Telkom webserver hacked

J

Jamie McKane

MyBroadband Journalist
Joined
Mar 2, 2016
Messages
7,000
Reaction score
1,008
Telkom webserver hacked

Attackers breached a webserver hosted on the Telkom network and used it to host a phishing site made to look like the login page for Citibank in the US.

The server in question hosts 784 domains, according to DNSlytics. The domain hijacked for the phishing site is naphotography.co.za.
 
Following MyBroadband’s query, Telkom said it investigated the issue and found that the attack pages were inserted on 3 October in a separate folder on its customer’s site.

“Our Technical team went on to delete the offending folder and webpages. They have further changed the password of the customer’s control panel used to manage the site and will engage the customer to provide new customers details. The main site is fine and shows no issues,” Telkom said.

It said that the attackers probably just brute-forced the website owner’s password, which allowed them to upload the phishing pages to the client’s website.
Click to expand...

So the customer probably had a weak password to begin with. Not sure how this is Telkom's fault?
 
genetic said:
So someone hacks your Gmail account through brute-force or phishing - which clearly indicates a lax password. That's not Gmail's fault.
Click to expand...

No, it would be Telkoms fault because the traffic traversed a Telkom network link somewhere, maybe....
 
So this wasn't on Telkom's core network? Just a server that hosts customer sites? This feels like another clickbait article. Heading sounded like it was one of their core servers that hosts telkom.co.za or something.
 
Jamie McKane said:
Telkom webserver hacked

Attackers breached a webserver hosted on the Telkom network and used it to host a phishing site made to look like the login page for Citibank in the US.

The server in question hosts 784 domains, according to DNSlytics. The domain hijacked for the phishing site is naphotography.co.za.
Click to expand...
@Jamie McKane you are a super moderator. You are also a super idiot
 
ToxicBunny said:
No, it would be Telkoms fault because the traffic traversed a Telkom network link somewhere, maybe....
Click to expand...

This makes no sense. This is the clients fault, no matter how you try to spin it. Telkom shouldn't even be mentioned - they're completely irrelevant in this case.
 
You must log in or register to reply here.
Back
Top
Sign up to the MyBroadband newsletter
X