Stealing 12306 of users ' information with the crash library

Absrtact: The day before yesterday exposed 12306 website user data is leaked, account number, password, ID card, mailbox and so on massive user data on the Internet crazy biography. The matter was made new progress yesterday, the reporter learned from the railway police, two suspected of stealing and revealing other people's electronic information of criminal suspects

The day before yesterday exposed 12306 website user data leaked, account number, password, ID card, mailbox and so on a lot of user data on the Internet crazy biography. The matter was a new development yesterday, the reporter learned from the railway police, two suspected of stealing and revealing other people's electronic information, such as Jiang So-and-so, Shi So-and-so has been captured, two people claiming to get information through other websites, and then through the "hit the Library" way to obtain user information.

The day before yesterday, the third party vulnerability reporting platform Cloud network disclosed that a large number of 12306 site user information was leaked, involving more than 130,000 user data. 12306 Official website responded that the net releases the user information through other website or other channel outflow, and reminded the passenger not to use the third party to rob the ticket software to purchase the ticket. Subsequently, Baidu, Cheetah, 360 and many other Third-party ticketing platform statement said that the user Information disclosure event is irrelevant.

After the incident was exposed, the police quickly intervened. According to the railway police yesterday, December 25, the suspect Jiang So-and-so, Shi So-and-so was captured. After the police preliminary examination, the two people account for the Internet through the collection of a game website and other websites leaked user name plus password information, try to log on to other sites to "pool", illegal access to other users of information, and seek illegal benefits. The case is now being further processed.

>> noun Interpretation

"Collision" Pool is a hacker through the collection of Internet has leaked user + password information, generate the corresponding dictionary table, try to log in to other sites, a series of users can log in. Many users use the same account password on different sites, so hackers can try to log on to the B site by acquiring the user's account at site A.

>> related

12306 Stop the travel conflict ticket purchase

Beijing Times News 12306 Railway Customer Service Center issued a notice yesterday, the railway public security organs recently cracked up to use the identity of others to store votes in the online ticket of the case, so will crack down on the identity of the purchase of tickets. If the traveller finds himself in the risk of being used, he can report it at any time. In addition to reporting the railway public security organs, 12306 sites will also increase the reporting function.

12306 reminder: "According to the real-name purchase of tickets to travel principle, passengers do not buy tickets to conflict." From December 26 onwards, the ticketing system will not accept the ticket purchase of the conflict of itinerary. If the passenger is prompted to purchase the ticket again when the conflict with the previous purchase ticket, the ticket must be changed or refund, and then the ticket can be again purchased. The railway department will refuse to take a bus to the ticket if the identity information is not in conformity with the identity card or the real identity of the bearer. ”