Bad Coding = Deleting An Entire Company #DataGone #fridayreads

A man appears to have deleted his entire company with one mistaken piece of code.

By accidentally telling his computer to delete everything in his servers, hosting provider Marco Marsala has seemingly removed all trace of his company and the websites that he looks after for his customers.

Mr Marsala wrote on a forum for server experts called Server Fault that he was now stuck after having accidentally run destructive code on his own computers. But far from advising them how to fix it, most experts informed him that he had just accidentally deleted the data of his company and its clients, and in so doing had probably destroyed his entire company with just one line of code.

The problem command was "rm -rf": a basic piece of code that will delete everything it is told to. The “rm” tells the computer to remove; the r deletes everything within a given directory; and the f stands for “force”, telling the computer to ignore the usual warnings that come when deleting files.

Together, the code deleted everything on the computer, including Mr Masarla’s customers' websites, he wrote. Mr Masarla runs a web hosting company, which looks after the servers and internet connections on which the files for websites are stored.

That piece of code is so famously destructive that it has become a joke within some computing circles.

Normally, that code would wipe out all of the specific parts of the computer that it was pointed at. But because of an error in the way it was written, the code didn’t actually specify anywhere – and so removed everything on the computer.

“I run a small hosting provider with more or less 1535 customers and I use Ansible to automate some operations to be run on all servers,” wrote Marco Marsala. “Last night I accidentally ran, on all servers, a Bash script with a rm -rf {foo}/{bar} with those variables undefined due to a bug in the code above this line.”

Mr Marsala confirmed that the code had even deleted all of the backups that he had taken in case of catastrophe. Because the drives that were backing up the computers were mounted to it, the computer managed to wipe all of those, too.

“All servers got deleted and the offsite backups too because the remote storage was mounted just before by the same script (that is a backup maintenance script).”

Most users agreed that it was unlikely that Mr Marsala would be able to recover any of the data. And as a result his company was almost certainly not going to recover, either.

Mr Marsala’s problem is far from the first time that someone has accidentally destroyed their own system by missing a mistake. 

Cited The Independent

NCT Hit With Data Breach - Over 15,000 Affected

The National Childbirth Trust (NCT) sent a message saying their email addresses, usernames and passwords had been "compromised".

The incident has been reported to police and the UK's data watchdog.

The NCT stressed no other information had been accessed.

A spokesman confirmed 15,085 users were affected and said: "NCT has suffered a data breach which, regrettably, has caused some users of our website to have their registration details compromised.

"These details are limited to their email address, username and an encrypted version of the password that they created to register on the site.

"We stress that no financial or personal details are held as part of this data so no financial or personal details have been accessed.

"We discovered the breach (on Wednesday), upon which we contacted everyone affected advising them of the breach and suggesting that they change their username and passwords."

The charity, based in London's Euston Square, supports hundreds of thousands of new and expectant parents.

In the email to parents chief executive Nick Wilkie said: "While your password is encrypted, as a precaution, I would advise you to change any password as soon as possible for other accounts or registrations that use these details.

"We discovered the breach today, are reporting the matter to the police and Information Commissioner and contacting all who are affected immediately."

Cited BBC News