This is how Anonymous hacked over 200 South African websites

Hackers have defaced hundreds of South African websites hosted with Webafrica.

By - February 12, 2016 Share on LinkedIn
Anonymous

The roughly 200 South African websites recently defaced by an Argentinian hacking group all appear to be hosted on Webafrica’s hosting infrastructure.

[Also read: Anonymous hacks SA government database]

Following the announcement of the hack by @TobitowTHA, techie Obakeng Molebatsi noticed that all of the affected sites were hosted on the the same subnet.

“Sites hacked by #Anonymous group member @TobitowTHA point to 196.220.43.* ..and the ISP is…,” Molebatsi posted.

A lookup of the IP addresses revealed that they all fell within the 196.220.32.0/19 subnet, which is assigned to Webafrica.

It therefore appears that Tobitow found a vulnerability on each of Webafrica’s shared hosting servers he hacked.

“Shared hosting” refers to the practice of hosting multiple sites on a single server, and is a common practice that lets companies offer cheaper web hosting.

Once hackers have successfully exploited a website on a shared server, they may be able to exploit a vulnerability on the server itself to give them access to all the sites hosted on it.

From there, the hacker may perform what is referred to as a mass defacement – replacing all the landing pages of the websites hosted on the server with a message such as the one posted below.

Webafrica’s call centre has confirmed that its servers have been hacked.

According to the call centre, the servers breached are older and contain legacy websites that clients won’t upgrade. This has caused the servers to get outdated and become vulnerable.

OpAfrica

Massive number of South African websites hacked by Anonymous

Anonymous hacks SA government database

ANC Government on Anonymous hack list

Anonymous “taking a long hard look” at South Africa: SAPS hacker

Share your thoughts

Join the conversation

Connect with Us

androidappletwitterfacebookgoogleplusfeednewsletter

Poll

Do you think Brexit will benefit South Africa?

View Results

Loading ... Loading ...

More News

South African ISP suffers massive password leak online

Hacker

The names and passwords of a South African Internet service provider’s customer base have been leaked online.

Why your ISP should never throttle you

Black couple looking at laptop

Most ISPs in South Africa still throttle their clients extensively, leaving their ADSL account useless after they have reached a mythical usage limit set by the ISP.

Naspers profit climbs on Tencent, e-commerce boost

Naspers logo on wall

Tencent and e-commerce businesses have helped lift Naspers’ revenues by 6% to $12.2bn for the financial year ended March 31 2016.

MTN hits back over its white CEO

Robert Rob Shuter MTN CEO

Mobile operator MTN has hit back at claims by the Black Management Forum that its new CEO should have been black, in keeping with the spirit of transformation.

X

Newsletter Subscription


Name
Email *
Enter the following to confirm your subscription *
Captcha image


Free MyBroadband Newsletter
Subscribe
×