NullCrew Hackers Hit University of Minnesota

Share it on Twitter  
Share it on Facebook  
Share it on Linked in  

Members of NullCrew recently leveraged a SQL injection vulnerability to breach the Web site for the University of Minnesota School of Public Health's Division of Epidemiology & Community Health, and published user data online.

The data, published on Pastebin, isn't particularly sensitive -- it includes 17 professors' names, along with some matching department names, addresses, e-mail addresses and/or phone numbers.

No reason was given for the attack, though the hackers noted in a statement preceding the data, "We are not @OfficialNull the official account of NullCrew is @NullCrew_FTP."