Tor at heart of embassy passwords leak
Tor advertises itself as a means for people and groups to improve their privacy. And when used properly, the distributed, anonymous network does just that. But a Swedish security consultant has used the very same system to gain access to login credentials for a thousand or so individual email addresses, including those of at least 100 accounts belonging to foreign embassies.
Dan Egerstad, who made waves last week posting the login details to embassies belonging to Iran, India, Japan and Russia, among others, has finally identified how he got access to the information.
At The Register.
[ Read more ]