The anonymous group succeeded to attack several targets among them visa, paypall and mastercard (they did this to support wikileaks).
These attacks used DDOS, quite simple, however they were able to attack the HBGary an important security company. This time it was a more sophisticated attack, they were able to find an sql injection vulnerability in the HBGary website, they used it, then they managed to get most of the company emails to make them public (torrent) and with social engineering they had access to the famous rootkit.com server. Lesson to learn from this attack, it is amazing to see that a security company like HBGary can become victim of this kind of attack (how difficult it is to protect against targeted attack from skilled hackers). The second lesson is on how important it is to secure the company emails. The information inside them can be very harmful if leaked.
0 Comments
|
AuthorDr. Tejeddine Mouelhi Archives
April 2020
Categories
All
|