Connect with us

hacking

FUTA Website Hacked By Indonesian Hacking Group

Published

on

FUTA Website Hacked By Indonesian Hacking Group 1
FUTA Website Hacked By Indonesian Hacking Group 2
A quick check through FUTA’s website  (www.futa.edu.ng) shows that the website has been defaced by an Indonesian hacking group (Indonesian Code Party) which has been linked to the hack of several websites on the Internet.

Possible Cause Of The Hack

1.FUTA’s website  runs on  just PHP and SQL on an Apache Server. This can easily be exploited by any hacker.

2.Their ICT Team Failed To Apply Patches and Updates To The School Website

Many webmasters know how vulnerable websites based on PHP and SQL can be.I must say that It’s really appalling for a Federal University to use an outdated and buggy CMS.

My personal advice is FUTA PLEASE MOVE YOUR WEBSITE TO RUN ON JOOMLA.

I The successful defacement and hack of the FUTA website depends on the exploit used by these hackers . It does not necessary mean that the hackers connected to the database directly although I’m not ruling out the possibility .

The hackers might first check the server to find what the app stack is (Programming Languages,
Database, CMS, OS).
Looking at HTML, Javascript code, URL pattern, hitting standard URL’s of admin pages & port scanning helps a lot.

Once this is done, he or she knows which exploits to try.

With CMSes, exploits become public very fast. Security patches are made available just as fast. If they regularly apply security patches they’ll be OK. Other
than that CMSes are vulnerable mostly due to bad configuration, or poor password choice.

Custom applications are more vulnerable to loop holes in code. There are many vulnerabilities that can be exploited.

1. Database fields become exposed to modification
because the programmer choose to simply persist the
entire object received from the user instead of only
picking those fields that the user was allowed to
modify from that page.

2. Having ajax methods such as getObject(int objectid)
in Javascript with no corresponding validation on
server side to find whether the requested object
should be accessible to the current user.
These seemingly lame coding blunders are surprisingly
very common in custom built applications.

Possible Solution

1.Scan Website Server for Vulnerabilities With Nikto On Linux and install patch/ fixes for every vulnerability

2.Change Website CMS To Joomla

Michael Ajah is a Computer Science Student of The University of Port Harcourt and a Chelsea Fan. He loves RnB and a little mix of Trap Music. An awesome tech reviewer and analyst. Email - [email protected]

Continue Reading
Advertisement
Click to comment

Leave a Reply

Your email address will not be published. Required fields are marked *

hacking

Google pays Student $10,000 For Reporting Security Flaw

Published

on

Hackers don’t always make money from criminal activities. Big Tech companies like Google and Facebook have bug bounty programs in which security researchers are rewarded for disclosing existing flaws in the system.
Google pays Student $10,000 For Reporting Security Flaw 3

Last year, Google released a result which shows that hackers were rewarded $3 million throughout 2016. Recently, a Uruguayan student has been rewarded with $10,000 because he managed to discover a vulnerability in Google.

According to Ezequiel Pereira, he found the vulnerability when he was playing with Google services using a web security testing tool known as Burp Suite.

He was actually playing with Burp Suite to find the vulnerability, after many failed attempts, he discovered that the internal web page of yaqs.googleplex.com didn’t have the username or password check in place.

Googleplex.com hosts several Google App Engine applications.

Ezequiel Pereira wrote

“The website’s homepage redirected me to “/eng”, and that page was pretty interesting, it had many links to different sections about Google services and infrastructure, but before I visited any section, I read something in the footer: “Google Confidential

“At that point I stopped poking at the website and reported the issue right away, without even thinking of a better way to show the vulnerability than with Burp”

He also shared screenshots of the email exchanges with Google’s security team the same day. Google’s security team confirmed that the bug he reported was very effective. Pereira says he was very surprised when he received $10,000 from Google team for his work after a month.

However, Google has resolved the vulnerability and the large reward was because they found a few variants that would have allowed an attacker access sensitive data”
.
.

Continue Reading

hacking

Have A Look At The 7 Most Beautiful Hackers In The World

Published

on

They’re extremely cute but these set of ladies can clear an entire bank with just a set of computers. Let me introduce the most beautiful hackers in the world – With a combination of beauty, brains and sex appeal. You certainly won’t want to mess with them.

Have A Look At The 7 Most Beautiful Hackers In The World 4
Adeanna Cooke

She is a hacker and former playmate . An old friend of hers decided to pose on the internet as her and started taking money for doing so.

This did not go down well with her. If there was anyone who was going to be making money off her body, it was going to be her.

She came across an unauthorized website with her pictures, then she took matters into her own hands and hacked into the account herself to take them down the photos.

After the successful attempts, Cooke also used her hacking skills to help others in similar situations
She was also known as the “Hacker Fairy” to other  women being taken advantage of on the Internet.

Have A Look At The 7 Most Beautiful Hackers In The World 5
Ying Cracker

Ying teaches people the basics of hacking; things like changing your IP address or wiping Office passwords

Who doesn’t want to learn how to hack from a beautiful chic ?

She was first noticed in a Chinese Hackers’ forum post that got her noticed and created a huge fan base for her.

Her work is quite impressive as well. She’s an expert in writing hacking software and charges a lot of money for simple courses on  hacking tools.

She usually makes about $2000 per month in the hacking business and for that, she certainly deserves your respect.

Have A Look At The 7 Most Beautiful Hackers In The World 6
Kristina Svenchiskaya

Kristina was a student at The New York University and is a money mule hacker.

She attempted to defraud several British and U.S. banks of millions of dollars using a Trojan horse malware. With collective team efforts, she earned a sum of more than $3 million by opening fake bank accounts and using fake passports.

Kristina was later arrested in 2011 but released after signing a bond and paying $25,000 as bail.

If she had been convicted, she could have been imprisoned for more than 40 years.

Have A Look At The 7 Most Beautiful Hackers In The World 7
Raven Adler

Ravel Alder is certainly s one of the most gifted and intelligent hackers who’s using her education for good use. She was the first female to give a presentation at DefCon, one of the worlds most prestigious gatherings of hackers .

She currently helps corporations protect their data and other sensitive information. She is also a consultant, lecturer and author who deals in hacking and computer security.

Have A Look At The 7 Most Beautiful Hackers In The World 8
Kim Vanvaeck

Kim also known as Gigabyte, the Belgium national is well known for developing many high caliber viruses that target hardwares and subsequently destroy sensitive information.

She wrote her first virus when she was 14.  She wrote the viruses not to gain money but to cement her position in a group of hackers that are dominated by men. She wanted to prove to the world that women too can write viruses and can be dangerous hackers, unlike what the world knows it to be. Her virus, Sharp, is credited to being the first virus ever written in C Sharp.

Vanvaeck was later arrested when she was aged 17 but was out on bail in 24 hours due to her minor status.

Have A Look At The 7 Most Beautiful Hackers In The World 9
Xiao Tian

Tian formed the female hacking group called “China Girl Security Team,” as she felt that there was no other outlet for teenage girls like her in the male-dominated world of hacking.

Her group has  ties with some of the most notorious hacking organisations in the world and has become one of the largest Chinese-based hacking groups.

As with most well-known and outspoken groups of this nature, Tian and the rest of China Girl Security Team continue to receive attention from national and international police organizations due to their activities.

Have A Look At The 7 Most Beautiful Hackers In The World 10
Anna Chapman

Anna was a Russian hacker who lived in New York City before she was arrested, along with nine others in 2010. She was accused of working for the Illegals Program spy ring under the Russian Federation’s external intelligence agency.

Chapman pleaded guilty to a charge of conspiracy to act as an agent of a foreign government without notifying the U.S. Attorney General, and was deported to Russia, as part of a prisoner swap. She also lost her U.S. citizenship.

Continue Reading
Advertisement

New Arrivals

Recent Comparisons

Trending