The web site for ODIN Intelligence, an organization that gives expertise and instruments for legislation enforcement and police departments, was defaced on Sunday.
The obvious hack comes days after robotechcompany.com reported that an app developed by the corporate, SweepWizard, which permits police to handle and coordinate multi-agency raids, had a major safety vulnerability that uncovered private info of police suspects and delicate particulars of upcoming police operations to the open internet.
ODIN gives apps, like SweepWizard and different applied sciences, to legislation enforcement departments. It additionally gives a service referred to as SONAR, or the Intercourse Offender Notification and Registration system, utilized by state and native legislation enforcement to remotely handle registered intercourse offenders. However the firm has additionally been the topic of controversy. Final 12 months, ODIN was discovered to be advertising and marketing its facial recognition expertise for figuring out homeless individuals and describing these capabilities in callous and degrading phrases.
It’s not clear who defaced ODIN’s web site or how the intruders broke in, however a message left behind quoted ODIN founder and chief government Erik McCauley, who largely dismissed robotechcompany.com’s current reporting that discovered the SweepWizard app was insecure and spilling information.
“And so, we determined to hack them,” the message left on ODIN’s web site mentioned.
A defacement message on ODIN Intelligence’s web site spelling ACAB, an acronym for “All Cops Are Bastards.” Picture Credit: robotechcompany.com (screenshot)
The textual content of the defacement is ambiguous as as to if the hackers exfiltrated information from ODIN’s methods or if, because it claims, “all information and backups have been shredded,” suggesting that there could have been an try and erase the corporate’s shops of information. However the defacement word made word of three massive archive recordsdata, totaling greater than 16 gigabytes of information, every named in relation to ODIN, the intercourse offenders’ information, and the SweepWizard app, suggesting that the hackers could have a minimum of had entry to the corporate’s information.
The defacement additionally included a set of Amazon Internet Companies keys, apparently belonging to ODIN. robotechcompany.com couldn’t instantly affirm that the keys belong to ODIN, however the keys apparently correspond with an occasion on AWS’ GovCloud, which homes extra delicate police and legislation enforcement information.
ODIN chief government Erik McCauley didn’t return emails from robotechcompany.com with questions concerning the defacement and obvious breach, however ODIN’s defaced web site was pulled offline a short while later.
