UN Website

Ye' old general discussion board. Basically, for everything that isn't covered elsewhere. Come here to shoot the breeze, shoot your mouth off, or whatever suits your fancy.
This forum is not for asking programming related questions.

Moderator: General Moderators

Post Reply
thiscatis
Forum Contributor
Posts: 434
Joined: Thu Jul 20, 2006 11:00 am

UN Website

Post by thiscatis »

The United Nation's website has been hacked
:)
User avatar
feyd
Neighborhood Spidermoddy
Posts: 31559
Joined: Mon Mar 29, 2004 3:24 pm
Location: Bothell, Washington, USA

Post by feyd »

That's nice. ... and...?
thiscatis
Forum Contributor
Posts: 434
Joined: Thu Jul 20, 2006 11:00 am

Post by thiscatis »

It does stress the fact you coding guru's always say about safe code and exploits.

You had a bad childhood feyd, or am I misinterpreting your attitude.
I just thought it was something I could share with other people here and just don't comment if this news doesn't have any value for you.
User avatar
superdezign
DevNet Master
Posts: 4135
Joined: Sat Jan 20, 2007 11:06 pm

Post by superdezign »

I think he's just saying that a lot of websites get hacked... If it's in the public eye, someone's more likely to try.

Good thing we have ways of catching and jailing hackers... :roll:
User avatar
feyd
Neighborhood Spidermoddy
Posts: 31559
Joined: Mon Mar 29, 2004 3:24 pm
Location: Bothell, Washington, USA

Post by feyd »

superdezign roughly got my point.

A website getting hacked isn't all that interesting today. Since this particular hack was politically targeted toward a member of the UN, it's even less interesting.

Unless they came up with some ingenious or novel way to hack the site, it's just another site hacked -- no more interesting than the next --, likely through a slip in site security.
User avatar
TheMoose
Forum Contributor
Posts: 351
Joined: Tue May 23, 2006 10:42 am

Post by TheMoose »

feyd wrote:Unless they came up with some ingenious or novel way to hack the site, it's just another site hacked -- no more interesting than the next --, likely through a slip in site security.
What makes it more interesting (to me) is that it was a superb lapse in security judgment. The hackers used SQL Injection to do it. Nothing fancy. But you would think that even the most basic programmers know about SQL Injection and some basic steps to prevent against it. Whoever coded the site didn't even try to prevent against it, and half their site still allows for it.
User avatar
superdezign
DevNet Master
Posts: 4135
Joined: Sat Jan 20, 2007 11:06 pm

Post by superdezign »

TheMoose wrote:What makes it more interesting (to me) is that it was a superb lapse in security judgment. The hackers used SQL Injection to do it. Nothing fancy. But you would think that even the most basic programmers know about SQL Injection and some basic steps to prevent against it. Whoever coded the site didn't even try to prevent against it, and half their site still allows for it.
Makes you wonder how easy it is for a company to act as though they are more experienced than really are when they are being contracted.
malcolmboston
DevNet Resident
Posts: 1826
Joined: Tue Nov 18, 2003 1:09 pm
Location: Middlesbrough, UK

Post by malcolmboston »

superdezign wrote: Makes you wonder how easy it is for a company to act as though they are more experienced than really are when they are being contracted.
I could tell you some real horror stories of so called professional companies handing out piece of <span style='color:blue' title='I&#39;m naughty, are you naughty?'>smurf</span> and charging through the roof
User avatar
RobertGonzalez
Site Administrator
Posts: 14293
Joined: Tue Sep 09, 2003 6:04 pm
Location: Fremont, CA, USA

Post by RobertGonzalez »

This article is a blast, and points out that the UN site has some issues with outdated systems and such...

I personally found it hilarious that a global organization would allows their web site to be put up without every making sure that the site was protected. I mean, seriously, there isn't a developer in all of Earth that help this organization out with some usability and security tests?
timvw
DevNet Master
Posts: 4897
Joined: Mon Jan 19, 2004 11:11 pm
Location: Leuven, Belgium

Post by timvw »

Well, the UN have each year a lot of CS students that work on their website during an internship... Knowing a couple of those 'experts' i can't say that it surprises me.
Post Reply