时间:2025-07-08 15:57:37 来源:网络整理编辑:綜合
Everybody makes mistakes at work but, leaving the no-fly list exposed on the internet seems like a r
Everybody makes mistakes at work but, leaving the no-fly list exposed on the internet seems like a really bad mess-up.
That's reportedly what happened with the U.S. airline CommuteAir. The Daily Dot reported that a Swiss hacker known as "maia arson crimew" found the unsecured server while using the specialized search engine Shodan. There was apparently a lotof sensitive information on the server, including a version of the no-fly list from four years ago. Somewhat hilariously that was reportedly found via a text file labeled "NoFly.csv." That is...not hard to guess.
A blog post from crimew titled "how to completely own an airline in 3 easy steps" cited boredom as the reason for finding the server. They were just poking around and found it.
"At this point, I've probably clicked through about 20 boring exposed servers with very little of any interest, when I suddenly start seeing some familiar words," crimew says in their blogpost. "'ACARS', lots of mentions of 'crew' and so on. Lots of words I've heard before, most likely while binge-watching Mentour Pilot YouTube videos. Jackpot. An exposed jenkins server belonging to CommuteAir."
Tweet may have been deleted
CommuteAir, a regional US airline headquartered in Ohio, confirmed the info on the server was authentic to the Daily Dot. The server has been taken offline.
"The server contained data from a 2019 version of the federal no-fly list that included first and last names and dates of birth," CommuteAir Corporate Communications Manager Erik Kane told the Daily Dot. "In addition, certain CommuteAir employee and flight information was accessible. We have submitted notification to the Cybersecurity and Infrastructure Security Agency and we are continuing with a full investigation."
The info from the server has already been poured over, with some researchers saying it shows how the list is heavily biased against Muslim people. According to Daily Dot, while there is no official number to how many names are on the no-fly list, Sen. Dianne Feinstein (D-Calif.) suggested in 2016, that over 81,000 people were on the list.
TopicsCybersecurity
Old lady swatting at a cat ends up in Photoshop battle2025-07-08 15:45
吸血 ?格雷澤出售950萬股曼聯股票 約1.86億美元2025-07-08 15:32
佛爺談姆巴佩盼1月能敲定 巴黎總監 :太缺乏尊重2025-07-08 14:51
孫準浩合練費萊尼歸隊 濟南賽區足協杯比賽或不對球迷開放2025-07-08 14:29
More than half of women in advertising have faced sexual harassment, report says2025-07-08 14:25
孫準浩合練費萊尼歸隊 濟南賽區足協杯比賽或不對球迷開放2025-07-08 14:20
利物浦名宿:希望哈蘭德來紅軍 曼城得到他將無敵2025-07-08 13:58
國足麵對越南未嚐一敗 對手防空能力是最大弱點2025-07-08 13:53
Richard Branson 'thought he was going to die' in bike accident2025-07-08 13:38
弗格森:曼聯沒贏因C羅沒首發 最佳球員應一直上場2025-07-08 13:24
Whyd voice2025-07-08 15:40
國足或於13日回國休整 11月兩場12強賽有望國內舉辦2025-07-08 15:38
臥龍鳳雛?成都門將傳世烏龍震驚全場 賽後憤怒摔打手套2025-07-08 15:37
1萬美元起拍 !梅西效力紐維爾老男孩時的證件被拍賣2025-07-08 15:17
New Zealand designer's photo series celebrates the elegance of aging2025-07-08 15:11
吸血?格雷澤出售950萬股曼聯股票 約1.86億美元2025-07-08 15:09
越南媒體 :武磊踢完皇馬再赴國家隊 此舉令李鐵尷尬2025-07-08 15:00
韓媒 :中國男足是B組最弱球隊 越南迎來首勝良機2025-07-08 14:02
These glasses hide a fitness tracker on your face2025-07-08 14:01
越南隊備戰球員開心放鬆 點評國足歸化球員自信滿滿(組圖)2025-07-08 13:42