816
classic opsec mistake
(discuss.tchncs.de)
Hint: :q!
Sister communities:
Community rules (click to expand)
1. Follow the site-wide rules
sudo
in Windows.Please report posts and comments that break these rules!
Not saying its actually what happened but I would ask how he knew about the data.
Statistically, it should have been a random port scan that got in but since he‘s from the same country, he‘s either professionally or privately connected I assume. He either worked there in IT function, visited as a patient, dated an employee, etc.
So in other words, he‘s not a master hacker but probably stumbled across this. I had this with a webspace provider once were I could see all other customers folders when I used ssh instead of the web interface. I couldnt access them but I got a wiff of how stuff like this happens. 99.9% of their customers are inept at IT stuff so a mistake in ssh would never come up since customers wouldn’t use it and in that one case, they overlook it.
So, this might have been his first hack ever and it probably took a long time til he even understood what he had in his hands. Thats why I dont do stuff like this, I‘m prone to such mistakes as well. Most elaborate scheme imaginable and cc it by mistake to someone I know.
I just was reading Wikipedia and it said he was arrested previously for hacking.
https://yle.fi/a/3-12669196
You're probably right he had some connection and stumbled onto the data, but this wasn't his first rodeo.
Thanks for pointing it out. This makes it even more embarassing that he made a mistake like this. But I can still see how it could happen.