iTWire

Home Business IT Security Billabong website hacked; reveals passwords of 21,000 users

Billabong website hacked; reveals passwords of 21,000 users

In order to make life easy for all concerned, Billabong chose to store details for their web site subscribers in plain text. How very thoughtful.

iTWire recently wrote in somewhat glowing terms of the steps Nvidia took to ensure the web access accounts of its customers were well protected.

We can give no such praise to whoever built Billabong's website.

According to a dump from their password database, Billabong stored all passwords in plain text - presumably this made it easier to tell a user what their password was if they'd forgotten it. It also made life very easy for any hackers who wished to masquerade as the users on the site.
It also made the process (for any user who made this mistake) of trying the Billabong password against the email account. What could be easier than to write a simple script that lifted the email address and password out of the dump file and attempted to log in with them at the various webmail services.

Until SC Magazine brought the breach to Billabong's attention, the company was entirely unaware of the problem.

It appears that all accounts have been disabled, but the total lack of ANY advice from the company on their website is very concerning - the average user will not know that their password (possibly used elsewhere) is visible in plain text.

The company has been contacted for comment.

REASON TO CHOOSE TENDA MESH WIFI

Our Mesh WiFi system MW3 is the first in Australia market with price below AUD$200 for a set of three.

· Best valued product
· Strong signal covering up to 300m2 for MW3 and 500m2 for MW6
· Aesthetically pleasing and light weigh (blend into any room deco)
· Wireline backhauls supported
· Product units are pre-paired and easy to setup
· Not requiring phone number or email address to set up
· Wall penetration (better than other similar brands)
· Seamless WiFi roaming
· User friendly app with controls to setup a guest network, parental controls for disabling groups of devices you allocate to individuals, QoS and more

CLICK FOR MORE INFO!

LEARN HOW TO REDUCE YOUR RISK OF A CYBER ATTACK

Australia is a cyber espionage hot spot.

As we automate, script and move to the cloud, more and more businesses are reliant on infrastructure that has the high potential to be exposed to risk.

It only takes one awry email to expose an accounts’ payable process, and for cyber attackers to cost a business thousands of dollars.

In the free white paper ‘6 Steps to Improve your Business Cyber Security’ you’ll learn some simple steps you should be taking to prevent devastating and malicious cyber attacks from destroying your business.

Cyber security can no longer be ignored, in this white paper you’ll learn:

· How does business security get breached?
· What can it cost to get it wrong?
· 6 actionable tips

DOWNLOAD NOW!

David Heath

Latest from David Heath

More in this category: « Hundreds of thousands of Nvidia accounts hacked Apple’s in-app purchases hacked by the Russians »
back to top
 

Popular News

 

Telecommunications

 

Sponsored News


Services

Company

 

 

 

 

 

Connect