A few days ago, who lives in Chongqing Jiangbei district, Mr LEE has received e-mails from a stranger informing him of 12306 Web site personal information has been stolen. Email who is the stranger? How did he learn that Mr LI's personal user information? Account password is modified by who?
Reporters found that before this matter originated in the national uproar 12306-site information leakage events. The events leading up to 130,000 stolen user information, Mr Li is one of them. But he, like many users, did not know.
Mr Lee received the e-mail.
Odd! Strange messages in your personal information
Mr Lee received this email titled: "your 12306 ticket information has been compromised, please change it. "In front of the title, Mr LEE's real name; added after the title:" from the Internet practitioners sincerely remind. "
"I went in and saw, it was a start. "Mr LEE said, the content of the message is to inform Mr LEE, his 12306 site individual user information has been leaked. In order to let Mr LEE believes that this matter, the message also listed in Mr LI's name, ID, telephone number, email address, account number, password.
"All true! "Mr LEE was surprised, he did not know how email strangers access to his personal information, nor is it clear from someone the real purpose of this email. Subway breastfeeding party her husband restore
However, after Mr Lee received a message, log on using your account password again 12306 website, discover the password has been changed, cannot be advertised. "National day logged on to buy their votes. "
Do good things! "Li Chunbin" is helping others
Reporters look closely at Mr Lee received this email, first sentence: "this message is not a fraud or theft of information messages. We personally give you a friendly reminder via email. "
The sender in the message left in his mailbox and Twitter account, and said, if you have any questions, feel free to contact. Reporter through a message on the micro-blog accounts, queries to Twitter called "I'm Li Chunbin" users, the Twitter authentication for the user is a manager of interactive media products company.
"I'm Li Chunbin" on Twitter has published several articles on 12306 description of information disclosure, many comments per article. Some netizens questioned how he obtained this information, there are also netizens who thanked him for his timely reminder.
Hebei guys accidentally get 130,000 people personal information
The afternoon of January 12, journalists contact the sender. He said, my real name is Li Chunbin, 31 years old this year, Hebei, work for an Internet company in Beijing.
"This information is early last year, I'm downloading. "Li Chunbin said that at that time, 12306 site disclosure event is a national uproar. Online public communication a 12306 site leaks of personal information files.
Li Chunbin download this file out of curiosity, 130,000 users ' personal information in the file, including user name, ID, phone number, email address, account, password, and user purchase records and contact information.
Li Chunbin's surprise, which is true! Li Chunbin pick up several users, call them as information to find each other's identity are consistent with the information on the Internet.
Later, the public dissemination of documents on the Internet would be deleted. Li Chunbin still did not open this file.
He mails one by one theft of user
Until September of this year, Li Chunbin see an Internet company on the Web news of information theft. He remembered that his hands have a 130,000 people of stolen information.
"So many people, they do know that their information was stolen? "Li Chunbin said that he will try to send messages to several users, results on the reply message from the other was informed that many users don't know their information leaked.
Then, Li Chunbin use of leisure time, started repeating every day to do one thing: that is, send mail to 130,000 people get, notifying them that the information leaked.
Li Chunbin said that the purpose of email is very simple, is that real information people know the news. Li Chunbin such practices play a role. Many people just like Mr Li Chongqing, by Li Chunbin reminder don't know what information was stolen.
However, Li Chunbin was a lot of people questioned think he changed their account password. Li Chunbin explained on the one hand, on the other hand posted on the Twitter way to track down stolen account password.
About 3,000 users in Chongqing stolen personal information
Li Chunbin said that 130,000 people email is an elaborate affair. "But hundreds of e-mails every day, otherwise it will be treated as junk mail, the other side has not received. "Li Chunbin said that until now, there are many users without notice.
Disclosure of the 130,000 people, Chongqing, how many users? Li Chunbin according to the administrative code ID top queries, results show that about 3,000 users in Chongqing of personal information being leaked.
"Some part of my report, the rest of part I will send email notification as soon as possible. "Li Chunbin said that after the user is notifications all the stolen information, he will erase all user information, ensure there is no secondary leakage from him.
Official response: 12306 is safe now
The afternoon of January 12, reporters about the call the 12306 customer service hotline. Staff did not know 12306 site disclosure event, therefore so-called theft of the user will not be notified.
Staff said that stolen information might be attributable to the use third party software purchase. At present, 12306 official website tickets does not appear in a release of personal information.
Event review: 12306 leakage of user information
At noon on December 25, 2014 platform cloud network vulnerability report appeared on 12306 vulnerability report. Vulnerability type is "user information on a large number of leaks." Later, the event continues to ferment, online public dissemination of 130,000 items 12306 user data. Railway Police later suspected of stealing and disclosing other electronic information captured suspects.
Suspect Jiang, Shi by collecting a certain game sites, as well as a number of other Web sites divulge the username and password information, try to login to other sites that are "hit", illegal access to user information, and seek illegal interests.
No comments:
Post a Comment