Free Republic
Browse · Search
General/Chat
Topics · Post Article

Skip to comments.

DCCC website was ridiculously easy for Guccifer 2.0 to hack
American Thinker ^ | 14 Aug, 2016 | Richard Henry Lee

Posted on 08/14/2016 9:47:25 AM PDT by MtnClimber

The security for the Democratic Congressional Campaign Committee (DCCC) website was almost non-existent which made it easy for Guccifer 2.0 to hack.

Like Hillary with her reckless use of a personal email server, the DCCC is also guilty of failing to secure their website. The password was shared with many people on a spreadsheet and the site itself did not incorporate the use of an encrypted connection. The password itself was “changeme” (without the quotes) which is quite obvious.

The website for login was http://dccc.org/wp-admin/ which means the website uses WordPress and the login ID was DCCCPress which is also fairly obvious. The fact that they used http instead of the encrypted https means that the login credentials were sent in the clear. By contrast, Guccifer 2.0 also used a WordPress site but his site uses https, which means that all traffic to the site is encrypted, which is a much higher level of security. (There is a bit of irony here that the hacker and the hacked both used WordPress.)

There are several sensible rules about the use of login ID’s and passwords, and one of the most important is to never share them with others.

(Excerpt) Read more at americanthinker.com ...


TOPICS: Society
KEYWORDS: dccc; dccchacked; dncleaks; dws; guccifer; guccifer2; hack; hacking

1 posted on 08/14/2016 9:47:25 AM PDT by MtnClimber
[ Post Reply | Private Reply | View Replies]

To: MtnClimber

These democRATs are true idiots.


2 posted on 08/14/2016 9:47:58 AM PDT by MtnClimber (For photos of Colorado scenery and wildlife, click on my screen name for my FR home page.)
[ Post Reply | Private Reply | To 1 | View Replies]

To: MtnClimber

This is what happens when people really start believing the rules don’t apply to them. They get sloppy.


3 posted on 08/14/2016 9:55:10 AM PDT by pb929
[ Post Reply | Private Reply | To 1 | View Replies]

To: MtnClimber

Not a surprise...they are careless with US security as well


4 posted on 08/14/2016 9:58:04 AM PDT by Nifster (Ignore all polls. Get Out The Vote)
[ Post Reply | Private Reply | To 1 | View Replies]

To: MtnClimber

No doubt about it.

Login: Pelosi
Password: Pelosi


5 posted on 08/14/2016 9:58:09 AM PDT by Red Steel
[ Post Reply | Private Reply | To 1 | View Replies]

To: MtnClimber

Sometimes the origin of this particular password is this:

The developer contracted to build the website sets it to that password before handing it over. He includes with the delivery instructions a stern warning to immediately change the password. That password is intended to emphasize that warning.


6 posted on 08/14/2016 10:10:41 AM PDT by InMemoriam (My hope is not in politics.)
[ Post Reply | Private Reply | To 1 | View Replies]

To: pb929

Yep.


7 posted on 08/14/2016 10:12:16 AM PDT by ColdOne (poochie... Tasha 2000~3/14/11~)
[ Post Reply | Private Reply | To 3 | View Replies]

To: MtnClimber

I guess they’re hacking the GOP also but the emails are so damn boring that the hackers see no reason to release them. LOL!


8 posted on 08/14/2016 10:28:53 AM PDT by FlingWingFlyer (Let's Make Our Government and Founding Documents Great Again!)
[ Post Reply | Private Reply | To 1 | View Replies]

To: MtnClimber

Democrats are now known to be dumb as dirt; look at the current President. A complete bonehead; the total package, that guy. I wouldn’t be surprised if his username is “Mr.Goodbar44” and his password was “MoCoke1961”


9 posted on 08/14/2016 10:44:44 AM PDT by Montana_Sam (Truth lives.)
[ Post Reply | Private Reply | To 1 | View Replies]

To: MtnClimber
Changeme, eh?

I guess that's pretty appropriate.
There's prolly a lot of "loaded" diapers in the demoncRAT party right about now. d;^)

10 posted on 08/14/2016 10:52:34 AM PDT by CopperTop
[ Post Reply | Private Reply | To 1 | View Replies]

To: InMemoriam

Hmm....I’m on a WordPress site, and the only posts I can change are my own.

It sounds like they handed out the administrator’s password rather than a user password.


11 posted on 08/14/2016 11:32:41 AM PDT by scrabblehack
[ Post Reply | Private Reply | To 6 | View Replies]

To: MtnClimber

Ironic that the Democrat elites who think themselves so superior to everyone else are in fact stupid. Should have seen this coming with the meltdown of the Obamacare website.


12 posted on 08/14/2016 12:58:39 PM PDT by The Great RJ ("Socialists are happy until they run out of other people's money." Margaret Thatcher)
[ Post Reply | Private Reply | To 1 | View Replies]

To: Nifster
Not a surprise...they are careless with US security as well
. . . to say nothing of their “carelessness” with classified personal information in the FBI Filegate program.

What can be less likely than that Hillary does not know who hired Craig Livingstone?


13 posted on 08/14/2016 3:22:29 PM PDT by conservatism_IS_compassion ('Liberalism' is a conspiracy against the public by wire-service journalism.)
[ Post Reply | Private Reply | To 4 | View Replies]

To: MtnClimber

As I’ve said before, this hacking wasn’t done by a room full of clandestine computer scientists, quite the opposite. It was done by social engineering...it was a confidence racket...done by a skilled con man.

Consider, most of the staff were adults before computers were mainstream. It was somethings they had to learn...some, not so well. Guccifer just had to target the weakest link, possibly a clerk or low level staff. Once he had access to thief account he has access to their email archive which he could mine. Also, access to the calendar...he would know when people were out of the office and possibly pose as them to mine other information via email.

It could be as simple as posing as an IT person or a more distant colleague.

How bold might it be...

“Linda, I’m John from accounting, I’ve been working with Steve on an important project that is due Tomorrow. I know Steve is out, but there is a post-it on his desk with the password to the project file, could you get the password for me? I need to make some last minute changes. Thanks, John”

Need answers to someone security questions?

Strike up an electronic conversation about your first dog, first car, or about how your doing ancestry research about you mothers maiden name...”...I was shocked to learn her maiden name was Latvian”.


14 posted on 08/15/2016 7:46:03 AM PDT by Fitzy_888 ("ownership society")
[ Post Reply | Private Reply | To 1 | View Replies]

To: MtnClimber
Likely it was:

Login: admin
Password: admin

15 posted on 08/15/2016 7:52:06 AM PDT by Reily
[ Post Reply | Private Reply | To 1 | View Replies]

To: MtnClimber

The original Guccifer was just sentenced to five years in jail.

I have a dream—the Clinton Foundation funds are seized after a RICO conviction and they are used to create seed money for a Nobel Prize for Hacking.

It would be awarded to hackers who disclose public corruption around the world.

Oh, well, back to ugly Clinton-land.


16 posted on 09/01/2016 1:06:40 PM PDT by cgbg (Warning: This post has not been fact-checked by the Democratic National Committee.)
[ Post Reply | Private Reply | To 1 | View Replies]

Disclaimer: Opinions posted on Free Republic are those of the individual posters and do not necessarily represent the opinion of Free Republic or its management. All materials posted herein are protected by copyright law and the exemption for fair use of copyrighted works.

Free Republic
Browse · Search
General/Chat
Topics · Post Article

FreeRepublic, LLC, PO BOX 9771, FRESNO, CA 93794
FreeRepublic.com is powered by software copyright 2000-2008 John Robinson