Fans of the hacker series "Mr. Robot" break the official site

Last year, the first season of the series “ Mr. Robot ” ( Mr.Robot ), which was received with great enthusiasm by the geeks audience, was released. They say that such films have not been released for a long time, which so well convey the everyday life of hacking and computer security, and even some technical shoals can be forgiven. The style of the film is similar to "Fight Club", in fact, the motto of the series seems to hint at it. The rating on IMDb 8.8 also speaks for itself (after the first series there were generally 9.4).



As stated in the description, “Mr. Robot” is the story of a young programmer, Elliot, who suffers from a dissocial personality disorder, to put it simply, sociopathy. He chose the profession of a hacker and quickly finds himself in the very place where the interests of his employer - a cybersecurity company - and underground organizations that are trying to recruit him intersect.



A very specific community of fans has formed around the film with such a plot. And on May 10, the USA Network broadcaster announced the second season of the series and opened a new website in the form of a JavaScript text console that simulates Linux with the GRUB bootloader message.

')

Thousands of fans of the series immediately uncovered their pentesting tools and began to look for vulnerabilities. Find a bug has become a matter of honor.



The first about a minor XSS vulnerability was reported by a respectable hacker under the nickname Zemnmez. He honestly sent information to NBC Universal (the parent company for the USA Network) - and the vulnerability was eliminated after a few hours.





^{Code snippet on Mr.Robot website}



However, the news about the opening of the site quickly spread among hackers, and information about a closed vulnerability only provoke them.



On May 13, another hacker Corenumb revealed information about the possibility of SQL injection in the form of registering email addresses that the PHP script processes, this was more serious.



The vulnerability allows you to execute arbitrary SQL commands in a database that stores email addresses. Corenumb explored the bug using the SQLmap pentesting tool .



The USA Network company fixed this bug too. Pentesting site continues.



Well, and the second season of the series “Mr. Robot” starts on July 13, which should please all fans. Wait is not long.



Season Two Trailer





Fuck The System.