Hacker Says He Compromised Intel, Gained Private Info

Status
Not open for further replies.
G

Guest

Guest
Um... Im not 100% on this but isn't "insert into" an sql query to put data into a database... Not read the data..
 

freggo

Distinguished
Nov 22, 2008
2,019
0
19,780
"Hacker Says He Compromised Intel, Gained Private Info"

There is an ERROR in the title !

Corrected:
"A Criminal Says He Compromised Intel, Gained Private Info"

 

madooo12

Distinguished
Dec 6, 2011
367
0
18,780
[citation][nom]ringzero[/nom]Am I the only one who thinks he (and Toms) hasn't blocked out enough info in that example?[/citation]
me too, credit card numbers and expiary dates aren't hidden

this is really stupid

REMOVE THE PICTURE NOW
 

bigdragon

Distinguished
Oct 19, 2011
1,107
547
20,160
I'm more interested in when the Core i7 3930k and 3820 will start appearing in stores where you can actually buy them. I really don't like this rumored delay to March 1st. Too many delays! I'd also like to know more about exactly when Intel wants to release Ivy Bridge. When can I buy a Core i7 3770k? Credit cards, emails, and other stuff out of an Intel database is about the least interesting thing that company stores. I wish you could see me yawning.
 

lockhrt999

Distinguished
Apr 15, 2010
255
0
18,790
Hackers suck!. Some of you guys seem to praise them. Sneaking in strangers bedroom or stealing food from their kitchen must be considered as good manners in your side of the world.

Well you don't know how it's like to be getting hacked into. 99% of times hackers hack just to annoy the domain owner and to set the prominence in their community. Nobody bothers to check the damages suffered by the victim.

Few of my websites got hacked few days back. Getting them back online was a tiresome job. I researched on the hacker and found he hacks thousands of website everyday without any purpose.
 

datawrecker

Distinguished
Sep 10, 2009
330
0
18,780
[citation][nom]madooo12[/nom]me too, credit card numbers and expiary dates aren't hiddenthis is really stupidREMOVE THE PICTURE NOW[/citation]

Not to mention the the CVV codes...

I can make out the last four of a card number, card type, lastname, birthdate, cvv, and expiration date of one person here. Please remove the image.
 

bourgeoisdude

Distinguished
Dec 15, 2005
1,240
25
19,320
Yup, Tom's needs to remove the picture. There's this cool feature in a little program called Acrobat (and countless other programs) that allows for actual redaction of data if they want to go that route.
 

CDdude55

Distinguished
I like how they blocked out a portion of the email address and card numbers (poorly i might add) yet their full names and home addresses are posted out in the open. lol
 

zloginet

Distinguished
Feb 16, 2008
438
0
18,790
That picture might contain some fake inserted material... like comfystore.com..... I dunno, but they shouldn't have it up either way...
 

freggo

Distinguished
Nov 22, 2008
2,019
0
19,780
The fact that my calling Hackers what they are, Criminals resulted in 2 thumbs down.
Intersting, so at least 3 members her thing that what this idiot did is not criminal ?

This in itself shows where part of the problem with Hackers is; there are simply too many people out there who think that Hackers who steal Databases are 'Heroes' or something.
They are not!
And once they break into YOUR computer and publish all that 'very personal stuff' YOU have on there to the world; then we will see who is calling the police bercause a 'crime' has been commited.

It just boggles my mind.

 

alidan

Splendid
Aug 5, 2009
5,303
0
25,780
[citation][nom]lockhrt999[/nom]Hackers suck!. Some of you guys seem to praise them. Sneaking in strangers bedroom or stealing food from their kitchen must be considered as good manners in your side of the world. Well you don't know how it's like to be getting hacked into. 99% of times hackers hack just to annoy the domain owner and to set the prominence in their community. Nobody bothers to check the damages suffered by the victim.Few of my websites got hacked few days back. Getting them back online was a tiresome job. I researched on the hacker and found he hacks thousands of website everyday without any purpose.[/citation]

there is such a thing as a grey area, not releasing the info in full is a good thing, releasing enough to verify its true also is, and if he tells how he did it, it can be patched.

getting hacked into and a website is only tiresome if you don't have a plan for when it happens. fix the vulnerabilities and it doesn't happen any more.

[citation][nom]datawrecker[/nom]Not to mention the the CVV codes...I can make out the last four of a card number, card type, lastname, birthdate, cvv, and expiration date of one person here. Please remove the image.[/citation]

anyone in the us who gets creditcards stolen and used is not liable for any purchases, and at most its an incontinence, most first world countries base many laws on the us, so most likely they are protected to. having had credit card numbers compromised in the past, i know what im talking about.

[citation][nom]CDdude55[/nom]I like how they blocked out a portion of the email address and card numbers (poorly i might add) yet their full names and home addresses are posted out in the open. lol[/citation]

if its for proof that they have the info, than they need to show alot of the info... it gets taken seriously faster this way.

[citation][nom]otacon72[/nom]There are very very few hackers out there and this individual is not one of them. "Hacking" has been perverted into something that it never was years and years ago. The rush of gaining access to a system just to prove you could do it is what hacking was all about NOT what is going on now a days. Using software tools and simple techniques (SQL injection anyone) to gain access to a system is not hacking...just a simple script kiddie desperate for attention. These people, Anon for one, aren't doing the public a service they perverted the term hacking into something it never was. Stealing data and posting it online is not hacking. It's people thinking they are big players when in fact they are not. I can teach my 12yo nephew how to do a DDoS attack..lmao.[/citation]

hacking is about compromising a system.
they did that
some places wont move till you have proof you did it
he provided it

what will most likely happen is a new credit card to everyone on the list that was compromised, and if the card is used, you are not liable.

[citation][nom]freggo[/nom]The fact that my calling Hackers what they are, Criminals resulted in 2 thumbs down.Intersting, so at least 3 members her thing that what this idiot did is not criminal ?This in itself shows where part of the problem with Hackers is; there are simply too many people out there who think that Hackers who steal Databases are 'Heroes' or something.They are not!And once they break into YOUR computer and publish all that 'very personal stuff' YOU have on there to the world; then we will see who is calling the police bercause a 'crime' has been commited.It just boggles my mind.[/citation]

its a grey area. there are people out there who could really screw your life up with very little infromation... mostly because of social security numbers... hate them because they are used now in ways never intended when they were first issued.

most hackers do this for fun, never go public.
some do it for fun, go public with a how to guide, things get fixed that way.
and it leave less vulnerabilities for the truly malicious to deal with.

i love security measures getting compromised, because it means better ones will be up soon.

but the way you say it, getting into the database is horrible.
i think of it the same way as you just came across a dead body

getting the info, that would be the same as taking a picture,

going any further... well the description i would give would get me a sanction... just realize it would be a real crime.
 

Saxie81

Distinguished
Jul 30, 2009
23
0
18,510
Yes Tom's, remove the damn picture. I know best of media gets more money for the hits when people look at this.... But this is VERY poor.taste.
 

slicedtoad

Distinguished
Mar 29, 2011
1,034
0
19,360
[citation][nom]netwired@gmxcom[/nom]Um... Im not 100% on this but isn't "insert into" an sql query to put data into a database... Not read the data..[/citation]
A registration form would need inserts, selects and maybe updates. The selects are likely views though, so they would be pretty safe. SQL injection doesn't need selects to work though; it can use any sql.

here's an example (a very simple one that hasn't worked since the first anti-sql injection security came out):
Your php or pearl script grabs the field "username" and stores it in "un". Then it calls the sql statement:
insert into wtvrdatabase (username) values ($un);

If the person filling out the form puts there username as the entire following line:
'wtvrname'); select * from wtvrdatabase;'
this replaces $un and they get access to everything in wtvrdatabase.
it turns into
insert into wtvrdatabase (username) values ('wtvrname'); select * from wtvrdatabase;');
(obviously they would need to send the data somewhere or they would never see the results of the select)
 

flachet

Distinguished
May 27, 2010
65
0
18,630
Guys, removing the picture now would be a waste of time. It's already been sent out via RSS feeds and the like. Not to mention it's already posted on other sites.
 

iamtheking123

Distinguished
Sep 2, 2010
410
0
18,780
[citation][nom]A Bad Day[/nom]Last time I checked, revealing private information is criminal. That includes names and home addresses.[/citation]
Maybe in fascist Europe but not in the US.
 

Saxie81

Distinguished
Jul 30, 2009
23
0
18,510
Even in the USA iamking. With your logic I can post your social security number everywhere on the net/public forum without any consequences.
 
Status
Not open for further replies.