Foxconn Hacked; Passwords and Logins Posted Online
Between protesters and hackers, Foxconn just can't catch a break.
Just yesterday we got wind of iPhone owners' plans to march to Apple HQ, as well as select stores nationwide, in protest of Foxconn's treatment of its workers. It seems those purchasing Apple products aren't happy with how the workers that make their devices are being treated and they plan to march to Apple HQ wearing iPhone outfits to let their feelings be known. Worse still, the company is today dealing with a security breach that saw its email servers and Intranet breached yesterday.
The group responsible for the hack goes by the name of SwaggSec and announced the hacking job via its Twitter feed yesterday. In an open letter posted to PasteBin, SwaggSec reveals that while it finds the treatment of Foxconn workers 'disappointing,' this is not the reason behind the attack. Rather, the group just wanted to have a bit of fun.
" [...] Swagg Security would rather not deceive the public of our intentions. Although we are considerably disappointed of the conditions of Foxconn, we are not hacking a corporation for such a reason and although we are slightly interested in the existence of an Iphone 5, we are not hacking for this reason. We hack for the cyberspace who share a few common viewpoints and philosophies. We enjoy exposing governments and corporations, but the more prominent reason, is the hilarity that ensues when compromising and destroying an infrastructure."
So, what exactly did SwaggSec manage to snag? According to Time magazine, the dump of files is 16 megabytes in size and contains roughly 25 spreadsheets as well as a few text documents. Probably the most significant piece of data revealed in these documents are supposed login credentials that SwaggSec says could allow individuals to submit orders to Foxconn using the names of big tech companies (including Apple, Microsoft, IBM, Intel or Dell).
SwaggSec's Twitter last night revealed that Foxconn admins had taken http://services.foxconn.com offline, but it's not yet clear if anyone was successful in making an order before it went down. That said, 9to5Mac was able to verify that the stolen logins "worked on more than one Foxconn server."
Foxconn has not yet commented on the breach. We'll update you when they do.
Check out the full message from SwaggSec here.