It doesn’t give me that warm and fuzzy feeling to know that the FBI has been hacked. Again. Yup, Twitter handle CyberZeist, has claims to have hacked the FBI’s website (fbi.gov) and snagged the personal account information of 155 FBI officials, including their names, passwords, and email accounts, and posted them on Pastebin.
CyberZeist exposed the flaw in the Content Management software used by the FBI to host its website on December 22, giving the FBI some time to patch the vulnerability in its website’s code before making the data public. Nevertheless, CyberZeist tweeted multiple screenshots as proof of his claims, showing his unauthorized access to server and database files using what is called a zero-day local file inclusion type vulnerability affecting its python plugins. You don’t need to know what those are but they are in common use on many web boxes running various versions of the open-source FreeBSD operating system.
This is not the first time CyberZeist hacked the FBI website. In 2011, the hacker breached the FBI site as a card carrying member of the infamous hacker group known as “Anonymous.”
In any case, the Russians didn’t do it.