by Chester Wisniewski on August 15, 2011

Anonymous continued their crusade against governments and organizations this weekend, attacking the myBART.org website belonging to San Francisco's BART (Bay Area Rapid Transit) system.

They performed a SQL injection (SQLi) attack against the site and were able to extract more than 2,000 records containing names, usernames, passwords (plain text), emails, phone numbers, addresses and zip codes.

They also defaced the website with Guy Fawkes masks, which BART has yet to remove more than four hours later.

...