Moderator: 3ne2nr Mods
“There are currently investigations as to where this hacking could have taken place from and we have shut down the websites…until we’re able to secure them and understand, what, if anything, has happened.”
Young assured that there was no real damage done by the hack.
“These websites don’t get into our operating systems; these websites are not going to affect the records at National Security, certainly not the records at Immigration either.”
The Minister said there was no reason to be overly concerned about an “intentional attack” on data from either entity.
rspann wrote:He says the sites are shut down until they understand what, if anything has happened ,but assures that no damage was done. How do you know before you investigate?
shake d livin wake d dead wrote:according to my bro, it's very easy to determine who did it
88sins wrote:^^ and this is where ppl gonna get screwed, with little to no recourse. Unless they take it to court & set a precedent.
and somebody friend/family/ghost company gonna get the multi million dollar contract set things up to ensure this never happen again.
redmanjp wrote:88sins wrote:^^ and this is where ppl gonna get screwed, with little to no recourse. Unless they take it to court & set a precedent.
and somebody friend/family/ghost company gonna get the multi million dollar contract set things up to ensure this never happen again.
they need to have well paid Information Security personnel unlike most IT ppl who are underpaid in a lot of companies locally
Nat Sec sites still down after Brazilian hack attack
Julien Neaves
MORE than a week after 11 government websites were attacked by Brazilian anti-government hackers, two national security sites remained down.
On July 25 the TT Computer Society (TTCS) flagged the hacking of the sites by Brazilian hacker or hackers VandatheGod in a series of posts,.
National Security Minister Stuart Young, at the post-Cabinet media conference that day, confirmed his ministry's and theimmigration division's websites had both been hacked, but said no real damage had been done. He said investigations had been launched to identify the source of the hacking and the sites shut down until the ministry could secure them and understand what happened.
The sites of the Immigration Division, immigration.gov.tt, and Citizen Security Programme, csp.gov.tt, remained unavailable up to yesterday while the national security website, nationalsecurity.gov.tt, was back up and running last week. National Security Ministry Permanent Secretary Vel Lewis told Newsday briefly he was not in office but the ministry's computer response team was working on the issue.
TTCS also reported attacks on the websites associated with the Tourism Ministry, Office of the Prime Minister Gender Affairs Division, National Energy, Energy Ministry, Office of the Attorney General, Telecommunications Authority (TATT) and the National Entrepreneurship Development Company (Nedco).
The TATT site was previously unavailable but was available yesterday while Nedco's site remained "temporarily down for maintenance." Newsday had sent Nedco an e-mail asking if the site's being down was due to the hack, but no response had yet been received.
VandatheGod, who has been on Twitter since January 2013 and has 2,193 followers, claimed responsibility for the hacks and retweeted a video by TTT Online with Young speaking about the hacking and also one of the posts by TTCS.
On the National Security Ministry website the hackers posted a YouTube link to to the 1995 song Pelados em Santos by Brazilian comedy rock band Mamonas Assassinas.
The hackers later attacked other websites and posted an image of a man wearing the Guy Fawkes mask of Anonymous followers and holding a sign reading: "Join the Revolution, Tell Your Corrupt Government to F--- Off".
Last week the news site courier-tribune.com reported the hackers had attacked the website of Randolph County, North Carolina, US and at least 59 other government sites have been targeted in the past week.
Up to yesterday, VandatheGod continued to post links to hacked sites, including those associated with the mountainous Marche region in Italy, the city of Tyler in Texas, US and sites linked to Jamaica, the UK and China.
TTCS assistant secretary Dev Anand Teelucksingh had previously told Newsday websites need to be secure to prevent unauthorised parties from interfering with them. He also described VandatheGod as a "cookie-cutter operation," saying it probably all automated.
Young could not be reached for comment.
Slartibartfast wrote:So they think an automated program was able to hack multiple government websites including National Security websites? This begs the question, how sh!tty exactly is the security on those websites if a "cookie cutter" program is able to hack it?
I agree that most IT people underpaid though. Probably because if nothing going wrong they wonder what exactly they paying you for and if something goes wrong they wonder what exactly you paying for.
They should hire Novo Technology Incorporation Limited to do their IT security. They have experience with mega projects like the airport kiosks.
Well voting season just now , so expect PNM voting bank of Grenada and St Vincent to be opened .Premchand1976 wrote:I bet the recent immigration and registration process records gonna be " tampered " with.........nothing else !!!!
shake d livin wake d dead wrote:Slartibartfast wrote:So they think an automated program was able to hack multiple government websites including National Security websites? This begs the question, how sh!tty exactly is the security on those websites if a "cookie cutter" program is able to hack it?
I agree that most IT people underpaid though. Probably because if nothing going wrong they wonder what exactly they paying you for and if something goes wrong they wonder what exactly you paying for.
They should hire Novo Technology Incorporation Limited to do their IT security. They have experience with mega projects like the airport kiosks.
IT people and cybersecurity personnel are not the same...Most IT people are not trained to prevent issues like this and there is no instiution teaching cybersecurity and hacking in trinidad...
Sorry, this was a bad joke. Novo are the people that getting paid millions to rent out kiosks in the airport. Their price is so exorbitant that I don't know how they could have secured the contract without some form of corruption. I would not want them anywhere close to public funds.shake d livin wake d dead wrote:Slartibartfast wrote:So they think an automated program was able to hack multiple government websites including National Security websites? This begs the question, how sh!tty exactly is the security on those websites if a "cookie cutter" program is able to hack it?
I agree that most IT people underpaid though. Probably because if nothing going wrong they wonder what exactly they paying you for and if something goes wrong they wonder what exactly you paying for.
They should hire Novo Technology Incorporation Limited to do their IT security. They have experience with mega projects like the airport kiosks.
IT people and cybersecurity personnel are not the same...Most IT people are not trained to prevent issues like this and there is no instiution teaching cybersecurity and hacking in trinidad...
abbow wrote:shake d livin wake d dead wrote:Slartibartfast wrote:So they think an automated program was able to hack multiple government websites including National Security websites? This begs the question, how sh!tty exactly is the security on those websites if a "cookie cutter" program is able to hack it?
I agree that most IT people underpaid though. Probably because if nothing going wrong they wonder what exactly they paying you for and if something goes wrong they wonder what exactly you paying for.
They should hire Novo Technology Incorporation Limited to do their IT security. They have experience with mega projects like the airport kiosks.
IT people and cybersecurity personnel are not the same...Most IT people are not trained to prevent issues like this and there is no instiution teaching cybersecurity and hacking in trinidad...
Thank you very much...i was going to state the same, however there are a couple places teaching it now.
Correct. Lack of direction and leadership began in 2015ismithx wrote:redmanjp wrote:88sins wrote:^^ and this is where ppl gonna get screwed, with little to no recourse. Unless they take it to court & set a precedent.
and somebody friend/family/ghost company gonna get the multi million dollar contract set things up to ensure this never happen again.
they need to have well paid Information Security personnel unlike most IT ppl who are underpaid in a lot of companies locally
It have volumes I could say on the topic but let me leave it at this: it have serious lack of direction in the public service ICT sector and nobody in a position to push change cares
It had to be automated.... most of the hacked sites were using DNN... that thing is riddled with vulnerabilities that allow RCE exploitsSlartibartfast wrote:So they think an automated program was able to hack multiple government websites including National Security websites? This begs the question, how sh!tty exactly is the security on those websites if a "cookie cutter" program is able to hack it?
I agree that most IT people underpaid though. Probably because if nothing going wrong they wonder what exactly they paying you for and if something goes wrong they wonder what exactly you paying for.
They should hire Novo Technology Incorporation Limited to do their IT security. They have experience with mega projects like the airport kiosks.
Return to “Ole talk and more Ole talk”
Users browsing this forum: Coke_AA and 80 guests