Jump to content

Not again! Another website used by foreigners in Thailand suffers massive data breach

Recommended Posts

  • Replies 155
  • Created
  • Last Reply

Top Posters In This Topic

Top Posters In This Topic

Popular Posts

For the second time in as many days, an official website used by foreigners in Thailand has purportedly suffered a data breach.   On Wednesday, blogger Richard Barrow tweeted that the websit

Nothing new. They have been doing it for years with the photocopies of application forms on the back of other peoples passport and other document copies.

welcome to thailand 0.4. do expect local mafia figures to check on your home safe, while you pop to shops. you passport data used by terrorists (they might even take it with safe). some

Posted Images

15 minutes ago, JamieM said:

Nonsense, he did not gain unauthorised access to any system it was there for all to see. 

and where do you think the data was retrieved from? thin air?

  • Confused 2
  • Sad 4
Link to post
Share on other sites

Yes, it is possible to change a userID in a URL (which should not be displayed anyway) and retrieve another users data. I've done it under controlled conditions. But only if the developer has neglected security considerations and validation routines when the web site was created, which is the point that Mr Barrow was trying to make. Of course, most web developers worth their salt would never allow this to happen so there are still some places free in the world's jails.


My original point was that if he did this then it would be legally defined as hacking i.e. gaining unauthorised access to a system or data.

  • Thanks 1
Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
  • Recently Browsing   0 members

    No registered users viewing this page.

  • Create New...