The image above shows the deface page stamped by BloodSec Hackers in Globe's four domains:
http://mybusiness.globe.com.ph/
http://payroll.globe-csme.com/
http://duointernational.globe-csme.com/
http://update.globe-csme.com/
The hacking incident happen on Nov. 27, 2014. According to the said hackers, they did it because of globe's poor internet connection service here in the Philippines. This message was injected in their deface page:
“Dear GLOBE, Your service on your internet connection is not worthy what we pay for. Do something or expect the consequence. This is just the beginning. Expect Us!”
Many of GLOBE Internet users are complaining aside from the poor service they are providing, Globe has somewhat limitations on the internet consumption where you can’t really enjoy the nature of real “INTERNET ACCESS” called Data Capping and Throttling.
After the hacking incident, Globe immediately made their maintenance and here's the message they posted:
And Globe's Chief Information Security officer released an official statement regarding to the defacement:
At around 10:00 pm yesterday, November 27, Globe Telecom detected a defacement in four Globe websites hosted by a third party vendor Movent. All four websites (mybusiness.globe.com.ph, duo.globe.com.ph, payroll.globe.csme.com and update.globe-csme.com) have been taken down immediately so we can conduct the appropriate security checks.
"The server where the four websites are hosted is managed by a third party partner and outside of the Globe Corporate and Enterprise Network, where appropriate preventive and detective controls are in place. The attack is isolated on their end and was brought about by an unpatched vulnerability which is currently being addressed. Rest assured, our security incident response teams are currently investigating and conducting forensics in various areas to make sure that the incident is properly managed," said Globe Chief Information Security Officer Anton Bonifacio.
Globe assures its customers that no critical customer data have been compromised as these information are not stored in the affected websites. The said websites are used for advertising and marketing purposes only and are not connected to any of the private internal customer systems. Globe also said that its own Globe-hosted websites were not compromised.
Here is the Pinoy Hacktivist's official facebook page:
https://www.facebook.com/BloodSecHacker.gov
Source: http://www.coorms.com/
0 comments:
Post a Comment