DataBreaches.Net

Menu
  • About
  • Breach Notification Laws
  • Privacy Policy
  • Transparency Report
Menu

Compoundsemiconductor.net Breached By @st0rmyw0rm, Credentials Leaked

Posted on May 30, 2013 by Lee J

compound-semiconductors_frontpage_cwn Hacker st0rmyw0rm has just announced another leak of data this time coming from a well known and used website named compoundsemiconductor.net

Compound Semiconductor has been the leading provider of news, analysis, opinion, information and services for the worldwide Compound Semiconductor industry since 1995.

The site is owned by Angel Business Communications which was first established in 1981.

Angel Business Communications was established in 1981 and is a leading business-to-business (B2B) media, conference, awards and exhibition organiser.

The leaked data has been announced from the hackers twitter account and posted to anonpaste.metwitterst0rmyw0rmcs Breached data includes 4610 with only 8 duplicates and the format of the leak is very shocking as it uses the similar, first and last name for user names, email addresses and a very common preset password "cspassword" which are stored in clear text. The leak also contains two administrator accounts which also have clear text passwords of "Scotty" which would suffer to a simple brute force attack within minutes. Looking at some of the email addresses it appears many different corporations, agency’s, education and other event  businesses have registered with this site. The hackers have also provided proof that the attack on this site was very easy, first using a simple SQI to gain access to the sites database then later on figuring out the administrator page was insecure as well. adminpagefail The leak also contains a full list of IP addresses that have been logged by the system. Using preset passwords is a thing of the past and should not be practiced anymore but we still see leaks coming out from breaches that prove that systems are still using these. These systems need to be updated and made more secure as well as implementing better or even encryption methods for stored passwords and some extra security on the administrator side of things.

No related posts.

Category: Breach Incidents

Post navigation

← California agencies’ clients vulnerable to ID theft
SEC and CFTC jointly adopt identity theft red flags rules applicable to investment advisers and others →

Now more than ever

"Stand with Ukraine:" above raised hands. The illustration is in blue and yellow, the colors of Ukraine's flag.

Search

Browse by Categories

Recent Posts

  • National Health Care Fraud Takedown Results in 324 Defendants Charged in Connection with Over $14.6 Billion in Alleged Fraud
  • Swiss Health Foundation Radix Hit by Cyberattack Affecting Federal Data
  • Russian hackers get 7 and 5 years in prison for large-scale cyber attacks with ransomware, over 60 million euros in bitcoins seized
  • Bolton Walk-In Clinic patient data leak locked down (finally!)
  • 50 Customers of French Bank Hit by Insider SIM Swap Scam
  • Ontario health agency atHome ordered to inform 200,000 patients of March data breach
  • Fact-Checking Claims By Cybernews: The 16 Billion Record Data Breach That Wasn’t
  • Horizon Healthcare RCM discloses ransomware attack in December
  • Disgruntled IT Worker Jailed for Cyber Attack, Huddersfield
  • Hacker helped kill FBI sources, witnesses in El Chapo case, according to watchdog report

No, You Can’t Buy a Post or an Interview

This site does not accept sponsored posts or link-back arrangements. Inquiries about either are ignored.

And despite what some trolls may try to claim: DataBreaches has never accepted even one dime to interview or report on anyone. Nor will DataBreaches ever pay anyone for data or to interview them.

Want to Get Our RSS Feed?

Grab it here:

https://databreaches.net/feed/

RSS Recent Posts on PogoWasRight.org

  • The Trump administration is building a national citizenship data system
  • Supreme Court Decision on Age Verification Tramples Free Speech and Undermines Privacy
  • New Jersey Issues Draft Privacy Regulations: The New
  • Hacker helped kill FBI sources, witnesses in El Chapo case, according to watchdog report
  • Germany Wants Apple, Google to Remove DeepSeek From Their App Stores
  • Supreme Court upholds Texas law requiring age verification on porn sites
  • Justices nix Medicaid ‘right’ to choose doctor, defunding Planned Parenthood in South Carolina

Have a News Tip?

Email: Tips[at]DataBreaches.net

Signal: +1 516-776-7756

Contact Me

Email: info[at]databreaches.net

Mastodon: Infosec.Exchange/@PogoWasRight

Signal: +1 516-776-7756

DMCA Concern: dmca[at]databreaches.net
© 2009 – 2025 DataBreaches.net and DataBreaches LLC. All rights reserved.