Vulnerability also had not finished? The 12306 official website user data was leaked2017-04-21 18:59:19 34 ℃
Review of IDC network (idcps.com) 04 reported on 21 May: today in the afternoon, the reporter found in the official website of 12306 tickets, when a reporter from the personal account, the web page was automatically boarded another account, and personal information ID number, contact were found associated with the account, then click on the page commonly used reporter contact options page again refresh and display all of the information covered by the account account and others.
The reporter tries to operate the user account information in the site account page and other options, click on the access to get different personal identity information.
Reporters then call the 12306 official customer service to ask the user whether the information disclosure issue, the customer service staff said system now everything is normal, and there is no attack or leak, but the reason for the system to the customer service account information disclosure said is not clear.
As of 5:00 pm or so, the reporter once again log on 12306 official website, log off after the login page shows that all normal.
In early December 25, 2014, they had platform cloud network vulnerability report released the report, the user data leakage vulnerability 12306 sites, resulting in a large number of 12306 users of data spread in the network, and relates to a user account, password, ID card, express mail and other information.
For the exposure of the cloud network vulnerabilities, China railway customer service center at the time also responded: "this leaked information contains all user password in plaintext, and my website database of all user passwords are non plaintext conversion code multiple encryption, user information is leaked online by other sites or the outflow channel." Subsequently, the public security organs have been involved in the investigation.
After Chinese railway customer service center also reminded passengers to ensure the information security of the majority of users, please buy tickets through the official website, do not use third party software to grab votes ticket, or the third party ticket, to prevent leakage of personal information of your identity. At the same time grab the ticket, please be careful to use some of the third party web site development ticket artifact, to prevent the bundled sales of insurance to disclose personal information.
The 12306 site user data leakage again, what is the system appeared bug? Or the site's user data leakage vulnerability has not been patched up? Although the reason is not yet known, but we also hope that China railway customer service center can actively improve the site user data security related functions.
Guess you like
- 2017-04-25Zhao Wei after Yang Mi provoke the attention of the SFC? All cause 5 billion valuation!
- 2017-04-24Investors ask Liu Shiyu: life body metabolism A shares why not enter?
- 2017-04-23There are less than 10 days this bank card will close the 1 functions
- 2017-04-22The Commission's regulatory storm: "cheat restructuring" the first case of the top grid before disposal Fashen members receive 499 million tickets
- 2017-04-21Can not buy a new room in the security room, small tin has been difficult to buy daughter
- 2017-04-21A quarter of the social security fund holdings of new shares 5 shares of net profit doubled
- 2017-04-21Financial breakfast 2017.4.21 Friday
- 2017-04-20The company cattle over Moutai: net profit for 8 consecutive years, an increase of 40% share price rose by 10 times in the past 4 years
- 2017-04-20The financial | breakfast crude oil fell 4% stocks fell for two days to tired down over 200 points
- 2017-04-19Moutai shares flying 400 yuan public offering to break up the big consumer Baotuan
- Zhao Wei after Yang Mi provoke the attention of the SFC? All cause 5 billion valuation!
- Investors ask Liu Shiyu: life body metabolism A shares why not enter?
- Mao Amin husband okay? Just 3 months in the plant system on a mine to cry on
- The biggest risk of stock speculation to the central bank to start
- The stock market plunged recently opened the truth: the battle of Changping money pit kill
- Behind the 170 thousand square meters of sewage pollution pits: Nan Zhao Fucun of business
- Wipe out the "land of steel: small private enterprises into local government in the eyes of a pile of rotten iron"
- Mixed air outlet to see! 19 list has identified the third batch is expected to be announced
- How was Jia Yueting destroyed by A shares? Two big questions remain unanswered
- A male war burst into Stephen earned hundreds of millions of capital in the end is what position?