrypted user credentials

By Matthew
Sep 26, 2012
Post New Reply
  1. A Romanian researcher who recently found plaintext usernames and passwords on an IEEE (Institute of Electrical and Electronics Engineers) server has published his analysis of the data. Radu Dragusin, a computer scientist who works for search engine FindZebra, discovered the...

    Read more
     
  2. Chazz

    Chazz TS Evangelist Posts: 671   +73

    So this guy finds a flaw like this, that has been open for a month, swipes the data and reports it only two days ago. I don't think that's very ethical.
     
  3. Perhaps it took a month for him to download 100 GB of data then analyze it.
     
  4. Burty117

    Burty117 TechSpot Chancellor Posts: 2,917   +684

    Do none of these company's learn after the Sony debacle? Just Encrypt your F**k**g user account details!

    Its like they want a court case on their hands...
     
  5. Jay Pfoutz

    Jay Pfoutz Malware Helper Posts: 4,282   +49

    I don't think it has anything to do with ethics. It's more to do with actually being able to understand the flaw, and having the capability to seek answers. Most serious researchers don't have a lot of time to do a full report, however, I commend Radu for taking the time to do a full report. The issue is fully understood, in fact, and it's just one of those things where a company is not properly protecting its security and intellectual property.
     

Similar Topics

Add New Comment

You need to be a member to leave a comment. Join thousands of tech enthusiasts and participate.
TechSpot Account You may also...