back to article Own goal as World Cup Wi-Fi passwords spilled in newspaper snap

The Wi-Fi SSID and password for the football World Cup's security centre were exposed – after a photograph of host nation Brazil's federal police brass inadvertently captured the creds written on a white board. The snap appeared in newspaper Correio Braziliense, and showed the head of international cooperation Luiz Cravo Dorea …


This topic is closed for new posts.
  1. Longrod_von_Hugendong

    How many users over the years...

    Have written their password down and post-it note'd to the monitor - seems this trend is set to continue for ever, and advances with technology.

  2. ItsNotMe

    Re: How many users over the years...

    One of my brothers, who recently passed away, went on step better than Post-it Notes on ALL of his computers...he took the time and trouble to use a label maker to neatly create labels with every username and password he used online...and then affixed them to his computers.

    When my other brother, a Sys Admin like myself, found this and showed me what he had done, we both were speechless.

  3. Yet Another Anonymous coward Silver badge

    Re: How many users over the years...

    Sounds like a good idea.

    You are trying to protect your online banking from a hacker on the other side of the world, not a family member looking over your shoulder. So a long complex password written down is better than a short memorable password that you never change.

  4. Jonathan Richards 1

    Re: How many users over the years...

    > a long complex password written down is better...

    Except that if you read your online banking terms and conditions you'll find that writing down your password in this way is forbidden, and you'll be liable for fraudulent losses should they occur.

    I protect my passwords from family and friends, and expect them to protect theirs from me; there seems to be this weird idea floating around that F&F ought to be trusted, which IMHO undermines the correct mindset with respect to front-line security.

  5. Fuzz


    This is why PSK is not suitable for anything other than guest, public or home wifi. Anything more serious should be using certificates with a proper crl in place.

  6. Chairo

    A shining example

    showing that secured premises and cameras don't mix well.

    But given the password quality, I wonder why they even bothered to set one in the first place.

  7. Sandtitz Silver badge
    Thumb Down

    Re: A shining example

    "But given the password quality"

    10 alphanumeric characters could even mean it's a 64-bit WEP key!

  8. Pascal Monett Silver badge

    Even better though

    Now we know how the World Cup creates its passwords ! <nameofcountry><year>.

    A job well done for security, innit ?

  9. ISYS



  10. Khaptain Silver badge

    Cameras in a secure environment

    First question : Why was a picure allowed to be taken within an environment dealing with security.

  11. NogginTheNog

    Re: Cameras in a secure environment

    To demonstrate how high-tech and secure they are - except in this case it did exactly the opposite.

  12. Anonymous Coward
    Anonymous Coward

    Re: Cameras in a secure environment

    Because, management, of a certain type. On the premises of a former employer who shall remain nameless, I once punched in the server room PIN, opened the door, and found myself face to face with the 'Health & Safety' Manager (who was inexplicably in possession of the PIN) along with two bods from an insurance company. He proceeded to complain that cables at the back of the rack were unsafe, and that one of the insurance bods had nearly tripped over them (more on this later...).

    He appeared somewhat perplexed when I pointed out to him that entering the server room without authorisation or accompaniment by IT staff constituted gross misconduct. Not as perplexed as me when a) I discovered that the Insurance bloke had actually 'tripped over' several cables and in one fell swoop taken out a card payment system and b) we proceeded to take the blame for the downtime.

    Unsurprisingly no action was taken against the 'H&S' Manager, or the person who gave him the PIN code for a restricted area. For a certain species of manager, policies are for the peasants, statutes for serfs; that picture is likely the result when such a person heads up a security operation.

  13. Khaptain Silver badge

    Re: Cameras in a secure environment

    I suppose that takes "Reverse Engineering" to a whole new level.

  14. Vector

    Re: Cameras in a secure environment

    I'd say given the nature of the World Cup, and the media attention surrounding it, the real question is:

    What idiot in a security firm(!) thought it would be a good idea to make a billboard out of secured wi-fi credentials?

    If you don't know there are going to be cameras absolutely everywhere at an international sporting event, you have no business trying to secure the event.

  15. Cynical Observer

    Oh b0110c5.

    </enough said>

  16. Andrew Jones 2

    Now we have to wonder how many people had successfully guessed the password before this picture became available......

  17. Terry 6 Silver badge

    If I'd been asked to guess what the p/w to any Worldcup installation might be, that would have been the last I would think of. No one could be that stupid...........!

    Err Well, apparently.......

  18. Jamie Jones Silver badge

    Yeah, sure....

    Yeah, sure you'd all have guessed that password(!)

  19. LDS Silver badge

    Sure, setting up WPA2 Enterprise...

    ... is too much work for such poorly paid people and with so little resources... guess they spent the time scheduled to setup the RADIUS server playing football instead...

    And moreover - shared password = no accountability...

  20. Sanctimonious Prick

    I Don't Get It

    How does 5 represent R in 1337 speak?

  21. Anonymous IV

    Re: I Don't Get It

    It doesn't! That's the high-security feature in the password!

  22. Sebastian A

    He looks about 300% done.

This topic is closed for new posts.

Biting the hand that feeds IT © 1998–2018