Windy City Media Group Frontpage News

THE VOICE OF CHICAGO'S GAY, LESBIAN, BI, TRANS AND QUEER COMMUNITY SINCE 1985

home search facebook twitter join
Gay News Sponsor Windy City Times 2021-09-01
DOWNLOAD ISSUE
Donate

Sponsor
Sponsor

  WINDY CITY TIMES

Talkin' Tech: Trump campaign website hacked and defaced
by Martie Marro for Windy City Times
2020-10-28

This article shared 4003 times since Wed Oct 28, 2020
facebook twitter pin it google +1 reddit email


On Oct. 27, 2020 shortly before 6 p.m. central time, Donald Trump's campaign website, www.donaldjtrump.com, was hacked.

The hackers left a message (shown in the image above) claiming they had proof the Trump administration was involved in the origin of the Corona Virus. The hacked front page also contained a claim of other misdeeds by President Trump that "the world was tired of."

Included on the hacked website were two links to cryptocurrency wallets encouraging visitors to "vote" by sending cryptocurrency money to the wallets. A visitor should pay one cryptocurrency wallet if they wanted the damaging information released and another cryptocurrency wallet if they wanted the damaging information to stay hidden.

Cryptocurrencies like Bitcoin or Monero are popular among hackers because the buyer and seller are protected by anonymity—there is no record or ledger kept to track the transaction in any way. While it is doubtful that the hackers had any information to share, it is clear the hackers intent was to make money off of the website intrusion using the "voting" system they created with their anonymous cryptocurrency accounts.

The Trump campaign website, which was initially believed to have been built on the WordPress content management system (CMS), was discovered later to be hosted an a different platform. WordPress is used by 455 million websites in the world, which makes the WordPress CMS a whopping 35% of the market share in 2020. This is also why WordPress is the most hacked CMS in the world. The CMS is open source and well known to programmers and hackers alike. It has countless vulnerabilities and can easily be hacked through any number of plugins.

This is particularly true when a weak password is used like 'maga2020' or 'yourefired'. These are both passwords hackers have used to hack into the President's Twitter account. A Dutch hacker recently claimed to have used the 'maga2020' password to hack Trump's Twitter account.

Trump's campaign website actually used a different popular CMS as the backbone of his website, called Expression Engine. Expression Engine also has a few well-known vulnerabilities. Hackers don't actually need to exploit vulnerabilities when weak user names or weak passwords are used. Hosted systems often used the word 'admin' as the user name and 'password' as the password when first setup. If this information is never changed, hackers are in luck. Without forensic evidence it is unclear how the hackers intruded the president's website, but listed below are a few possibilities.

1. Compromised Username or Password on the Content Management System (Expression Engine), High Probability.

It is clear that Trump's team, or perhaps President Trump himself, likes simple passwords. They are far easier to remember for both President Trump and his staff. However, sharing a password with a group of people almost always leads to the password eventually being compromised.

2. Compromised Username or Password on the Content Delivery Network (Cloudflare), Medium Probability.

Using easy usernames/passwords across different websites is a sure way to have those usernames and passwords eventually compromised. Even if the password is slightly altered per unique website it still serves no real security purpose. For Example: 'Maga2020Cloud' would be just as easy to guess as 'Maga2020'.

3. Vulnerability within the Content Management System (Expression Engine), Medium Probability.

While Expression Engine does have a few vulnerabilities, a good host or webmaster would have patched those vulnerabilities as they were made aware. Given that Trump has already hired inexperienced cabinet members and White House staff, it is entirely possible he hired a webmaster with no previous experience as well. With an inexperienced webmaster at the helm this would mean the vulnerabilities were never fixed and the CMS was never upgraded.

4. Vulnerability within the Content Delivery Network (Cloudflare), Low Probability.

Cloudflare is a professional Content Delivery Network used by 18 million websites around the world. Cloudflare hides the origin IP and delivers content without showing the original servers IP address. There are no known vulnerabilities to this method of content delivery, aside from the passwords used by by its members. Bad passwords would only leave an individual account compromised, not the whole network.

5. Vulnerability within the Domain Registrar (GoDaddy.com, LLC) using DNS, High Probability.

Since most of the information listed about the domain name donaldjtrump.com is public this means the domain isn't locked up in a domain privacy vault where access to the domain information is next to impossible for both the owner and hackers. Surprisingly, the domain name was purchased in 1997 which is late for such a well-known celebrity. The domain has been moved 15 times over the last 23 years to different hosts. This means 15 people (server administrators) have known the hosting/ftp password over the years. If the hosting user name and password wasn't changed over that time or for each successive move to a new host this would be a major weakness. GoDaddy is also well known and can be compromised by any one of the 62 million users who have also used their service.

It appears that Trump's hacked accounts, Twitter and donaldjtrump.com, can all be traced back to horrible password use. These hacks were preventable and quite frankly all world leaders should have a knowledgeable IT assistant on staff. Hiring inexperienced staff can have dreadful outcomes as shown by the coronavirus task force, for example. Fortunately, compromised websites and social-media accounts rarely cause death.

In short, do not share your passwords, don't use passwords with easy words, and don't use phrases that are public knowledge. The word God, ILoveYou, Password, Unicorn, BiteMe, and astrological signs are some of the most common bad passwords people use. 12345, and 123456789 are also common bad passwords.

Ten percent of people, around 30 million people in the U.S. alone, have used at least one of the top 25 worst passwords. Dragon and Princess are also included as bad passwords in this 25 worst passwords list. In addition, always use a capital letter, a number, and a special character in your passwords, and never use that same password or a derivative on a different website or your devices. Turn on Two-step authentication whenever possible.

Following all these tips will leave your accounts safe from hacking or compromise.


This article shared 4003 times since Wed Oct 28, 2020
facebook twitter pin it google +1 reddit email





Windy City Media Group does not approve or necessarily agree with the views posted below.
Please do not post letters to the editor here. Please also be civil in your dialogue.
If you need to be mean, just know that the longer you stay on this page, the more you help us.


  ARTICLES YOU MIGHT LIKE

Gay News

Chicago announces strategic plan to address gender-based violence, human trafficking
2021-09-27
--From a press release - CHICAGO — On Sept. 27, Mayor Lori E. Lightfoot launched the City's first-ever citywide strategic plan to address gender-based violence (GBV) and human trafficking. The work to build this plan began in February 2021 when Mayor ...


Gay News

Liz Cheney: 'I was wrong' to oppose same-sex marriage
2021-09-27
U.S. Rep. Liz Cheney said—in a segment of the CBS show 60 Minutes that aired Sept. 26—she was "wrong" to oppose same-sex marriage when her objection to it caused a public split with her family, including ...


Gay News

NATIONAL Danica Roem, 'Don't Ask, Don't Tell,' abortion appeal, Lambda Legal
2021-09-26
Transgender Virginia legislator Danica Roem is facing a conservative marriage-equality opponent and former Trump administration member in her re-election race this November, Yahoo! News noted. Roem, a Democrat, was elected to the House of Delegates in ...


Gay News

WORLD Marches, world leaders, Swiss marriage, soccer match
2021-09-26
Thousands of people including soldiers and diplomats marched peacefully through the Ukrainian capital of Kyiv in an annual Pride parade despite some opposition to an event called off last year because of the coronavirus pandemic, Reuters ...


Gay News

Chicago's holiday cultural and arts events to reopen for in-person
2021-09-23
--From a press release - CHICAGO — Mayor Lori E. Lightfoot and the Department of Cultural Affairs and Special Events (DCASE) today announced DCASE fall and holiday programming as Chicago's vital arts scene continues to safely and fully reopen. In-person holiday ...


Gay News

Equality Illinois CEO Brian C. Johnson on new book, 'Our Fair Share'
2021-09-22
In Equality Illinois CEO Brian C. Johnson's new book, Our Fair Share: How One Small Change Can Create a More Equitable American Economy, he posits that receiving a Citizen Dividend will help all U.S. residents achieve ...


Gay News

America250 to host LGBTQ+ Community Conversation Webinar Sept. 23
2021-09-22
--From a press release - Washington, D.C. —America250, the nationwide commemoration of America's 250th anniversary in 2026 led by the U.S. Semiquincentennial Commission, will host its next Community Conversation on Thursday, Sept. 23, at 4 pm ET. Members of the LGBTQ+ ...


Gay News

LGBTQ blood donation discrimination assessed, PULSE shootings cited
2021-09-21
--From a press release - Chicago, Ill. — Last week, Reps. Mike Quigley (IL-05), Val B. Demings (FL-10), Carolyn B. Maloney (NY-12), Adam B. Schiff (CA-28), Barbara Lee (CA-13), and Ritchie Torres (NY-15) received a ...


Gay News

Equality Illinois 'deeply troubled' by investigation into pro-LGBTQ teacher
2021-09-20
Equality Illinois issued a press release stating it is "deeply troubled" after a DuPage County teacher is being investigated for posts about LGBTQ history and racial justice. The videos, which were reposted to Twitter in early ...


Gay News

Chicago Ald. Cappleman attacked
2021-09-19
On the night of Sept. 18, Chicago Ald. James Cappleman was attacked in the Uptown area of the city, The Chicago Tribune reported. Cappleman, in charge of the 46th Ward, is one of five members of ...


Gay News

WORLD Germany's compensation, Lyra McKee, LGBTQ Afghans, tennis player
2021-09-19
Germany has compensated almost 250 people who were prosecuted or investigated under a Nazi-era law criminalizing homosexuality, according to euronews. By September, 317 people had applied for compensation for their ...


Gay News

Patrick J. Kennedy to receive award from Trilogy at virtual gala
2021-09-18
Chicago-based Trilogy Behavioral Healthcare will present its Partner in Recovery Award to The Kennedy Forum founder, mental-health advocate and former Congressman Patrick J. Kennedy as a part of its virtual 50th-anniversary gala on Thursday, Oct. 21. ...


Gay News

Polis marriage marks first same-sex wedding of sitting governor
2021-09-17
On Sept. 15, Colorado Democratic Gov. Jared Polis wed longtime partner Marlon Reis—marking the first same-sex marriage of a sitting U.S. governor, NPR reported. Polis keeps making history. In 2018, Polis became the first openly gay ...


Gay News

Hastert settles sexual-abuse lawsuit
2021-09-16
Days before a trial was set to begin, former U.S. House Speaker Dennis Hastert reached a tentative settlement in a hush-money lawsuit filed by a man whose decades-old sexual-abuse allegations led to the politician's downfall six ...


Gay News

Now, only five of Chicago's 50 aldermen reject automatic pay raises
2021-09-16
Forty-five out of 50 Chicago aldermen have opted to accept a 5.5% pay increase in 2022 that will push the highest paid among them to an annual salary of more than $130,000, according to The Chicago Tribune. ...


 



Copyright © 2021 Windy City Media Group. All rights reserved.
Reprint by permission only. PDFs for back issues are downloadable from
our online archives. Single copies of back issues in print form are
available for $4 per issue, older than one month for $6 if available,
by check to the mailing address listed below.

Return postage must accompany all manuscripts, drawings, and
photographs submitted if they are to be returned, and no
responsibility may be assumed for unsolicited materials.
All rights to letters, art and photos sent to Nightspots
(Chicago GLBT Nightlife News) and Windy City Times (a Chicago
Gay and Lesbian News and Feature Publication) will be treated
as unconditionally assigned for publication purposes and as such,
subject to editing and comment. The opinions expressed by the
columnists, cartoonists, letter writers, and commentators are
their own and do not necessarily reflect the position of Nightspots
(Chicago GLBT Nightlife News) and Windy City Times (a Chicago Gay,
Lesbian, Bisexual and Transegender News and Feature Publication).

The appearance of a name, image or photo of a person or group in
Nightspots (Chicago GLBT Nightlife News) and Windy City Times
(a Chicago Gay, Lesbian, Bisexual and Transgender News and Feature
Publication) does not indicate the sexual orientation of such
individuals or groups. While we encourage readers to support the
advertisers who make this newspaper possible, Nightspots (Chicago
GLBT Nightlife News) and Windy City Times (a Chicago Gay, Lesbian
News and Feature Publication) cannot accept responsibility for
any advertising claims or promotions.

 

 

 

TRENDINGBREAKINGPHOTOS







Sponsor
Sponsor


 



Donate


About WCMG      Contact Us      Online Front  Page      Windy City  Times      Nightspots      OUT! Guide     
Identity      BLACKlines      En La Vida      Archives      Advanced Search     
Windy City Queercast      Queercast Archives     
Press  Releases      Join WCMG  Email List      Email Blast      Blogs     
Upcoming Events      Todays Events      Ongoing Events      Bar Guide      Community Groups      In Memoriam      Outguide Categories      Outguide Advertisers      Search Outguide      Travel      Dining Out      Privacy Policy     

Windy City Media Group publishes Windy City Times,
The Bi-Weekly Voice of the Gay, Lesbian, Bisexual and Trans Community.
5315 N. Clark St. #192, Chicago, IL 60640-2113 • PH (773) 871-7610 • FAX (773) 871-7609.