STE WILLIAMS

The website for EC-Council, a US-based issuer of security certifications, was defaced over the weekend with Edward Snowden’s passport, an email from Snowden to the council dated 2010, and a message jeering at the council and its purported habits of password reuse.

The message:

Defaced again? Yep, good job reusing your passwords morons jack67834#

owned by certified unethical software security professional

Obligatory link: http://attrition.org/errata/charlatan/ec-council/
-Eugene Belford

P.S It seems like lots of you are missing the point here, I’m sitting on thousands of passports belonging to LE (and .mil) officials

The attacker’s or attackers’ sign-off name, Eugene Belford, is that of the evil computing genius in the movie “Hackers”, also known as “The Plague”.

The council issues a host of certifications, including Certified Ethical Hacker (CEH), Computer Hacking Forensics Investigator (CHFI), and License Penetration Tester (LPT).

“Eugene Belford” apparently doesn’t think very highly of those certifications.

The attacker left a link to an attrition.org page that lists a number of prior vulnerabilities, a previous hack, and criticism of the organisation from the education and information security professions, including “taking shortcuts usually reserved for students, by plagiarizing content from other sources and including it in their commercial offerings.”

Follow @LisaVaas

Follow @NakedSecurity

Article source: http://feedproxy.google.com/~r/nakedsecurity/~3/39Jl6AthHVk/