Anonymous hacks SA government database

Doing reverse DNS on a number of the websites shows they all appear to be on the same set of hosts at Web Africa.

Someone's going to be in heap of trouble there.

If I were Web Africa, I would be locking those hosts down right about now.
 
They are hashed. All the best in trying to reverse the algorithm, though.
Ermm, MD5? Rainbow tables if you want to be fancy pants, Google if you wish to check and search all the rainbow tables out there ...

What's clear is the security policies are either went over the target audience's or it wasn't distributed. As for enforcement ... what is that? Clearly not done. But then considering we are sitting in the virtual stone age in cyber terms at government level, it was to be expected. Guess the FPB will not ban Anonymous sine that's teh answer to X. :whistle:

Buys popcorn - plenty of popcorn.
 
Doing reverse DNS on a number of the websites shows they all appear to be on the same set of hosts at Web Africa.

Someone's going to be in heap of trouble there.

If I were Web Africa, I would be locking those hosts down right about now.

As of 16:14
ERROR
The requested URL could not be retrieved

And as you said, WebAfrica will have some work this weekend.
 
The only possible benefit from this would be better / increased govt cyber security. I can't see these hacks having any other impact on any African government's policies. Those in power have grown thick skins to any criticism.
 
The only possible benefit from this would be better / increased govt cyber security. I can't see these hacks having any other impact on any African government's policies. Those in power have grown thick skins to any criticism.

More tenders coming.

/starts cyber security business
 
Please. Having seen some of the systems used by government departments - that wasn't a hack.
More likely the guy manually changed the url.

d0n7 p47r0n153 l33t 5k1ll5!

If big corporates with huge budgets, large IT teams and strict ITIL, Cobit and compliance rules can not keep it going, why government? Some examples:
- Two years ago half of Sita was running an internal botnet.
- For the longest time the SARS cage at IS had the most obvious passcode.
- With one hosting company you could push a network cable through the back of their rack and you DHCPed onto the network.
- One hosting company did not check customer credentials and a perp gained access to a cage and walked out with 3 servers (dumbass was arrested shortly afterwards, as he was on CCTV and left his valid contact details in the access log book)
- One financial institution didn't realise that their admins had bitcoin miners installed on their servers (and their direct competitor had NZBDrone and Sonarr running on their transactional servers)
- A payment gateway last year accidentally had a MySQL dump accidentally indexed by Google (as well as their my.cnf - with the MySQL server being open to the internet).
 
I'm surprised that some of these email addresses were used to register Facebook accounts with the same passwords... :whistle: :twisted:

Actually I'm not surprised!
 
The only possible benefit from this would be better / increased govt cyber security. I can't see these hacks having any other impact on any African government's policies. Those in power have grown thick skins to any criticism.

^
 
d0n7 p47r0n153 l33t 5k1ll5!

If big corporates with huge budgets, large IT teams and strict ITIL, Cobit and compliance rules can not keep it going, why government? Some examples:
- Two years ago half of Sita was running an internal botnet.
- For the longest time the SARS cage at IS had the most obvious passcode.
- With one hosting company you could push a network cable through the back of their rack and you DHCPed onto the network.
- One hosting company did not check customer credentials and a perp gained access to a cage and walked out with 3 servers (dumbass was arrested shortly afterwards, as he was on CCTV and left his valid contact details in the access log book)
- One financial institution didn't realise that their admins had bitcoin miners installed on their servers (and their direct competitor had NZBDrone and Sonarr running on their transactional servers)
- A payment gateway last year accidentally had a MySQL dump accidentally indexed by Google (as well as their my.cnf - with the MySQL server being open to the internet).

Why you no say names?
 


If youve worked in these organisations you often wonder how it is that they dont get hit more often.
Ive often cringed at the passwords I've been given or where I've been allowed to stroll around.

But these days you can just dump a usb stick in the foyer and someone will plug it into their pc inside.
 
I would be more impressed if Zumba and his thieving cronies bank accounts were hacked and the proceeds donated to battling charities throughout SA.
 
If youve worked in these organisations you often wonder how it is that they dont get hit more often.
Ive often cringed at the passwords I've been given or where I've been allowed to stroll around.

But these days you can just dump a usb stick in the foyer and someone will plug it into their pc inside.

This was the exploit with one of the payment gateway companies. Someone left an envelope with an USB stick and a message to hand it over to IT security immediately. Running Windows without antivirus checking external storage just made things so much worse from then on.
 
d0n7 p47r0n153 l33t 5k1ll5!

If big corporates with huge budgets, large IT teams and strict ITIL, Cobit and compliance rules can not keep it going, why government? Some examples:
- Two years ago half of Sita was running an internal botnet.
- For the longest time the SARS cage at IS had the most obvious passcode.
- With one hosting company you could push a network cable through the back of their rack and you DHCPed onto the network.
- One hosting company did not check customer credentials and a perp gained access to a cage and walked out with 3 servers (dumbass was arrested shortly afterwards, as he was on CCTV and left his valid contact details in the access log book)
- One financial institution didn't realise that their admins had bitcoin miners installed on their servers (and their direct competitor had NZBDrone and Sonarr running on their transactional servers)
- A payment gateway last year accidentally had a MySQL dump accidentally indexed by Google (as well as their my.cnf - with the MySQL server being open to the internet).

I have to concur. I work for a client that's a multinational company, where the SQL password have the word "Password" in it, where the one guy use his own personal account on some workstations because why not etc.

It's the same with banks. I've seen first hand how a certain bank have a "test" user in their live core bank system with full access to most things.
 
Would be great if MTN could reply to ISPs with acknowledgement or confirmation as they host the local ns1 DNS and CDN for numerous services which are all down on ISP default DNS, not as a result of the ISP but because the DNS is down on MTN's side. Working on Google DNS so isolated to MTN Gallo Manor DC. Reconfiguration of DNS for all services hosted there can be done if MTN know this is a serious issue, and routing can be updated on our side. But so far not even a smidgen of communication.

FYI international sites with local presence hosting at MTN are currently affected, and common denominators are Fastly, as well as ns1 DNS and CDN services like Imgur.com. Switch to Google DNS to get to the sites so long...
 
Top
Sign up to the MyBroadband newsletter
X