Branchoria UFO Hackers UFO Hackers

The hacking cases, UFO claims, court battles, and evidence gaps behind a modern myth.

Within Remote Tools

The Password Mistake That Opened Doors

McKinnon's case shows how blank or weak Windows administrator passwords could make sensitive systems reachable without exotic exploits.

On this page

  • Why local administrator accounts mattered
  • How repeated machine images spread the weakness
  • Why easy entry still counted as serious intrusion
Preview for The Password Mistake That Opened Doors

Introduction

One of the most important details in the Gary McKinnon case is also one of the least dramatic: many of the systems he encountered were reportedly protected by weak or even blank administrator passwords. Rather than relying on sophisticated software exploits, McKinnon repeatedly described a process of searching for poorly secured Windows machines and testing whether administrative accounts had been left without effective password protection. In the context of early-2000s network administration, that simple mistake could provide full control over a computer. [Future Intelligence+2The Guardian]futureintelligence.co.ukFuture Intelligence Gary Mc Kinnon was unluckyHe's not even a very good hacker18 Oct 2012 — How he would search for blank passwords and then once inside the US computers, install a re…

Blank Passwords illustration 1 For understanding remote administration tools in the McKinnon story, blank passwords matter because they were often the first opening. Remote-control software and later actions depended on obtaining administrator-level access. If an administrator account had no password, or a trivial one, the barrier to entry could be surprisingly low even on sensitive systems. [UK Parliament+2Future Intelligence]publications.parliament.ukmckinn 1UK ParliamentMckinnon V Government of The United States of America…30 Jul 2008 — Having gained access to those accounts he installed u…

Blank Passwords illustration 3

Why Local Administrator Accounts Mattered

In Windows networks of the period, the local Administrator account was the key to the machine. It typically possessed the highest privileges available on that computer, allowing software installation, account management, file access, and configuration changes. Once someone obtained those credentials, they effectively became the system administrator. [GIAC Certifications]giac.orgweak passwords plus null session windows 2000 exploitGIAC CertificationsWeak Passwords + Null Session = Windows 2000 ExploitApril 9, 2026 — 16 Sept 2002 — This exploit is an easily guessable…Published: April 9, 2026

Accounts with that level of authority were intended for technicians and support staff, but operational convenience often encouraged poor password practices. Contemporary security research repeatedly identified weak, default, unchanged, or blank administrator passwords as a common source of compromise on Windows NT and Windows 2000 systems. Attackers did not necessarily need a software flaw if the front door had been left unlocked. [GIAC Certifications+2dc.etsu.edu]giac.orgweak passwords plus null session windows 2000 exploitGIAC CertificationsWeak Passwords + Null Session = Windows 2000 ExploitApril 9, 2026 — 16 Sept 2002 — This exploit is an easily guessable…Published: April 9, 2026

Accounts of McKinnon’s activities consistently emphasise this point. He and later commentators described a method centred on finding systems where administrator passwords had been left blank. One contemporary summary stated that he scanned military systems looking for administrator accounts whose passwords had not been set, claiming that a notable number of machines met that condition. [WikiLeaks]wikileaks.orgHacking Team24 Apr 2006 — Essentially, Mr McKinnon scanned the US military computer systems for network administrator accounts w…

The significance was not merely that a password was weak. An administrator account granted the exact level of access needed to install remote administration software, browse files, create or remove users, and move further through a network. In practical terms, the password mistake transformed a protected system into one that behaved as though the user already belonged there. [UK Parliament]publications.parliament.ukmckinn 1UK ParliamentMckinnon V Government of The United States of America…30 Jul 2008 — Having gained access to those accounts he installed u…

The Man Who Hacked the U.S. Government

Channel: Newsthink · Views: 816.8K · Uploaded: March 2024 · Length: 18 minutes

Open on YouTube

How Repeated Machine Images Spread the Weakness

A recurring problem in large organisations during the early 2000s was the widespread use of standard machine builds. Administrators often created a master system image and deployed it repeatedly across many computers to simplify maintenance and reduce setup time.

That approach improved efficiency but could also spread security weaknesses at scale. If a local administrator account on the master image used a weak password, failed to enforce password changes, or was left blank, the same weakness could appear on dozens or hundreds of machines. Security researchers and practitioners later identified this pattern as one reason why local administrator credentials became a frequent attack target in Windows environments. [TECHCOMMUNITY.MICROSOFT.COM]techcommunity.microsoft.comLocal Administrator Password Solution (LAPSNo need to put a service account into the domain admins to manage passwords, the password…Read more…

The McKinnon allegations fit this broader environment. Reports described him scanning large numbers of systems and finding the same type of weakness repeatedly rather than defeating a different protection mechanism on every machine. The efficiency of the method depended on predictable administrative practices across multiple computers. [Future Intelligence+2The Guardian]futureintelligence.co.ukFuture Intelligence Gary Mc Kinnon was unluckyHe's not even a very good hacker18 Oct 2012 — How he would search for blank passwords and then once inside the US computers, install a re…

This helps explain why a single technique could allegedly be applied across numerous military and NASA systems over an extended period. The issue was not necessarily a single catastrophic flaw in one computer. It was the repetition of similar administrative weaknesses across many machines connected to larger networks. [Department of Justice+2Department of Justice]justice.govDepartment of JusticeLondon, England Hacker Indicted Under Computer Fraud…Gary McKinnon, of London, England, was indicted in Alexandri…

Gary McKinnon wins extradition battle

Channel: The Telegraph · Views: 8.0K · Uploaded: October 2012 · Length: 2 minutes 44 seconds

Open on YouTube

Blank Passwords illustration 2

Why Easy Entry Still Counted as Serious Intrusion

A common misunderstanding is that an intrusion becomes less significant if it exploits poor passwords rather than advanced technical vulnerabilities. Security law and security practice generally do not make that distinction.

The central issue is authorisation. A system may be poorly protected, but gaining access without permission remains unauthorised access. Court materials in the McKinnon case focused on the alleged access itself and on what was done after access was obtained, including installing remote administration software and altering systems. [Department of Justice+2UK Parliament]justice.govDepartment of Justice IndictmentDepartment of JusticeIndictmentJanuary 24, 2012 — **. GARY MCKINNON. Defendant. } Criminal No. } 18 U.S.C. § 1030. } Fraud and… Remot…Published: January 24, 2012

This distinction is important because blank passwords can create the false impression that no real barrier existed. In reality, those accounts were intended only for authorised administrators. Entering through a neglected password was still entering a restricted system. The weakness reduced the technical challenge but did not change the legal or operational significance of the intrusion. [UK Parliament+2Pinsent Masons]publications.parliament.ukmckinn 1UK ParliamentMckinnon V Government of The United States of America…30 Jul 2008 — Having gained access to those accounts he installed u…

The Gary McKinnon case became famous because of UFO-related claims and the scale of the alleged access, yet one of its enduring lessons is much simpler. Before remote-control software, password harvesting, or broader network exploration, there was often a basic configuration error: administrator accounts that were not adequately protected. That mundane weakness illustrates how major security incidents can begin with an ordinary administrative oversight rather than an extraordinary technical breakthrough. [Future Intelligence+2The Guardian]futureintelligence.co.ukFuture Intelligence Gary Mc Kinnon was unluckyHe's not even a very good hacker18 Oct 2012 — How he would search for blank passwords and then once inside the US computers, install a re…

UK hacker to learn extradition fate

Channel: Al Jazeera English · Views: 20.8K · Uploaded: October 2012 · Length: 2 minutes 6 seconds

Open on YouTube

Amazon book picks

Further Reading

Books and field guides related to The Password Mistake That Opened Doors. Use these as the next step if you want deeper reading beyond the article.

Browse more on Amazon: Hacking Exposed Ghost in the Wires The Art of Deception

As an Amazon Associate I earn from qualifying purchases.

eBay marketplace picks

Marketplace Samples

Example marketplace items related to this page. Use the search link to explore similar finds on eBay.

Using USA
Browse more on eBay.co.uk

Example items shown for inspiration; availability and pricing can change. Branchoria may earn a commission if you purchase through outbound eBay links.

Endnotes

  1. Source: wikileaks.org
    Link: https://www.wikileaks.org/hackingteam/emails/emailid/985036
    Source snippet

    Hacking Team24 Apr 2006 — Essentially, Mr McKinnon scanned the US military computer systems for network administrator accounts w...

  2. Source: publications.parliament.uk
    Title: mckinn 1
    Link: https://publications.parliament.uk/pa/ld200708/ldjudgmt/jd080730/mckinn-1.htm
    Source snippet

    UK ParliamentMckinnon V Government of The United States of America...30 Jul 2008 — Having gained access to those accounts he installed u...

  3. Source: giac.org
    Title: [weak passwords]({{ ‘weak-passwords/’ | relative_url }}) plus null session windows 2000 exploit
    Link: https://www.giac.org/paper/gcih/345/weak-passwords-plus-null-session-windows-2000-exploit/101851
    Source snippet

    GIAC CertificationsWeak Passwords + Null Session = Windows 2000 ExploitApril 9, 2026 — 16 Sept 2002 — This exploit is an easily guessable...

    Published: April 9, 2026

  4. Source: giac.org
    Title: weak password windows rootkit recipe trouble
    Link: https://www.giac.org/paper/gcih/481/weak-password-windows-rootkit-recipe-trouble/102595
    Source snippet

    GIAC CertificationsA Weak Password And A Windows Rootkit1 May 1998 — For administrators and end users there are four main ways to mitigat...

    Published: May 1998

  5. Source: dc.etsu.edu
    Link: https://dc.etsu.edu/cgi/viewcontent.cgi?article=2015&context=etd
    Source snippet

    When a password is blank or unchanged, an attacker can gain...

  6. Source: techcommunity.microsoft.com
    Title: Local Administrator Password Solution (LAPS)
    Link: https://techcommunity.microsoft.com/blog/coreinfrastructureandsecurityblog/local-administrator-password-solution-laps-implementation-hints-and-security-ner/258296
    Source snippet

    No need to put a service account into the domain admins to manage passwords, the password...Read more...

  7. Source: justice.gov
    Link: https://www.justice.gov/archive/criminal/cybercrime/press-releases/2002/mckinnonIndict.htm
    Source snippet

    Department of JusticeLondon, England Hacker Indicted Under Computer Fraud...Gary McKinnon, of London, England, was indicted in Alexandri...

  8. Source: justice.gov
    Title: Department of Justice British National Charged with Hacking Into N.J
    Link: https://www.justice.gov/archive/criminal/cybercrime/press-releases/2002/mckinnonIndict2.htm
    Source snippet

    seven-count Virginia [Indictment]({{ 'indictment/' | relative_url }}) charges McKinnon for [intrusions]({{ 'intrusions/' | relative_url }}) into 92 computer systems belonging to the U.S. Army, Navy, A...

  9. Source: justice.gov
    Title: Department of Justice Indictment
    Link: https://www.justice.gov/archive/usao/nj/Press/files/pdffiles/Older/edva_mckinnon_indictment.pdf
    Source snippet

    Department of JusticeIndictmentJanuary 24, 2012 — **. GARY MCKINNON. Defendant. } Criminal No. } 18 U.S.C. § 1030. } Fraud and... Remot...

    Published: January 24, 2012

  10. Source: time.com
    Title: hack attack 2
    Link: https://time.com/archive/6943962/hack-attack-2/
    Source snippet

    Hack Attack30 Jul 2008 — The July 30 decision by Britain's Court of Appeal to allow the extradition of alleged cyber-hacker Gary McKinnon...

  11. Source: futureintelligence.co.uk
    Title: Future Intelligence Gary [Mc Kinnon]({{ ‘mc-kinnon/’ | relative_url }}) was unlucky
    Link: https://www.futureintelligence.co.uk/2012/10/18/gary-mckinnon-was-unlucky-hes-not-even-a-good-hacker/
    Source snippet

    He's not even a very good hacker18 Oct 2012 — How he would search for blank passwords and then once inside the US computers, install a re...

  12. Source: theguardian.com
    Link: https://www.theguardian.com/uk/2007/apr/03/politics.usa
    Source snippet

    Hacker's progress: how McKinnon pierced Pentagon security3 Apr 2007 — With such glaring errors leaving the backdoor wide open to intruder...

  13. Source: pinsentmasons.com
    Title: pentagon hacker mckinnon fights extradition
    Link: https://www.pinsentmasons.com/out-law/news/pentagon-hacker-mckinnon-fights-extradition
    Source snippet

    'Pentagon hacker' McKinnon fights extradition28 Jul 2005 — McKinnon is accused of scanning networks for vulnerabilities and extracting ad...

  14. Source: Wikipedia
    Title: Gary Mc Kinnon
    Link: https://en.wikipedia.org/wiki/Gary_McKinnon
    Source snippet

    Gary McKinnonThe US government accused McKinnon of hacking into 97 United States military and NASA computers over a 13-month period be...

  15. Source: theguardian.com
    Link: https://www.theguardian.com/theguardian/2005/jul/09/weekend7.weekend2
    Source snippet

    Game over | Gary McKinnon9 Jul 2005 — He downloaded a program that searched for computers and pinpointed administrator user names that ha...

  16. Source: theguardian.com
    Link: https://www.theguardian.com/technology/2005/jul/27/hacking.internetcrime
    Source snippet

    Hacker 'left note on US army computer' | Hacking27 Jul 2005 — Mr McKinnon, 39, faces extradition to the US over claims he accessed dozens...

  17. Source: swisskyrepo.github.io
    Link: https://swisskyrepo.github.io/InternalAllTheThings/redteam/escalation/windows-privilege-escalation/
    Source snippet

    Privilege Escalation - Internal All The Things10 Oct 2010 — PowerShell script to quickly find missing software patches for local privileg...

Additional References

  1. Source: medium.com
    Link: https://medium.com/%40offsecdeer/finding-weak-ad-computer-passwords-e3dc1ed220df
    Source snippet

    Finding Weak AD Computer Passwords | by Giulio PierantoniWeak user passwords are one of the easiest and most common ways attackers compro...

  2. Source: reddit.com
    Link: https://www.reddit.com/r/hacking/comments/1etqs6b/how_gary_mckinnon_did_what_he_did/

  3. Source: welivesecurity.com
    Title: gary mckinnon reveals detail on nasa data breach and extraterrestrial life
    Link: https://www.welivesecurity.com/2015/12/08/gary-mckinnon-reveals-detail-on-nasa-data-breach-and-extraterrestrial-life/
    Source snippet

    Gary McKinnon reveals detail on NASA data breach and '...8 Dec 2015 — IT expert Gary McKinnon candidly revealed detail on his NASA data...

  4. Source: independent.co.uk
    Title: gary mckinnon inside the head of a super hacker 6095677
    Link: https://www.independent.co.uk/news/science/gary-mckinnon-inside-the-head-of-a-super-hacker-6095677.html
    Source snippet

    Gary McKinnon: Inside the head of a super hacker12 Jul 2006 — The 40-year-old is accused of repeatedly hacking into dozens of computers b...

  5. Source: instagram.com
    Title: Gary Mc Kinnon, a British hacker, accessed multiple U.S
    Link: https://www.instagram.com/reel/DTveyiaANbn/
    Source snippet

    Gary McKinnon, a Scottish hacker, gained unauthorised access to dozens of U.S. military and NASA systems between February 2001 and March...

    Published: February 2001

  6. Source: instagram.com
    Link: https://www.instagram.com/p/DXK5kOhCK3V/?img_index=2
    Source snippet

    Gary McKinnon broke into 97 US military systems hunting for UFO evidence.Read more...

  7. Source: reddit.com
    Title: what was working in it like in the early 2000s
    Link: https://www.reddit.com/r/sysadmin/comments/14g9i45/what_was_working_in_it_like_in_the_early_2000s/
    Source snippet

    ?: r/sysadminInterested in your day to day sysadmin duties. Was it easier? Harder? The same, just different kit? How was Windows Server...

  8. Source: reddit.com
    Link: https://www.reddit.com/r/UFOs/comments/t0imdw/hi_im_gary_mckinnon_i_was_in_the_news_for_a/
    Source snippet

    Hi, i'm Gary Mckinnon. I was in the news for a decade after...I was arrested in March 2002 for 'hacking' into various.gov/.mil networks...

    Published: March 2002

  9. Source: redhotcyber.com
    Title: famous hackers the story of gary mckinnon
    Link: https://www.redhotcyber.com/en/post/famous-hackers-the-story-of-gary-mckinnon/
    Source snippet

    Famous Hackers: The Story of Gary McKinnon.1 Jul 2025 — Gary McKinnon, single-handedly scanned thousands of US government machines and di...

  10. Source: academia.edu
    Title: Hacking Exposed Windows 2003 Chapter 5
    Link: https://www.academia.edu/4903662/Hacking_Exposed_Windows_2003_Chapter_5
    Source snippet

    (PDF) Hacking Exposed- Windows 2003 Chapter 511 Aug 2025 — The chapter highlights the default settings and recommended best practices for...

Topic Tree

Follow this branch

Parent topic

Remote Tools The Tools Behind Early UFO Hacking

Related pages 5