Urgent: Security Breach

[Replies] [Reply] [View by Thread] [Help]
[Back To CyberArmy Public Forum]

CinC snarkles

We regret to announce the theft of data from CA's database recently, and a probable breach of all members' privacy.

At approximately 11:00 GMT on the 18th of this month, logs record that Vice-CinC Wang copied and downloaded all cMSes stored in CA's database. We are unable to ascertain yet whether any other data was taken, but it is quite possible that other user information, including profile data and passwords, could have been compromised as well.

This activity is extremely suspicious, especially as it is one of his last actions before announcing RR's "split". Wang has been given over 29 hours now to comment, and while responding to other messages sent to him, has opted not to explain this behaviour.

For these reasons, we are advising that all members change their CA password as soon as conveniently possible, along with any passwords or authentication information for other resources that were exchanged over cMS (for example, brigade/sattelite site login information). We cannot guarantee the security of any data in the database at that time.

This can only remain to be seen as a total abuse of the trust granted to him by members of CA, and a reckless disregard for the protection of members' privacy - a policy that he, as RR's leader, claimed only recently was fundamental to his organization's mission.

Upon discovering this had happened, Wang's privileged access was revoked pending investigation. Since no explanation has been received, after further examination and discussion, and for the reasons contained within this announcement only, we have decided the only appropriate course of action is to demote Wang to Kernel and to impose a site ban for 1 year. We cannot ignore such gross misconduct.

We will be looking into possibilities to secure members' data further, but please understand that many safeguards are already in place; it is only due to his rank and position as a site maintainer that Wang had this access available. We deeply regret this situation, and apologise for the inconvenience this will inevitably cause.

Replies:

>Urgent: Security Breach - CinC snarkles 2004-02-23 02:20:05 <
- RE: Urgent: Security Breach - Tr SideWinderGX 2004-03-09 04:07:48
- Wang - Guest(SideWinderGX) 2004-03-09 04:05:50
- LoL! Burn Him! Give him the sm3rk ban! - Guest(OmegaRed) 2004-03-04 17:17:24
  - RE: LoL! Burn Him! Give him the sm3rk ban! - Tr LoGiK 2004-03-06 23:04:07
- RE: Urgent: Security Breach - Guest(agentmike) 2004-03-02 14:34:29
- Satan's opinion on this - 2nd Lt zairo 2004-02-25 21:17:24
- My view: Does it matter? - 2nd Lt Cyben 2004-02-25 20:55:50
- Ok... - CinC snarkles 2004-02-25 13:58:32
  - Thank you for your reply [more] - Guest(Wang) 2004-02-26 19:16:25
  - RE: Ok... - Mar ReDeeMeR 2004-02-26 00:48:36
    - The thing is... - Ker jeian 2004-02-26 14:54:12
      - Well see... - Maj genius3000 2004-02-27 04:17:09
      - RE: The thing is... - Guest(Wang) 2004-02-26 19:14:41
    - she had to..!! - LtKer blackice2000 2004-02-26 13:29:09
      - RE: she had to..!! - Guest(cpp) 2004-02-26 14:55:44
      - RE: she had to..!! - Mar ReDeeMeR 2004-02-26 13:47:03
  - I've got to say... - LtKer Khris 2004-02-25 17:53:13
    - Almost made a post, then I read yours... - Ret. Ker inspectorgadget 2004-02-29 21:36:29
  - Good post snarkles... - LtKer N3cro 2004-02-25 16:30:11
  - good post 'snarks4CinC snarks4CinC'...oh wait.. =) -nt - LtKer icklenewt 2004-02-25 14:24:40
    - 100% agreed :D -nt- - Maj Bastian13824 2004-02-25 14:36:11
  - RE: Ok... - Guest(Semper) 2004-02-25 14:13:47
- RE: Absolute bullsh*t yet again... - Mar defcon7 2004-02-25 07:26:21
  - *nods* [nt] - Ker Sorcer 2004-02-25 18:07:02
- Are the ppl of the CA ever going to stop shooting... - Tr thepunisher 2004-02-24 22:27:27
  - here here!!! [nt] - Cpt cybersavior 2004-02-25 04:07:04
- In his defense, and the ultimate question [more] - Cpt cybersavior 2004-02-24 17:33:45
- Everyone should read this... - Ker jeian 2004-02-24 14:16:33
  - you have a spelling mistake btw [nt] - Cpt Rogue 13 2004-02-24 16:10:23
  - so your basicly saying - Guest(fingerlessknight) 2004-02-24 15:40:05
    - My response ... - Gen mercurus 2004-02-26 13:35:53
    - I'm not even going to bother -nt- - Ker jeian 2004-02-24 15:51:04
- RE: Urgent: Security Breach - Guest(Wang) 2004-02-24 12:34:34
  - capr better get working over time :D -nt- - Guest(fingerlessknight) 2004-02-24 14:03:04
- All I know... - Ret. Mar Ikioi 2004-02-24 11:28:05
- RE: Urgent: Security Breach - Tr spikeraus 2004-02-24 11:21:51
  - RE: Urgent: Security Breach - Guest(Wang) 2004-02-24 12:37:43
  - Well... - Lt h3raLd 2004-02-24 11:28:16
- geez... - Ret. Ker highwaystar 2004-02-24 09:02:59
- wang, did you have WMD? - Guest(waz) 2004-02-24 08:07:02
  - RE: wang, did you have WMD? - Guest(Wang) 2004-02-24 12:58:41
  - RE: wang, did you have WMD? - Guest(MrYowler) 2004-02-24 11:18:57
  - RE: wang, did you have WMD? - Ret. Mar keoki 2004-02-24 10:56:30
    - Smacked the nail right on the head. Cheers :) nt - Guest(Mr.Ots K-Rad) 2004-02-24 17:55:09
- One question though...[more] - Maj genius3000 2004-02-24 04:38:08
  - Afaik - Ker Akiru 2004-02-24 10:33:38
- This is the last thing im gonna say.... - Gen WeWalkIn 2004-02-24 03:08:43
  - RE: This is the last thing im gonna say.... - Cpt cybersavior 2004-02-25 04:04:42
  - smartly put walkin - Gen adtrace 2004-02-24 05:04:02
  - Well ok...[more] - Cpt veggie 2004-02-24 04:33:53
- Situation at hand - Guest(theunholy) 2004-02-24 00:56:32
  - RE: Situation at hand - Guest(theunholy) 2004-02-24 01:46:31
  - P.S. - Guest(theunholy) 2004-02-24 01:05:31
    - except he already admitted to what he is banned for -nt - Gen Condor191 2004-02-24 01:22:25
      - and where is the crime condor? -nt - Guest(Engel) 2004-02-25 05:14:52
        Engel stick with one topic please /more - Tr Deno 2004-02-25 05:17:00
      - Yea please re-itterate that nt - Guest(Mr.Ots K-Rad) 2004-02-24 04:41:58
      - ? -nt- - Guest(Wang) 2004-02-24 01:59:41
      - I was referring to... - Guest(theunholy) 2004-02-24 01:27:11
  - Go Unholy!!!!!! -nt - Guest(knoledgesponge) 2004-02-24 00:58:04
- Ok, look, coz this is all im gonna say now - Mar sieco 2004-02-23 23:13:05
  - RE: Ok, look, coz this is all im gonna say now - Gen J O S E P H 2004-02-24 00:00:28
  - Sieco... - Ret. Gen D-Cypell 2004-02-23 23:54:16
  - RE: Disagree, disagree, disagree. - Ker Revelation 2004-02-23 23:53:30
    - RE: Disagree, disagree, disagree. - Gen WeWalkIn 2004-02-23 23:56:49
      - RE: Disagree, disagree, disagree. - Ker Revelation 2004-02-24 00:03:31
        RE: Disagree, disagree, disagree. - Gen WeWalkIn 2004-02-24 00:08:56
        RE: Disagree, disagree, disagree. - Ker Revelation 2004-02-24 00:18:57
      - More... - Gen WeWalkIn 2004-02-24 00:01:01
        RE: More... - Ker Revelation 2004-02-24 00:08:04
    - Agreed, Agreed, Agreed /nt/ - Tr Darkstorm777 2004-02-23 23:55:45
  - Yeah, take a deep breath everyone. /nt/ - Ker Makat 2004-02-23 23:19:44
  - agreed agreed and agreed -nt- - Gen WeWalkIn 2004-02-23 23:18:14
  - well said -nt- - Maj Goldfish 2004-02-23 23:15:23
- Well.... - Ret. LtKer c o l e s l a w 2004-02-23 22:19:18
  - *end of 1998 - nt - Guest(gabbana) 2004-02-23 22:20:07
- Ummm, I'm wondering.... - LtKer Venom 2004-02-23 19:05:01
- My last Statement Regarding this matter...plz read - Tr Darkstorm777 2004-02-23 19:04:35
  - Have you even read the posts? Just wondering... - Ker Makat 2004-02-23 19:57:31
- ok.... - Ker Emrys 2004-02-23 17:08:49
- interesting thing most... - LtKer Maxtrin 2004-02-23 16:47:30
  - RE: interesting thing most... - Mar sieco 2004-02-23 18:32:27
    - ok.. - LtKer Maxtrin 2004-02-23 18:33:45
      - Because everyone needs to see this and... - LtKer N3cro 2004-02-23 18:37:48
  - RE: interesting thing most... - Mar ReDeeMeR 2004-02-23 17:00:54
  - Max... - LtKer N3cro 2004-02-23 16:58:26
    - do you have any clue... - LtKer Maxtrin 2004-02-23 17:06:48
      - He's already said he chose not to respond.READ THREADnt - Ker Makat 2004-02-23 17:11:28
        im getting to it... - LtKer Maxtrin 2004-02-23 17:13:44
        ... - Ker Makat 2004-02-23 17:16:04
        RE: ... - LtKer Maxtrin 2004-02-23 17:18:25
- so - Maj Goldfish 2004-02-23 13:45:07
  - for all that want to be there - Mar sieco 2004-02-23 13:49:34
    - ewwww oxford - Guest(fingerlessknight) 2004-02-23 14:13:06
      - RE: ewwww oxford - Guest(qx) 2004-02-23 14:34:32
    - 0o0o - Lt Eve 2004-02-23 13:54:13
    - uNF uNF - Maj Goldfish 2004-02-23 13:52:55
      - I'll be there [nt] - Guest(ROUGE!!11) 2004-02-23 14:26:33
        well thats sorted then -nt- - Maj Goldfish 2004-02-23 14:35:09
- context.. - ViceCinC wa1800z 2004-02-23 10:53:26
  - RE: context.. - Guest(Wang) 2004-02-23 12:24:51
    - RE: context.. - ViceCinC wa1800z 2004-02-23 13:20:38
  - what about him not being able to reply? -nt- - Gen decoder 2004-02-23 11:44:07
    - He could reply... - Mar Tacheon 2004-02-23 12:08:25
      - RE: He could reply... - Guest(Wang) 2004-02-23 12:25:37
  - basicly he is saying take a chill pill :D -nt- - Tr fingerlessknight 2004-02-23 11:02:59
- lol i was expecting some shitty thing like this to - Guest(fingerlessknight) 2004-02-23 09:57:40
- all these posts below remind me of south park ... - Ret. Gen Phydeau 2004-02-23 09:48:46
  - lol - Lt Eve 2004-02-23 09:50:57
    - OMG ... someone on IRC said one better ... - Ret. Gen Phydeau 2004-02-23 10:13:26
      - That was me, foo'. -nt- - Mar ReDeeMeR 2004-02-23 10:46:01
      - RE: OMG ... someone on IRC said one better ... - Guest(fingerlessknight) 2004-02-23 10:31:55
- RE: Urgent: Security Breach - Ker Prothis 2004-02-23 09:21:23
  - get a grip... - Guest(quest) 2004-02-23 15:53:07
    - a few clarifications - LtKer N3cro 2004-02-23 16:23:03
      - your point is?ur not explaining his evilness -nt - Ret. Cpt omegataurus 2004-02-24 02:01:11
- Statement Regarding the issue at hand. - Ret. Ker darkzeratul1 2004-02-23 07:51:59
  - RE: Statement Regarding the issue at hand. - Ker Revelation 2004-02-23 23:59:46
    - RE: Statement Regarding the issue at hand. - Ret. Ker darkzeratul1 2004-02-24 02:06:40
- It's not like the passwords were secured anyways... - LtKer StillBourne 2004-02-23 07:39:37
- RE: Urgent: Security Breach - Guest(Wang) 2004-02-23 06:53:10
  - RE: Urgent: Security Breach - Cpt jdhawke 2004-02-23 06:55:19
    - agreed :) /nt - Mar Leto 2004-02-23 06:59:08
- RE: Urgent: Security Breach - Cpt hackmon 2004-02-23 06:31:45
  - yup -nt- - Guest(Wang) 2004-02-23 06:35:48
- This is not a discussion..... - Gen WeWalkIn 2004-02-23 05:53:08
  - yeah, has anyone actually read all these? -nt- - Maj 0cTopUs 2004-02-23 19:03:18
  - Did you vote for Bush? :p -nt- - Mar ReDeeMeR 2004-02-23 08:58:29
    - not yet :) -nt- - Gen WeWalkIn 2004-02-23 09:36:32
  - RE: This is not a discussion..... - Guest(Wang) 2004-02-23 06:11:20
    - can I ask a question nobody has asked yet - Gen adtrace 2004-02-23 06:12:52
      - RE: can I ask a question nobody has asked yet - Guest(Wang) 2004-02-23 06:33:50
        the problem is, there is no trust. - Ret. Ker Angel 2004-02-27 01:21:40
        hmmm, that explains a lot... - Gen Asmodai 2004-02-23 07:39:48
        Aye im with Asmodai and.. - Ker Akiru 2004-02-23 11:44:13
  - So staff is all controling then? - Lt Skyler Gray 2004-02-23 06:00:55
    - RE: So staff is all controling then? - Gen WeWalkIn 2004-02-23 06:15:33
- **NOTE TO ALL** - Mar Leto 2004-02-23 05:50:48
  - woops -nt- - Maj 0cTopUs 2004-02-23 19:06:27
  - indeed and.. - ViceCinC wa1800z 2004-02-23 06:12:36
    - wazzy! - Guest(Wang) 2004-02-23 06:15:15
  - Or maybe we can stop... - LtKer Venom 2004-02-23 05:56:00
- You fools. -nt- - Mar ReDeeMeR 2004-02-23 05:50:04
  - I second that [nT] - Guest(Pandect) 2004-02-23 08:30:47
- This is what SHOULD Happen - Tr SAJChurchey 2004-02-23 05:07:03
  - that's the way i feel too -nt- - Tr Lavr 2004-02-23 05:16:16
  - RE: This is what SHOULD Happen - Ker Makat 2004-02-23 05:09:44
    - RE: This is what SHOULD Happen - Tr SAJChurchey 2004-02-23 05:25:26
- Security Breach?? - Tr Darkstorm777 2004-02-23 05:02:14
  - umm user passwords ... - Ker Emrys 2004-02-23 05:08:49
    - Do you like the idea of all your cMSs being read... - Tr Darkstorm777 2004-02-23 05:16:07
      - as i said before.... - 2nd Lt DeadGuy 2004-02-23 05:38:13
        The concern is more... - LtKer N3cro 2004-02-23 05:39:20
        Staff don't take copies. READ the posts. /nt/ - Ker Makat 2004-02-23 05:39:07
        wang did... - 2nd Lt DeadGuy 2004-02-23 05:46:03
        no he didn't... - LtKer N3cro 2004-02-23 05:49:59
        I can say... - LtKer N3cro 2004-02-23 05:54:35
        i'm not gonna turn this in to an "yes he did no he - 2nd Lt DeadGuy 2004-02-23 05:54:18
      - umm no i dont..tis why wang was banned... - Ker Emrys 2004-02-23 05:21:19
      - Non reciprocal principle - Ker Makat 2004-02-23 05:17:48
  - Members passwords ARE encrypted - Ker Makat 2004-02-23 05:07:17
    - what information exactly are you talking about? ... - Ret. Cpt omegataurus 2004-02-23 05:17:50
      - All the info in the CA db. The rest is answered belo nt - Ker Makat 2004-02-23 05:20:44
- ok this is what needs to happen.... - LtKer Maxtrin 2004-02-23 04:21:13
  - ditto [nt] - LtKer samako93 2004-02-23 04:41:50
- To clarify some things... - Ret. CinC Chawmp 2004-02-23 03:58:17
  - RE: To clarify some things... - Guest(Wang) 2004-02-23 04:08:38
    - you aren't defending yourself at all.... - LtKer N3cro 2004-02-23 04:09:40
      - did you read the bit about hosting? [more] - Tr TerraWorm 2004-02-23 04:12:51
    - We do have automatic *offsite* backups [nt] - Ret. CinC Chawmp 2004-02-23 04:09:26
      - RE: We do have automatic *offsite* backups [nt] - Ker Revelation 2004-02-23 04:19:24
        i agree with that - Tr TerraWorm 2004-02-23 04:22:39
- Ok lets talk.... - Guest(Wang) 2004-02-23 03:49:32
  - umm.... - Ker Emrys 2004-02-23 03:58:13
    - RE: umm.... - Guest(Wang) 2004-02-23 04:01:20
      - RE: umm.... - Guest(Dp) 2004-02-23 11:43:48
      - RE: umm.... - Guest(Wang) 2004-02-23 04:03:33
        RE: umm.... - Ker Doeycall 2004-02-23 04:09:34
        RE: umm.... - Guest(Wang) 2004-02-23 04:24:34
        RE: umm.... - Gen Asmodai 2004-02-23 04:07:34
        I find your claims that marchon... - LtKer N3cro 2004-02-23 04:06:18
        RE: I find your claims that marchon... - Ker Revelation 2004-02-23 04:29:31
        RE: I find your claims that marchon... - Guest(Wang) 2004-02-23 04:11:07
        RE: I find your claims that marchon... - Gen Asmodai 2004-02-23 04:14:16
      - yeap lots clarified jsut now by chawmp....-nt- - Ker Emrys 2004-02-23 04:02:50
- My Opinions [more] - Tr TerraWorm 2004-02-23 03:38:30
  - verry true -nt - 2nd Lt DeadGuy 2004-02-23 05:05:37
  - I agree with you <nt> - Lt Skyler Gray 2004-02-23 04:07:06
- RE: Urgent: Security Breach - Guest(Wang) 2004-02-23 03:31:50
- wasn't it encrypted? at least as far as pw's go? - Ret. Ker RJ45 2004-02-23 03:28:31
  - cMSs are not encrypted at all. :-/ -nt- - LtKer jehnx 2004-02-23 03:29:00
    - understandable, but if they are ..... - Ret. Ker RJ45 2004-02-23 03:31:45
      - it is yes - Guest(Wang) 2004-02-23 03:34:13
        RE: it is yes - Gen Asmodai 2004-02-23 03:42:40
        RE: it is yes - Ker Revelation 2004-02-23 03:49:57
        Finally someone that can think, thx Revelation -nt - Ret. Cpt omegataurus 2004-02-23 04:21:15
        I disagree... - LtKer N3cro 2004-02-23 03:58:46
        RE: I disagree... - Ker Revelation 2004-02-23 04:28:15
        RE: it is yes - Gen Asmodai 2004-02-23 03:57:50
        RE: it is yes - Ker Revelation 2004-02-23 04:14:48
        finaly someone thinking... - 2nd Lt DeadGuy 2004-02-23 05:26:17
        RE: it is yes - Gen Asmodai 2004-02-23 04:17:58
        RE: it is yes - Ker Revelation 2004-02-23 04:26:11
        RE: it is yes - Gen Asmodai 2004-02-23 04:38:56
        RE: it is yes - Ker Revelation 2004-02-23 04:46:45
        RE: it is yes - Gen Asmodai 2004-02-23 04:55:45
        
        RE: it is yes - Ker Doeycall 2004-02-23 03:40:08
- From Wang - Tr TerraWorm 2004-02-23 03:19:40
  - that has already been cleared up -nt- - Ker Emrys 2004-02-23 03:24:04
- Everybody should wait for more info before response!-nt - 2nd Lt knoledgesponge 2004-02-23 02:50:22
- Wang's Official Response Inside... - LtKer jehnx 2004-02-23 02:41:19
  - AiYO' - Guest(Dp) 2004-02-23 11:43:16
  - RE: Wang's Official Response Inside... - Guest(gabbana) 2004-02-23 11:40:54
    - honor...something hardly seen in CA anymore /me bows-nt - Guest(quest) 2004-02-23 16:01:02
  - What a dishonorable behaviour from CA... - Ret. Cpt omegataurus 2004-02-23 03:12:54
    - It was a staff decision, not just snarks. /nt/ - Ker Makat 2004-02-23 03:22:14
    - omega... - Ker Emrys 2004-02-23 03:19:46
      - He backed it up when he wasn't Ret. -nt - Maj genius3000 2004-02-23 22:01:04
  - personal thoughts... - LtKer N3cro 2004-02-23 03:01:58
    - you are wrong n3cro [read] - Ret. Cpt omegataurus 2004-02-23 03:19:42
      - yes I've just been informed of this... - LtKer N3cro 2004-02-23 03:21:15
        RE: yes I've just been informed of this... - Gen Asmodai 2004-02-23 03:24:05
  - ok... here is what I think... - Ker Doeycall 2004-02-23 02:54:02
    - Wang's Response... - LtKer jehnx 2004-02-23 03:08:21
      - RE: Wang's Response... - Ker Doeycall 2004-02-23 03:14:17
        Because he didn't leave... [nt] - LtKer bombarder 2004-02-27 11:25:33
    - Yeah well... - Cpt veggie 2004-02-23 03:05:14
      - RE: Yeah well... - Ker Doeycall 2004-02-23 03:07:31
        You're correct mate. -nt- - LtKer jehnx 2004-02-23 03:17:37
      - he can still post as guest(wang) NT - LtKer N3cro 2004-02-23 03:06:22
        He is IP banned [more] - Ret. Cpt omegataurus 2004-02-23 03:24:19
        he was not ip banned - Gen Condor191 2004-02-23 03:35:10
        http://www.readyresponse.org/piccy.gif <== couldnt p - Tr TerraWorm 2004-02-23 03:33:08
        once again...jehnx is acting on his behalf -nt- - Ker Emrys 2004-02-23 03:29:31
        His IP is not banned... - LtKer N3cro 2004-02-23 03:26:02
        the public forum is read only 4 non-member [more] - Ret. Cpt omegataurus 2004-02-23 03:35:32
        this has been resolved -nt- - Gen Condor191 2004-02-23 03:37:47
        no need for the personal attack here.... - LtKer N3cro 2004-02-23 03:37:37
        
        No they IP banned him -nt- - Cpt veggie 2004-02-23 03:22:14
        That'd make no sense... - LtKer jehnx 2004-02-23 03:10:39
  - I really aggree with Wang -nt- - Cpt veggie 2004-02-23 02:43:45
- that really sux, I almost can't believe he would dothat - 2nd Lt blackw1dow 2004-02-23 02:33:18
  - why? [more] - Tr TerraWorm 2004-02-23 02:45:48
    - agreed. ~nt~ - Ret. Ker Angel 2004-02-28 04:44:37

Guest:
Subject:
Message:	On 2004-02-23 02:20:05, snarkles wrote >We regret to announce the theft of data from CA's database recently, and a probable breach of all members' privacy. > >At approximately 11:00 GMT on the 18th of this month, logs record that Vice-CinC Wang copied and downloaded all cMSes stored in CA's database. We are unable to ascertain yet whether any other data was taken, but it is quite possible that other user information, including profile data and passwords, could have been compromised as well. > >This activity is extremely suspicious, especially as it is one of his last actions before announcing RR's "split". Wang has been given over 29 hours now to comment, and while responding to other messages sent to him, has opted not to explain this behaviour. > >For these reasons, we are advising that all members change their CA password as soon as conveniently possible, along with any passwords or authentication information for other resources that were exchanged over cMS (for example, brigade/sattelite site login information). We cannot guarantee the security of any data in the database at that time. > >This can only remain to be seen as a total abuse of the trust granted to him by members of CA, and a reckless disregard for the protection of members' privacy - a policy that he, as RR's leader, claimed only recently was fundamental to his organization's mission. > >Upon discovering this had happened, Wang's privileged access was revoked pending investigation. Since no explanation has been received, after further examination and discussion, and for the reasons contained within this announcement only, we have decided the only appropriate course of action is to demote Wang to Kernel and to impose a site ban for 1 year. We cannot ignore such gross misconduct. > >We will be looking into possibilities to secure members' data further, but please understand that many safeguards are already in place; it is only due to his rank and position as a site maintainer that Wang had this access available. We deeply regret this situation, and apologise for the inconvenience this will inevitably cause.
Signature:
Optional Image/Video Link:
http://

CyberArmy::Forum v0.6
Generated In 0.05004 seconds