Vulnerability Management

EC-Council website defaced by hacker

Share

A hacker has defaced the website of the EC-Council, a member-supported organization that offers training for the Certified Ethical Hacker (CEH) program. 

The person who took responsibility for the attack and goes by the alias Eugene Belfort - a play on a character from the 1995 film Hackers - claims to have compromised the photo ID and passport credentials belonging to more than 60,000 security professionals who have taken or applied for the CEH program. Many of those individuals hold government and military positions. 

Among those whose information was compromised includes whistleblower Edward Snowden's. An image of his passport was used to replace the EC-Council home page.

According to a note left behind by the hacker, lax password security is what allowed for the hack to take place. "Defaced again? Yep, good job reusing your passwords morons," Belfort wrote.

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

By clicking the Subscribe button below, you agree to SC Media Terms of Use and Privacy Policy.