Tracing mtn ip after hack

[printcorrex]

Our site was hacked & defaced
We need proof as to who it was
On gmail we traced the ip adress - and whois shows its owned by mtn business solutions
Who can we contact to find the owner
Multiple attempts were made before actual hack was succesful - all mtn ips

 

[ISP cash cow]

City of Johannesburg, is that you?

 

[zizebra]

Thats like looking for needle in a haystack. That IP could easily be used by mobile user or even be dhcp based IP. If dns who is shows that the IP is simply owned by MTN, Then i wish you goodluck. May be MTN dudes are here to assist.

Worse still the MTN client might have been a victim too

 

[Park@82]

Thats like looking for needle in a haystack. That IP could easily be used by mobile user or even be dhcp based IP. If dns who is shows that the IP is simply owned by MTN, Then i wish you goodluck. May be MTN dudes are here to assist.

Worse still the MTN client might have been a victim too

Wouldn't the IP, phone number & IMEI number have been logged along with the date & time? But in any case MTN wont just had it over to any one - dont think it would be legal.

 

[froot]

Our site was hacked & defaced
We need proof as to who it was
On gmail we traced the ip adress - and whois shows its owned by mtn business solutions
Who can we contact to find the owner
Multiple attempts were made before actual hack was succesful - all mtn ips

Open a case at the police, send the case number through to MTN's abuse department.

 

[zizebra]

This may be your best shot.

 

[bruce_the_loon]

Our site was hacked & defaced
We need proof as to who it was
On gmail we traced the ip adress - and whois shows its owned by mtn business solutions
Who can we contact to find the owner
Multiple attempts were made before actual hack was succesful - all mtn ips

You will have to file a case with the SAPS and request they issue a warrant for MTN to release the data. MTN will have the data but cannot release it without the SAPS warrants.

 

[Venomous]

You will have to file a case with the SAPS and request they issue a warrant for MTN to release the data. MTN will have the data but cannot release it without the SAPS warrants.

^^ This.

There are other ways and means of finding it, all equally legal to the hack. If you want a case against the hacker, you need to follow the legal way.

 

[House]

If you have the proper logs in place, you will need the exact IP Address, time and date stamp (to the second) and then open a criminal charge with the SAPS. Attach the logs, along with the proof that the site was hacked. Also, the logs should indicate the actions committed by the IP address.

A mere IP address will not cut it.

Once you have opened a criminal charge, the police will apply for a Section 205 subpoena and get the information from MTN. Depending on the information received, they will then be able to identify the location / device it was committed from and take the investigation from there.

Very difficult to link a specific person if the information from MTN links to a company or an Internet cafe or premises where more than one person has access to the Internet connection. Even more difficult if an unsecure Wifi connection was used.

 

[mercenary]

could also be an automated script hacking from an already hacked device, ie mtn server or home machine connected via mtn

 

[MagicDude4Eva]

Good luck with getting a 205 subpoena and eventually getting information from the ISP. In a fraud case from last year we requested a 205 (which took 6 months to get) only to then find out that the ISP does not keep logs that long.

I suggest that you follow the criminal charge and at the same time inform the ISP that you are applying for a 205 and that they should keep all necessary logs/activities for the IP in question. CCU is normally better equipped to deal with this than your regular SAPS station and I doubt that CCU will deal with it unless you can proof that substantial damage (and financial loss) was incurred.