SAPS website hacker "Domainer" interviewed

[jes]

SAPS website hacker "Domainer" interviewed

Domainer, the Anonymous hacker behind the release of data from the SAPS website reveals how he breached the site’s security

 

[Dan C]

Hey Domainer, stay away from myBB, I don't want everyone to see my buddy list

 

[gregmcc]

Meh. SQL script kiddie!

 

[Domains.co.za (Wayne)]

The burning question is, how secure are the rest of SAPS / Government sites that hold key information?
We know that some of the Bloemfontein’s municipal websites were done in WordPress and there was a major WordPress DDOS attack a few weeks ago, have they been upgraded yet?

Hmm time will tell

 

[Randux]

if its not intel its marine1

 

[Tns]

i agree with the lack of security, bunch of incompetent fools in charge.

 

[lordnokon]

Arrogant fool, aren't you...

 

[Easter Bunny]

what a d00s.

"look how awesome i am! i can publish thousands of innocent people's info online!"

he is no better than the people he targets.

 

[marine1]

Do you guys think he is South African?

 

[RazedInBlack]

Do you guys think he is South African?

No I don't think so.

 

[magneto]

Do you guys think he is South African?

nope he from the land down under

 

[rrh]

“It also highlighted the fact that SAP’s own duty of care, namely the security of information on its servers is questionable,” Domainer said.

On Wednesday (22 May 2013), Divisional Commissioner of Technology Management Services, Lieutenant General Bonginkosi Ngubane responded to Domainer’s statement, saying that he doesn’t think it’s a fair comment to make.

“There is a commission of inquiry that’s ongoing [into the events at Marikana],” Ngubane said. “I think it’s an unfair statement to judge the police before the commission is finished.”

The Commission on Finger-Pointing hasn't yet decided who will be the fall guy ...

They have, however, issued the edict that in future the SAPs websites will be secure ...

 

[Roadrunner]

I still don't get the whole picture of what really happened at Marikana, and I don't think this hacker gets it either.

What human being (regardless of their job) will stand still and not defend himself if someone is charging at him with weapons in hand with the intention of killing him?

The fight or flight response is a basic human instinct.

 

[medicnick83]

Poor web site design - yes, that we know, so are most of all the .gov web sites!

 

[b@nD]

Message for "Domainer"

I still don't get the whole picture of what really happened at Marikana, and I don't think this hacker gets it either.

TRUE

What human being (regardless of their job) will stand still and not defend himself if someone is charging at him with weapons in hand with the intention of killing him?
The fight or flight response is a basic human instinct.

TO understand what happened -- is happening , means that you need to use a bit of effort -- do some homework -- do some reading

NOT "cracking" ........

So in this country there are some organisations that can make your task a bit easier

PARLIAMENTARY MONITORING GROUP:

Debate on Marikana Lonmin Mine Tragedy

Scratch around there a bit and you may find some answers

( There are of course a number of other places to look )

MOST information that one wants or needs can be obtained quite legally -- it just means asking in the right places.


intention of killing him ?

The problem is not what happened when police were "defending" themselves -- but what happened afterwards where apparently people were killed in cold blood -- by the SAPS.

I would imagine that the bringing to justice of THESE perps is what constitutes the problem.

However we all know that ALL the functions and departments of Government have been irrevocably corrupted and compromised !

 

[LPCPT]

I hope some arrogant developers that insist on using in-line sql code learn from this. SQL injection is the easiest way to hack a database via a login screen. Even a school kid can do this and everything can be googled in about 10 minutes or less.
You can even access paid websites for free if sql injection works on them.

 

[TelkomUseless]

LOL.. SQL injection ... lol

 

[unrealchris]

Seriously!!!!! A SQL injection!!!!! WTF!! How f@#$ing lazy are SAPS? Everybody knows about injections! what the hell is wrong with them!

 

[kaaskop]

TRUE

TO understand what happened -- is happening , means that you need to use a bit of effort -- do some homework -- do some reading

NOT "cracking" ........

So in this country there are some organisations that can make your task a bit easier

PARLIAMENTARY MONITORING GROUP:

Debate on Marikana Lonmin Mine Tragedy

Scratch around there a bit and you may find some answers

( There are of course a number of other places to look )

MOST information that one wants or needs can be obtained quite legally -- it just means asking in the right places.


intention of killing him ?

The problem is not what happened when police were "defending" themselves -- but what happened afterwards where [B]apparently[/B] people were killed in cold blood -- by the SAPS.

I would imagine that the bringing to justice of THESE perps is what constitutes the problem.

However we all know that ALL the functions and departments of Government have been irrevocably corrupted and compromised !

Apparently yea.

Give the police some credit. In this country to be in the police is a very dangerous job. So what would you do if 100 armed men came running towards you?

 

[elvis_presley]

he is no better than the people he targets.

I think he's worse. Whoever wrote the site at some point probably tried to secure the information, and failed. The chap who stole the data purposefully exposed the sensitive details of the users.

The other possibility is that the hacker didn't realise what he was releasing, in which case we have
* SAPS IT too stupid to secure the site
* Hacker too stupid to realise what info he was releasing

So that hacker's just a different kind of stupid.