RFI Leads to Hacked Weather Site

In case you missed this piece late Friday, it looks like a hacking group known as Kosova Hacker’s Security have hacked the Weather … as in Weather.gov … in retaliation for attacks like Stuxnet and family as well as prior bombings. Operated by the U.S. National Weather Service, a local file inclusion weakness in the website led to the disclosure of “potentially sensitive data.” The vulnerability has since been addressed.

via TheRegister.co.uk

Hackers have lifted potentially sensitive data from the US National Weather Service after exploiting a vulnerability in the weather.gov website.

A previously-unknown group called Kosova Hacker’s Security claimed credit for the hack in a lengthy post on pastebin, containing a stream of data lifted as a result of the hack. Leaked data includes a list of partial login credentials, something that might give other hacking crews a head start in attacking the website, as well as numerous system and network configuration files.

The leaked information appears to consist only of system files and the like rather than scientific data, something that strongly distinguishes the breach from the so-called ClimateGate hack against the Climatic Research Unit (CRU) at the University of East Anglia back in November 2009.

Continued here.


Today’s post pic is from Naked Security. See ya!

3 comments for “RFI Leads to Hacked Weather Site

  1. October 21, 2012 at 9:17 pm

    BLOGGED: RFI Leads to Hacked Weather Site http://t.co/1Vrgf3ig

  2. October 21, 2012 at 9:20 pm

    #NoVABlogger RFI Leads to Hacked Weather Site http://t.co/FaJMAHVp

  3. October 22, 2012 at 12:14 am

    RFI Leads to Hacked Weather Site http://t.co/MgjiEDzy

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.