UK health service warned of security flaw by hacker group
IDG News Service - The U.K.'s National Health Service (NHS) said no patient data was compromised after an intrusion of one of its websites by Lulz Security, a hacker group that has recently stung organizations including a U.S. public broadcasting network and Sony.
Lulz Security apparently obtained administrative passwords for a website for a local NHS organization, according to a spokeswoman. The NHS did not reveal the name of the organization.
The NHS said that the Department of Health has previously issued security guidance to local NHS organizations on how to protect their data, and that none of its information systems had been affected by this latest incident.
Lulz, which frequently writes of its exploits on Twitter, wrote on Thursday that it had warned the NHS of the compromise by e-mail, and posted an image of the message.
"We're a somewhat known band of pirate-ninjas that go by LulzSec," the group wrote on Twitter. "While you aren't considered an enemy -- your work is of course brilliant -- we did stumble upon several of your admin passwords, which are as follows. We mean you no harm and only want to help you fix your tech issues."
The administrative passwords were blacked out in the image. On its Twitter feed, Lulz had earlier written: "Subdomain NHS access compromised 5 core admins and contact info of several affiliates. Luckily they stored nothing of importance on that DB."
Lulz Security has claimed a string of successful hacks in the past few weeks. It released what it claimed were user IDs and passwords for a MySQL database belonging to PBS.org, the U.S. public broadcasting network.
Lulz also said it was responsible for hacking Fox.com and releasing user names and passwords for Fox employees. Additionally, Lulz said it hit the Sony Pictures.com website with a simple SQL injection attack, which yielded data such as e-mail addresses, street addresses, birth dates and passwords for some 1 million users of the site.
Send news tips and comments to firstname.lastname@example.org
- 15 Non-Certified IT Skills Growing in Demand
- How 19 Tech Titans Target Healthcare
- Twitter Suffering From Growing Pains (and Facebook Comparisons)
- Agile Comes to Data Integration
- Slideshow: 7 security mistakes people make with their mobile device
- iOS vs. Android: Which is more secure?
- 11 sure signs you've been hacked
- The High-Performance WAN Find out what are some of the top problems associated with large WANs and the technologies typically used to solve them.
- Building Your Network Management Toolset Network Management is one of things that is sometimes overlooked make sure you don't. Find out how to take advantage of it and...
- Optimizing the Network The network has become a utility that users can't do without. Mobility and bandwidth-hungry apps demand faster and more efficient networks.
- Ultra-Low-Latency Networking In a world where so much trading is systematic, millisecond delays matter. Low-latency, high-performance networking, therefore, has become a competitive imperative.
- Application Acceleration: Optimize the End-User Experience Watch this on-demand webcast and learn how you can optimize your web content, accelerate performance across any device and browser combination, and offload...
- Making Your Application Delivery Environment Cloud-Ready Join Kavitha Mariappan, Director of Product Marketing at Riverbed Technology, and Bob Laliberte, Senior Analyst at Enterprise Strategy Group, as they discuss the... All LAN/WAN White Papers | Webcasts