In what has been described as a response to the arrests of protesters on a climate march in Paris this past Sunday in the midst of the United Nations Framework Convention on Climate Change (UNFCC), the hactivist organization Anonymous has announced that its hackers have successfully hacked into the website of UNFCC and posted the names, telephone numbers, email addresses, usernames and secret questions and answers of summit attendees onto an anonymous publishing site.
The leaked information is of officials attending the climate summit from the United States, Peru, Switzerland, the United Kingdom, and France.
Security experts report that the intrusion used an SQL injection attack, which is a well-known vulnerability and the password encryption was also weak.
Although the intrusion is embarrassing, the only reported harm from the posting of the information is if the attendees used the same password on other accounts, so the recommendation is to change passwords if that is the case.