[mapunk]

It looks like this is the same password from the last hack. Did they really not change their passwords?

[infosecslave]

Same mysql server also appeared to accept * as the password for the root user.

[eli]

That doesn't really make any sense. That's not a MySQL default, so you're saying they intentionally set the root user password to '*'? I'm not sure I buy that.

[infosecslave]

They're also running MySQL 3.

[eli]

Be that as it may, I'm pretty sure I've been using MySQL since version 3 and I don't recall '*' ever working as a password.