Syrian Electronic Army (SEA) are still on the attack
About a week or so ago, I read about many news organizations and other prominent sites getting hacked by the Syrian Electronic Army (SEA). The New York Times and Twitter are still reeling from the attacks carried out yesterday. This attack has been traced down to the site’s hosting provider, Melbourne IT.
Melbourne IT is looking into the matter, but it will take some time. They do know that an authorized user account was compromised and used to carry out the attack.
This is not the first time The New York Times has been attacked. Evidently in January the passwords of 53 employees were uncovered after they ran a story about the wealth of then Chinese Premier Wen Jiabao’s family.
This should underscore the importance of not only using complex passwords and changing your passwords at least every 90 days. A complex password requires using at least three of the following four requirements: upper case, lower case, numbers, and/or symbols. Additionally, don’t leave passwords on paper or on your computer. It makes it easier for hackers to gain access to the system and to your private password list. If you do plan on using a document or software on your computer, make sure it is encrypted with a really strong password.
If you don’t know if you have a good password policy in place, let us know. We’ll be more than happy to turn on the feature, and set it up based on your company’s security policy.
For more about the SEA latest attack, check out this BBC article: