From: InfoSec News (alertsinfosecnews.org)
Date: Tue Sep 16 2008 - 03:43:27 CDT

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

http://www.cbc.ca/technology/story/2008/09/11/ot-carleton-080911.html

CBC News
September 11, 2008

A Carleton University student is facing criminal charges, accused of
stealing user names, passwords, financial information and other data
from 32 other students to expose security flaws in the university's
student card system.

Mansour Moufid, 20, is charged with mischief to data and unauthorized
use of a computer, Ottawa police said Thursday in a release.

He has been released on several conditions and will appear in court on
Oct. 15.

Moufid, a second-year math student, also faces a disciplinary hearing at
the university.

A student who called himself "Kasper Holmberg" gained access to the data
by installing software that he wrote on a terminal in a computer lab
that was attached to a card reader.

The software recorded keystrokes made on the computer and included
magnetic stripe card reader software, police said.

Holmberg sent a document to the university and the victims disclosing
how he did it. In a 16-page report, he concluded that the cards were not
secure and should not be used.

[...]

__________________________________________________
Register now for HITBSecConf2008 - Malaysia! With
a new triple-track conference featuring 4 keynote
speakers and over 35 international experts, this
is the largest network security event in Asia and
the Middle East!
http://conference.hackinthebox.org/hitbsecconf2008kl/

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]