This is how Anonymous hacked over 200 South African websites

Hackers have defaced hundreds of South African websites hosted with Webafrica.

By - February 12, 2016 Share on LinkedIn
Anonymous

The roughly 200 South African websites recently defaced by an Argentinian hacking group all appear to be hosted on Webafrica’s hosting infrastructure.

[Also read: Anonymous hacks SA government database]

Following the announcement of the hack by @TobitowTHA, techie Obakeng Molebatsi noticed that all of the affected sites were hosted on the the same subnet.

“Sites hacked by #Anonymous group member @TobitowTHA point to 196.220.43.* ..and the ISP is…,” Molebatsi posted.

A lookup of the IP addresses revealed that they all fell within the 196.220.32.0/19 subnet, which is assigned to Webafrica.

It therefore appears that Tobitow found a vulnerability on each of Webafrica’s shared hosting servers he hacked.

“Shared hosting” refers to the practice of hosting multiple sites on a single server, and is a common practice that lets companies offer cheaper web hosting.

Once hackers have successfully exploited a website on a shared server, they may be able to exploit a vulnerability on the server itself to give them access to all the sites hosted on it.

From there, the hacker may perform what is referred to as a mass defacement – replacing all the landing pages of the websites hosted on the server with a message such as the one posted below.

Webafrica’s call centre has confirmed that its servers have been hacked.

According to the call centre, the servers breached are older and contain legacy websites that clients won’t upgrade. This has caused the servers to get outdated and become vulnerable.

OpAfrica

Massive number of South African websites hacked by Anonymous

Anonymous hacks SA government database

ANC Government on Anonymous hack list

Anonymous “taking a long hard look” at South Africa: SAPS hacker

Share your thoughts

Join the conversation

Connect with Us

androidappletwitterfacebookgoogleplusfeednewsletter

Poll

Do you watch movies at a cinema at least once a month?

View Results

Loading ... Loading ...

More News

Get your new Smart ID card – who qualifies and where to get it

Smart ID in hand

This is who can get their new Smart ID card in South Africa.

Ubuntu 16.04.1 released

Ubuntu

The first point release of the latest long-term support version of Ubuntu is out.

You can talk about sex on radio in South Africa

Lady laying down

The ASA has dismissed a complaint about a radio commercial from online sex shop Matilda’s, with the payoff line: “Let’s talk about sex. Let’s talk about good sex.”

Cat S60 thermal camera smartphone – South African pricing, launch details

Cat S60

Cat has launched its S60 – the world’s first smartphone with an integrated thermal camera – in South Africa.

Free MyBroadband Newsletter
×