Script Kiddies

How come some supposedly script kiddies what are still in their teens and still use windows manage to crack into huge international websites?

Is somebody that is actually capable using them as a proxy?

Or are some websites so insecure that can be cracked easily using known and ages cracking suits/methods?

Wtf is going on?

>>1
I believe it's what's known as being a technical genius.

google translate i gues?

Are you referring to lulzsec? There attacks have mostly used SQL injections. And yes most big company websites are not much more secure than anything else.

>>2

Nope. Upon further research apparently the webmasters were really THAT incompetent. SQL injections and simple bruteforcing don't count as technical genius.

>>3

Shitty keyboard actually. Sorry.

>>2,5
A hacked site can only be the result of incompetence or negligence.  When you handle your data correctly, there is no amount of genous that can magically alter the laws of computation to make it break open.

>>6
Even if the site is running Linux?

>>7
And I just mention this because the phrack.org documents some pretty creative linux box abuses.

>you need real hacker OS like Linux to hack and a powerful PC

>hacking consists of mashing commands at console at ludicrous speed

>hackers always neglect hygiene and must be autistic outcasts with weird lifestyles

>all hackers work for the hacker ethic, ignoring power,fame and money just for the sake of art of hacking

>>9-12
EXPERT IMAGEBOARD QUOTING AND BUMPING SKILLS

>>13
3/10

I have a related question. I'm an inexperienced desktop application developer who is try to transition to web development. I'm getting myself acquainted with LAMP (Perl) and the necessarily markup (HTML/CSS) and a bit of JS.

I just realized that I'm very ignorant regarding security measures. Is there some uptodate web archive out there that I can trust to inform me of the latest security holes (server/client side of any type) and how to combat them?

I don't want to put my future users at risk.

>>15
The software you're writing to learn this stuff will never be used by future users for any kind of sensitive data.

>>16
That's what Facebook employees actually thought!

It's like when you fire a gun in a crowd OP. You don't have to be a good shot to hit anyone.

>>15
No there are just generic vulnerabilities you need to know about and learn while developing your web applications e.g. SQL injection, file inclusion, Cross site request forgery. There are good books on this subject, just Google it.