Liau Yun Qing reports:
Hackers have infiltrated the National University of Singapore’s (NUS) backend systems and made away with a trove of information, including staff usernames, domain information and hashed passwords. University has confirmed the incident but noted that the affected data is not confidential.
According to a report Thursday on tech Web site Secure Computing Magazine’s (SC Magazine), hacker group Team Intra had infiltrated the tertiary institution’s database by exploiting a SQL vulnerability. The hackers apparently felt the urge to do so after the NUS Web site, upon receiving probes, generated an error message which stated: “If you’re trying to use the SQL error message to dig for juicy information, get lost.”
Read more on ZDNet Asia.
Okay, so taunting hackers may not be the smartest thing a university can do. Hopefully they have a quick learning curve.