Details describing how someone hacked into Sarah Palin’s Yahoo Mail account emerged on Thursday, and it appears to have been done with little more than social engineering.

Since Tuesday, anonymous posters using a forum on the 4Chan.org Web site have been circulating password-protected zip files containing the contents of the now-deleted e-mail account once belonging to the Republican vice presidential candidate.

Like most Web account services, Yahoo Mail provides an option to reset or recover one’s user name and password. What is unclear is how the account recovery was rerouted from the alternative e-mail address chosen by Palin to a secondary e-mail address.

When Yahoo Mail prompted for Palin’s birthday, one poster said it took only 15 seconds on Wikipedia to answer that question. When it prompted for ZIP code, Wasilla, Ala., has only two ZIP Codes. As for Palin’s personal security question “Where did you meet your spouse?” that did slow the process down. The poster claimed it took several tries but eventually hit upon the correct answer: Wasilla High.

Tee hee.


Update: Inkadentally, the leading suspect in the crack – I wouldn’t call it a hack, especially – is a college student named David Kernell.

He changed Palin’s password to “popcorn”. Whadda you think?




  1. #60 – O’Furniture

    >>Looks like he is going down. 5-12 for this one.

    I doubt it. We all know from Law & Order re-runs that a prosecutor could get a grand jury to indict a ham sandwich.

    This is all smoke and mirrors to put attention on the whistleblower, rather than where it belongs: Why was Palin using unauthorized, clandestine, nonsecure email accounts to conduct state business??

    The kid will have some kind of kangaroo court trial and get a $50 fine, or they’ll dismiss the charges.

    The MSM will continue to follow the story about the kid, and will fail to investigate what Palin was hiding in her under-the-radar email communications.

    After the election, when she’s not news any longer and goes back to her frozen tundra, the whole thing will just go away.


0

Bad Behavior has blocked 5837 access attempts in the last 7 days.