Hackers who breached South Africa’s companies database say its much worse than anyone knows

  • 📰 mybroadband
  • ⏱ Reading Time:
  • 57 sec. here
  • 2 min. at publisher
  • 📊 Quality Score:
  • News: 26%
  • Publisher: 67%

Belgique Nouvelles Nouvelles

Belgique Dernières Nouvelles,Belgique Actualités

The CIPC tried to cover up the severity of its data breach, the Anonymous attackers told MyBroadband. They also asked for a R1.9-million ransom.

A ransomware gang claiming responsibility for the Companies and Intellectual Property Commission hack says they’ve had access to the agency’s systems since 2021.

The attackers told MyBroadband that they got in using an exploit in a system developed for the CIPC by software development house Sword South Africa. “They tried to cover their tracks when we pointed out the basic security holes. They are reckless with sensitive info,” the group said.As proof of their claims, they provided private information MyBroadband would recognise.

Since the site is still vulnerable and live, we will not disclose any details about this exploit yet.After their initial ransomware attempt in 2021, the attackers said they moved on when it seemed like the CIPC had cut off their access to its systems. Skids is a contraction of “script kiddies” — a derogatory or self-deprecating term used amongst hackers to describe those with limited skills and only use programs or exploits developed by others.“This time we got access to unencrypted card data and didn’t dump it… Why? Because although we want money, we are not after the individuals but the bigger organisations!”“We do not have any affiliations or agenda besides finding entities corporations with embarrassingly poor security.

 

Merci pour votre commentaire. Votre commentaire sera publié après examen.
Nous avons résumé cette actualité afin que vous puissiez la lire rapidement. Si l'actualité vous intéresse, vous pouvez lire le texte intégral ici. Lire la suite:

 /  🏆 11. in BE

Belgique Dernières Nouvelles, Belgique Actualités