Palin Email Hacker Caught Red Handed
In a stunning turn of events, hackers have broken into vice-presidential candidate Sarah Palin's Yahoo email account, brazenly publishing several critical messages.
The chaos isn't just limited to the Republican party, however; according to reports, the son of a prominent Democrat is under suspicion following an FBI raid.
Serious questions are being raised this morning about the security of Palin's account, and whether the Alaskan senator should admit some responsibility for using Yahoo Mail for official business.
The hacker, from a group calling itself Anonymous, published some of the stolen material at Wikileaks, a site that allows anyone to published leaked information. It's no connection to Wikipedia -- the term 'wiki' refers to sites which can be edited by users.
The posted material included five emails, two photographs and an address book. The emails include an exchange with Alaska deputy-governor Sean Parnell discussing radio host Dan Fagan. There was also a listing of her inbox showing many subject lines which appeared to involve government business.
Palin and her camp have yet to comment, other than to confirm the account, firstname.lastname@example.org, has now been closed down. However, the BBC quotes John McCain's campaign as calling the incident "a shocking invasion of the governor's privacy and a violation of the law." (Source: bbc.co.uk)
Critics have already slammed Palin for using a personal and free email account for official business: not only for the security implication, but over concerns she may have been trying to evade laws on public records. Adam O'Donnell of email security firm Cloudmark says "Using private accounts for government or business use is incredibly dangerous. There's a reason why you have an official account. It's so that you can apply proper security management to the account." (Source: computerworld.com)
An unconfirmed message board posting from somebody claiming to be the hacker says it took just 45 minutes to hack into the account. The post claims the attack involved asking Yahoo to reset the account's password, supplying Palin's date of birth and zip code, and answering the security question "Where did you meet your spouse?" The alleged answer was 'Wasilia high', a reference to Palin's school. (Source: arstechnica.com)
Ironically the suspected hacker, David Kernell, appears to have made it equally simple to catch him out thanks to a Yahoo account. The boastful post was made under the user name 'Rubico' which other message board posters quickly linked to email@example.com, an address Kernell had used on a YouTube account.
Meanwhile the hacker had made a major blunder by leaving their website address bar in the screenshots of Palin's emails. That gave away that they had used Ctunnel, a service for 'anonymous' web browsing.
With Kernell already in the frame, the FBI was able to cross-reference the details of the attack with Ctunnel's data logs ('anonymous' surfing soon loses its secrecy when the Feds come knocking) and confirm that the hacker used an IP address originating in Kernell's Knoxville apartment block. That's now been raided, though there's no public word of any charges being filed.
Kernell is the son of David Kernell, a Democrat state representative in Tennessee. He's denied any knowledge of, or involvement in, the hacking.
How to Fix: Windows 10 Upgrade Failed Error 80240020
Can I Cancel my Windows 10 Reservation and Reserve Later?
- How to Clean Install Windows 10 using Windows 7, 8 License
- No Service Packs For Windows 10; Support ends 2025
- Will Windows 10 Install Automatically?
- Windows 10 Upgrade: Do I have to Reinstall Programs?
- Windows 10 Upgrade: Can I choose 32-bit or 64-bit?
- Which Version of Windows 10 Will I Get (Home or Pro)?
- How to Reserve Windows 10 Upgrade (Free)
- How to Fix: CPU Not Compatible with Windows 10 Error
- Windows 10 Upgrade: Can I keep my Old Windows Install?
- How to Cancel Windows 10 Reservation (Properly)
- Download Windows 10 .ISO (DVD) for Clean Install?
- Microsoft: Windows 10 Will Be The Last Version
- Windows 10 to Natively Support iOS, Android Apps
- Does Windows 10 require the CPU to support PAE?
- Windows 10: Can I Upgrade or do I need a Clean Install?