时间:2025-04-02 09:31:32 来源:网络整理编辑:綜合
Everybody makes mistakes at work but, leaving the no-fly list exposed on the internet seems like a r
Everybody makes mistakes at work but, leaving the no-fly list exposed on the internet seems like a really bad mess-up.
That's reportedly what happened with the U.S. airline CommuteAir. The Daily Dot reported that a Swiss hacker known as "maia arson crimew" found the unsecured server while using the specialized search engine Shodan. There was apparently a lotof sensitive information on the server, including a version of the no-fly list from four years ago. Somewhat hilariously that was reportedly found via a text file labeled "NoFly.csv." That is...not hard to guess.
A blog post from crimew titled "how to completely own an airline in 3 easy steps" cited boredom as the reason for finding the server. They were just poking around and found it.
"At this point, I've probably clicked through about 20 boring exposed servers with very little of any interest, when I suddenly start seeing some familiar words," crimew says in their blogpost. "'ACARS', lots of mentions of 'crew' and so on. Lots of words I've heard before, most likely while binge-watching Mentour Pilot YouTube videos. Jackpot. An exposed jenkins server belonging to CommuteAir."
Tweet may have been deleted
CommuteAir, a regional US airline headquartered in Ohio, confirmed the info on the server was authentic to the Daily Dot. The server has been taken offline.
"The server contained data from a 2019 version of the federal no-fly list that included first and last names and dates of birth," CommuteAir Corporate Communications Manager Erik Kane told the Daily Dot. "In addition, certain CommuteAir employee and flight information was accessible. We have submitted notification to the Cybersecurity and Infrastructure Security Agency and we are continuing with a full investigation."
The info from the server has already been poured over, with some researchers saying it shows how the list is heavily biased against Muslim people. According to Daily Dot, while there is no official number to how many names are on the no-fly list, Sen. Dianne Feinstein (D-Calif.) suggested in 2016, that over 81,000 people were on the list.
TopicsCybersecurity
Richard Branson 'thought he was going to die' in bike accident2025-04-02 09:24
Colorado firefighter captures rare 'firenado' in Beaver Creek blaze2025-04-02 09:17
I tested out a virtual reality fart simulator and it was as odd as it sounds2025-04-02 09:13
Emotional TV interview captures the frustration over police shooting in Milwaukee2025-04-02 08:31
These glasses hide a fitness tracker on your face2025-04-02 08:29
I tested out a virtual reality fart simulator and it was as odd as it sounds2025-04-02 08:07
Rihanna to receive 'Video Vanguard' award at VMAs2025-04-02 07:55
Emotional TV interview captures the frustration over police shooting in Milwaukee2025-04-02 07:47
J.K. Rowling makes 'Harry Potter' joke about Olympics event2025-04-02 07:44
Indonesia livestreams Independence Day ceremony in 360 degrees, video gets stuck2025-04-02 07:02
Fake news reports from the Newseum are infinitely better than actual news2025-04-02 09:05
Send your heartbeat to your lover in real time with this smart ring2025-04-02 08:56
Louisiana residents make best of 'historic' flood on social media2025-04-02 08:52
No, Shaunae Miller didn't cheat by diving past Allyson Felix in Rio2025-04-02 08:39
MashReads Podcast: What makes a good summer read?2025-04-02 08:29
Olympic cheering blamed for active shooter chaos at JFK Airport2025-04-02 08:16
Lady Gaga to star in 'A Star Is Born,' will write and perform new songs2025-04-02 07:38
New Supergravity Snapchat series focuses on global street fashion2025-04-02 07:06
Felix the cat just raised £5000 for charity because she's the hero we all need2025-04-02 07:04
This Olympic merchandise is so beautiful you'll need to own it immediately2025-04-02 06:45