Dept of Transport calls eNaTIS hacking ‘laughable’

In my experience, arrogance is severely punished.

Joe Public doesn't care how "fruitless" the hacks are. Hacks, whatever fruit it bares, makes Joe Public concerned and dents his confidence.

Good ol' Government, always brushing aside; weather it be minor website hacks or an increase in murders.
 
Please prove to me that nothing was compromised.
At this point, the proof that it was hacked is undeniable.
 
My take on the "hack" (from my own website experience) and the message posted this is a php cross-server scripting vulnerability.

Even Nu-Metro was hacked recently by the same group (and that website is hosted in SA)

I do not believe that these "hackers" actually can hack past other than replacing certain home page files

But in the end, I can understand a small user being cracked but a large government site should not be exposed to the same vulnerabilities of "open source hosting" They have far greater sums of cash to spend than Joe Public.
 
What services were there on the enatis.com site if it didn't have to link to the database for information? Seems like it might have been a useless site anyway. Anybody used it before? Was there any private information listed that could only come from a database?
 
Should we get our money back, should we have to rebook

I know this is a bit long, but here goes, on Tuesday, my sister had a drivers licence test booked, paid for, confirmed, reference number, all that jazz, she arrives at the station and is told the call centre deleted the test, the manager said there is nothing he can do about it. All day the call centre and the station passed the buck from one to the other.

I have a drivers test booked, confirmed etc for Wednesday at the same station, I get an sms from the call centre saying my test slot has expired due to no confirmation, make many calls on tuesday to call centre, they are down most of the day, promised to call me back, still waiting. On Wednesday morning the station tries to get hold of me to tell me my test is on, i speak to someone at 8:50, she says be here in half an hour or you have to rebook.

I ask you
 
The eNaTIS system can only be accessed by work stations that are authorised to access the system

But the hackers don't need permission, that is what makes them hackers, innit?:confused:
 
Tasima eNatis Feedback

I tried to get feedback from Tasima (runs eNatis I think). What a mess.

I got through to the webmaster…he simply said that it is a normal website, and that many websites get hacked every day. He then said that he can not answer our questions, and that I should contact Johan Vorster.

Apparently only Johan can answer our questions (like what vulnerabilities were present that allowed the hackers to deface the site, why it is hosted internationally etc), but he is in Italy until the end of next week. According to the webmaster Johan has remote access and he is hence in charge of the site etc (BTW: Johan is the CEO).

When I tried to call Tasima again but this time they simply did not answer their phones.
 
From their latest press release:

News24 said:
The department was "disappointed" that people would attack a system meant to be useful to the public, he said.

BWAHAHA, HAHAHAHHAHAHAHAHA, HAHAHAHAHAHAHA
ah damn, I just pissed myself :(
 
Well, I have to agree that hackers will probably see it as a challenge, and if hackers can get into NASA and other American agencies, these people are stupid to think they are unhackable. pffft.
 
yeah - thats a classic statement! The department is even more inept than i thought!! How can they thing think for a second that because its used by the public it won't be hacked! Clearly run by morons!!!
 
Top
Sign up to the MyBroadband newsletter