Hacker Cracks Macworld Website to Get VIP Passes

["Fergie" <fergdawg () netzero net>]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Via C|Net News.

[snip]

Alongside the VIPs and people who paid top dollar, a hacker claims he also
got priority access to Steve Jobs' speech at the Macworld Conference and
Expo this week.

A security weakness in the event's Web site allowed enterprising hackers to
get free "platinum passes" to the event, a $1,695 value, a security
professional claims. These passes--the most expensive sold for
Macworld--included much-coveted priority seating for the Jobs keynote
address on Tuesday. In that packed speech, Jobs unveiled Apple's new
iPhone.

The hack was possible because special discount codes were available on the
Macworld site without proper security, Kurt Grutzmacher, a Berkeley,
Calif.-based security professional, wrote on his blog late Thursday. It was
relatively easy to uncover the code that would make a platinum pass free,
he wrote.

[snip]

More:
http://news.com.com/2100-1002_3-6149994.html

- - ferg

-----BEGIN PGP SIGNATURE-----
Version: PGP Desktop 9.5.2 (Build 4075)

wj8DBQFFp/rBq1pz9mNUZTMRAhv0AKC4eGNjhzb7r7+UWX2ihzF12o5zRwCgpTc6
TeKa4diT9MRVXwVkNefEEyU=
=AoSy
-----END PGP SIGNATURE-----



--
"Fergie", a.k.a. Paul Ferguson
 Engineering Architecture for the Internet
 fergdawg(at)netzero.net
 ferg's tech blog: http://fergdawg.blogspot.com/


_______________________________________________
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.