您现在的位置是:綜合 >>正文
【】
綜合457人已围观
简介Everybody makes mistakes at work but, leaving the no-fly list exposed on the internet seems like a r ...
Everybody makes mistakes at work but, leaving the no-fly list exposed on the internet seems like a really bad mess-up.
That's reportedly what happened with the U.S. airline CommuteAir. The Daily Dot reported that a Swiss hacker known as "maia arson crimew" found the unsecured server while using the specialized search engine Shodan. There was apparently a lotof sensitive information on the server, including a version of the no-fly list from four years ago. Somewhat hilariously that was reportedly found via a text file labeled "NoFly.csv." That is...not hard to guess.
A blog post from crimew titled "how to completely own an airline in 3 easy steps" cited boredom as the reason for finding the server. They were just poking around and found it.
"At this point, I've probably clicked through about 20 boring exposed servers with very little of any interest, when I suddenly start seeing some familiar words," crimew says in their blogpost. "'ACARS', lots of mentions of 'crew' and so on. Lots of words I've heard before, most likely while binge-watching Mentour Pilot YouTube videos. Jackpot. An exposed jenkins server belonging to CommuteAir."
Tweet may have been deleted
CommuteAir, a regional US airline headquartered in Ohio, confirmed the info on the server was authentic to the Daily Dot. The server has been taken offline.
Related Stories
- Delta Airlines to offer free WiFi on most domestic flights by February
- Chinese government-linked hackers stole millions in COVID funds
- Southwest Airlines is offering 25,000 rewards points to inconvenienced passengers. How to claim them.
- Kickstart a career in cybersecurity with this ethical hacking and pen testing bundle
- Hacker steals $100 million from crypto project Mango, then things get weird
"The server contained data from a 2019 version of the federal no-fly list that included first and last names and dates of birth," CommuteAir Corporate Communications Manager Erik Kane told the Daily Dot. "In addition, certain CommuteAir employee and flight information was accessible. We have submitted notification to the Cybersecurity and Infrastructure Security Agency and we are continuing with a full investigation."
The info from the server has already been poured over, with some researchers saying it shows how the list is heavily biased against Muslim people. According to Daily Dot, while there is no official number to how many names are on the no-fly list, Sen. Dianne Feinstein (D-Calif.) suggested in 2016, that over 81,000 people were on the list.
TopicsCybersecurity
Tags:
转载:欢迎各位朋友分享到网络,但转载请说明文章出处“夫榮妻貴網”。http://new.maomao321.com/news/42c58699371.html
相关文章
Wikipedia co
綜合The group behind a growing list of celebrity social media breaches has struck again, this time takin ...
【綜合】
阅读更多Everything you need to know about the internet's new obsession with eating Tide pods
綜合Rule number one is do not believe everything you read on the internet—especially if someone is ...
【綜合】
阅读更多Stop reading what Facebook tells you to read
綜合An open memo, to all marginally-smart people/consumers of internet "content": Hi. Some questions. Do ...
【綜合】
阅读更多
热门文章
- This company is hiring someone just to drink all day
- Twitter has people timing songs perfectly for New Year's Eve midnight
- Team behind Time's Person of the Year issue was all women
- What is MoviePass? They just hit 1 million subscribers
- Metallica to seek and destroy your eardrums with new album this fall
- 'Stranger Things' Season 3 might not come back until 2019
最新文章
Olympian celebrates by ordering an intimidating amount of McDonald's
The NFL signs a new Verizon deal that's great for consumers
Twitter has people timing songs perfectly for New Year's Eve midnight
How to buy bitcoin as a gag gift this holiday season
Over 82,000 evacuate as Blue Cut fire rapidly spreads in southern California
Everything you need to know about the internet's new obsession with eating Tide pods