One of Harvard University's websites appeared on Monday to have been hacked, with its contents appearing on the BitTorrent file-sharing network.
A compressed 125MB file claiming to be the database for the website of Harvard's Graduate School of Arts and Sciences is available via the BitTorrent P2P network. The file is listed on The Pirate Bay, a website that indexes torrents, or small information files that coordinate the download of content from other users on BitTorrent.
The website for the Graduate School of Arts and Sciences was offline on Monday.
A note attached to the torrent claimed the file contained a backup of the site - including some contacts files and other files associated with Joomla, an open-source content management system - along with other various bits. It appeared to be legitimate.
The note's writer claims the stunt is intended to demonstrate the insecurity of Harvard's server. The writer also exposed what purport to be usernames and passwords belonging to two of the site's system administrators.
"Stupid people, you don't use a secure password," read a note preceding the sensitive information.
As of Monday afternoon, the compromised file was being distributed by 11 users - known in file-sharing terminology as "seeders" - and was being downloaded by nine "leechers," or those downloading the files.
Harvard's media office was closed on Monday due to a national US holiday.
Find your next job with computerworld UK jobs