Access member only content, take part in discussions with comments on blogs, news and reviews and receive all the latest security industry news directly to your inbox. Join now for free.
Processing registration... Please wait.
This process can take up to a minute to complete.
A confirmation email has been sent to your email address - SUPPLIED EMAIL HERE. Please click on the link in the email to verify your email address. You need to verify your email before you can start posting.
If you do not receive your confirmation email within the next few minutes, it may be because the email has been captured by a junk mail filter. Please ensure you add the domain @scmagazine.com.au to your white-listed senders.
Some 22,300 purported student records held by the Australian Defence Force Academy were stolen and published online last month.
The details were still accessible via the public internet on an Anonymous-controlled public clipboard.
Records contained a mix of date of birth information, clear-text passwords and student identity numbers and ranks.
The University of Canberra in which the ADFA resides had warned students of possible phishing attacks but said the compromised passwords were mostly redundant, SMH reported.
Stolen records were obtained via a basic SQL Injection attack against what appeared to be an older database management system.
SQL Injection was the most prevalent security hole and has maintained its infamous number one spot in the OWASP Top Ten security priority list.
The hacker using the alias Darwinaire had made a series of recent public hacks and disclosures, including dumping 600 Amazon UK user records online.
Copyright © SC Magazine, Australia
To begin commenting right away, you can log in below or register an account if you don't yet have one. Please read our guidelines on commenting. Offending posts will be removed and your access may be suspended. Abusive or obscene language will not be tolerated. The comments below do not necessarily reflect the views or opinions of SC Magazine, Haymarket Media or its employees.