14 DAY TRIAL // A number of 978 record sets were leaked from the servers of Stanford University after a hacker known as GreyerSting managed to identify an SQL Injection vulnerability on the institution’s official computer forum.
“I was just bored and noticed the vulnerability and decided to exploit it,” the hacker said.
The data dump contains first and last names, email addresses, phone numbers, physical addresses and other details.
Our readers may remember that the site of Stanford University was also hacked and defaced on March 16. At the time, security researcher Shadab Siddiqui provided us with information that demonstrated the vulnerabilities that affected the website.
It’s uncertain if in the meantime Stanford’s Information Security team addressed the issues we’ve reported because they failed to respond to our emails, but it’s clear that some dangerous vulnerabilities still exist on the site.
Note. My Twitter account has been erroneously suspended. While this is sorted out, you can contact me via my author profile.