An essential component to Collage is a login form on the top of every page.  Students can type their username and password into the form to be shown a custom set of Internet links.  Webpage administrators expect that students will frequently enter their password to gain access to their preferred links.  Students will then be trained to frequently type their password on top of any page with the Collage theme.

Within a matter of minutes, anyone with a technical background can set up a page using the Collage theme.  They can make it look like a genuine and legitimate BYU site.  In particular, hacker’s can create a fake site that looks like a BYU site, but it really just a technique to trick student users.  Many student users could be tricked into giving their username and password to a fake site created by a hacker.  The hacker could then gain access to the student’s personal information, email, and financial accounts.  Once the hacker has access to the student’s information,

Related posts:

1. New LDS.org website This morning the LDS church launched a new version of...
2. BYU releases new web site look Today, BYU released a preview of their new look for...
3. Better way to timstamp for computer science project pass-offs Timestamps are bad, use MD5 Sums!...

What is new is how they are providing the address in the link.  They provided the IP address in hex.  So if I were to represent the address to my server, it would be: http://0xcf.0×2d.0×41.0×24/

I thought this was very interesting, so I tried it in Firefox and Opera on my mac, and neither were tricked.  Both browser’s didn’t convert the hex to the real IP address, so it didn’t work.   But it makes me wonder if there are browsers out there that might be tricked by such IP address encoding.

Related posts:

1. NBCOlympics gave away my email address Before the 2008 Olympics, I was at NBCOlympics.com looking for...
2. Shrink that URL The web is built around addresses to web pages, often...
3. BYU’s new website theme fosters identity theft On February 15th, BYU will launch a new look and...

Where I usually find the latest posts to the Official Google Blog I found instead a title that read:

Google, fix your blog pleeasssee! <3 (P.S. Just t…

That was all I could see. When I clicked on the live bookmark, I was taken to the following URL:

http://googleblog.blogspot.com/2006/03/google-fix-your-blog-pleeasssee-3-p.html

which turns out to give a “Not Found” error. Furthermore, the Offical Google Blog and its Atom feed also return 404 errors.

So what happened to the blog? Was it hacked?

Related posts:

1. Suggestion for Google Apps for Your Domain Today I read that Google has a service for large...
2. How do I upgrade the Google toolbar? I was reading various blogs this evening, and I saw...
3. radioclub server hacked The webserver for radioclub.byu.edu recently got hacked through a php...

I’ve also made sure that any other installations of phpBB2 hanging around on my other servers are either upgraded or deleted.

If anyone is running phpBB2 with a version less than 2.0.11, you really should upgrade immediately.

Related posts:

1. Google Blog hacked? I was looking through my live bookmarks on Firefox, which...
2. Those who don’t want broadband Internet According to a Slashdot article, 62% of Americans who access...
3. New BYU Ham Radio Site Today I made a post to the BYUARC (Amateur Radio...