Slashdot Mirror

← Back to Stories (view on slashdot.org)

Australian Teen Reports SQL Injection Vulnerability, Company Calls Police

Posted by timothy on from the charged-with-public-embarrassment dept.

FuzzNugget writes with an excerpt from Wired, which brings us the latest in security researcher witch hunts: "Joshua Rogers, a 16-year-old in the state of Victoria, found a basic security hole that allowed him to access a database containing sensitive information for about 600,000 public transport users who made purchases through the Metlink web site run by the Transport Department. It was the primary site for information about train, tram and bus timetables. The database contained the full names, addresses, home and mobile phone numbers, email addresses, dates of birth, and a nine-digit extract of credit card numbers used at the site, according to The Age newspaper in Melbourne. Rogers says he contacted the site after Christmas to report the vulnerability but never got a response. After waiting two weeks, he contacted the newspaper to report the problem. When The Age called the Transportation Department for comment, it reported Rogers to the police.'"

17 of 287 comments (clear)

  1. Idiots by Mistakill · · Score: 4, Funny

    If you smiled at a safe, and it burst open... its not your fault the safe was faulty...

  2. Re:Was not arrested by Anonymous Coward · · Score: 5, Funny

    Yeah, but regardless, this kid went out of his way to help out this company, and they repay him by having the cops toss him in the clink. The overall theme SHOULD be the idiot company, but in the meantime lets not forget about the cops who arrested him.

  3. Re:Was not arrested by H0p313ss · · Score: 4, Funny

    in the meantime lets not forget about the cops who arrested him.

    The non-existent ones? This is getting very meta-physical, I may have to make some coffee.

    --
    XML is a known as a key material required to create SMD: Software of Mass Destruction
  4. Re: Was not arrested by Anonymous Coward · · Score: 5, Funny

    Then how did he wind up in prison? He certainly didn't place himself under arrest. I guess we'll just have to hear the rest of the story once he's out on parole, the cops certainly aren't talking.

  5. Re:Oringial article on The Age by Anonymous Coward · · Score: 4, Funny

    For anyone who is interested

    No thanks, we like being uninformed here.

  6. Re:The correct way to "inform the authority" by maxwell+demon · · Score: 5, Funny

    1. Keep quite.

    This sentence is quite incomplete.

    --
    The Tao of math: The numbers you can count are not the real numbers.
  7. We need a Kickstarter campaign for Timothy by JohnA · · Score: 4, Funny

    We could raise money to teach him how to read. And then, maybe, we could send him to a school that will teach him how to read a full article, and apply basic cognitive skills before spewing all over slashdot.

    Anyone with me?

    1. Re:We need a Kickstarter campaign for Timothy by Anonymous Coward · · Score: 5, Funny

      No. Education is too expensive. Just replace him with a monkey.

  8. Slashdot reader points out error in headline ... by Grismar · · Score: 5, Funny

    ... and gets arrested.

  9. Re:The correct way to "inform the authority" by Anonymous Coward · · Score: 5, Funny

    If you're not browsing by proxy in this day and age, you're screwed.

    But baby, proxies don't feel natural! I'll pull out before I post my comment, I promise.

  10. Re: Was not arrested by Anonymous Coward · · Score: 5, Funny

    Hopefully he'll be available to clear all of this up one the police release him from custody.

  11. Re:The correct way to "inform the authority" by chromas · · Score: 4, Funny

    [Premature enunciation]

  12. Re: Was not arrested by Anonymous Coward · · Score: 2, Funny

    You know, I really admire your patience with the GP. I can't believe how stupid the GP is, misreading the article like that. If I were you, I'd have thrown the GP in the same jail the hacker kid is.

  13. Alias in hiding by Tablizer · · Score: 5, Funny

    To hide from the law, he changed his name to Drop Table All.

    --
    Table-ized A.I.
  14. Re: Was not arrested by Anonymous Coward · · Score: 5, Funny

    I don't see what's so funny about a kid getting arrested.

  15. Re:Was not arrested by umghhh · · Score: 5, Funny

    this is OT but for a change I had a portion of a good lough this morning while reading this part of the thread. Luckily I do not have to read this from the prison like this kid.

  16. Re: Was not arrested by Anonymous Coward · · Score: 2, Funny

    Please, stop with the self-righteous posturing. Where were you when this kid was spending his best years in jail ? Where where you when his mother committed suicide ?