milky71

Posts: 9,128

November 2011 you prefer your men to swallow not spit the sausage

milky71

Posts: 9,128

November 2011 I have no prefernce as long as you clean up afterwards

ToffeeCup

Posts: 3,160

November 2011

Beano said:

....if the club can't even show they're trustworthy/competent enough to keep their own e-mails confidential!!

-----------------

There is no real or valid point in that statement.

As any infosec expert will tell you, the use of passwords is getting to be an issue that will see the end of passwords being used on their own, full stop.

What we have here is not Everton FC failing to protect thier own emails but an employee having his own email account accessed by an unathorised person.

Given the apparantly non official nature of the account that was hacked and the generally commonly held belief that the person in question spent a fair amount of time accessing fan forums to gauge public opinion then I wouldn't be at all surprised if someone on one of the less secure forums, knowing Mr Ross's ip address may have gained access to passwords he'd of used when setting up these accounts.

The re-use of passwords is very much a common error these days with a startling high percentage of people reusing the same password for a varuiatey of online purposes.

But at the end of the day, a common error made by an individual while using a non work based email account is not something that Everton FC can be held accuntable for. Although Everton FC can hold the individual employee accountable for their mistake... and you'd expect that they will.

ToffeeCup

Posts: 3,160

November 2011

tickets11 said:

ToffeeCup said:

Beano said:

....if the club can't even show they're trustworthy/competent enough to keep their own e-mails confidential!!

-----------------

There is no real or valid point in that statement.

As any infosec expert will tell you, the use of passwords is getting to be an issue that will see the end of passwords being used on their own, full stop.

What we have here is not Everton FC failing to protect thier own emails but an employee having his own email account accessed by an unathorised person.

Given the apparantly non official nature of the account that was hacked and the generally commonly held belief that the person in question spent a fair amount of time accessing fan forums to gauge public opinion then I wouldn't be at all surprised if someone on one of the less secure forums, knowing Mr Ross's ip address may have gained access to passwords he'd of used when setting up these accounts.

The re-use of passwords is very much a common error these days with a startling high percentage of people reusing the same password for a varuiatey of online purposes.

But at the end of the day, a common error made by an individual while using a non work based email account is not something that Everton FC can be held accuntable for. Although Everton FC can hold the individual employee accountable for their mistake... and you'd expect that they will.

-----------------

ye right, just like gary cooks email account was supposedly "hacked" and he never sent that email to Onuoha's mother.

but then again this is you were talking about.

-----------------

Are you still in mourning over Fellaini signing a new contract?


In my post to Beano above it makes it clear that an email account, which wasn't an official club emaill account, was accessed and its content distributed over the internet without authourisation.

Only a complete idiot would attempt to compare that to a clubs chief executive sending an email, using his official club email account, to the wrong person and then desperately claiming that it hadn't been him who'd sent it.

But then, you are tickets aren't you.

ToffeeCup

Posts: 3,160

November 2011
Wouldn't surprise me but it could have been any of them.

Although some forum templates store password information elsewhere, for this reason, so I doubt it would be hard for everton to find out which forums would form a short list.