Hackers get backdoor entry to biggest PH-based website

Share on facebook
Share on twitter
Share on linkedin
Share on email

[/caption] According to white hackers group Rootcon.org, the Sulit website was replaced by the homepage of Ayosdito.ph, another classified ads portal in the country. RJ David, the site?s co-founder and current managing director, admitted in an advisory that a group calling themselves Anonymous Iligan claimed responsibility for the hacking incident which was undertaken via domain name registrar Dot.ph. David said he tried reaching out with the hacker?s group through Facebook chat and got this response: “We just saw a big hole in [Dot.ph] site, and i forgot to notify before i entered it.. it’s too vulnerable of hacking.. hopefully, you can retrieve all domains”. David said Sulit became inaccessible at around 1:00 in the morning of Saturday, Dec. 1, when its domain was redirected to another server. The site clarified, however, that the website and its servers were not hacked. ?All data in our website are intact and no information have been compromised? Sulit.com.ph has been up all day without any downtime,? it said. It explained that Sulit.com.ph became inaccessible only when its domain account at Dot.ph had an unauthorized access, with someone changing the details of its sulit.com.ph domain and pointing it to another server. But, IT pioneer Fernando Contreras Jr. said in a Facebook comment that the incident may not have been just a simple DNS attack. ?I don?t think it was just a DNS hack, the header and title of the page was changed also.? Sulit said in its advisory it does not have control over the security of its domain name as Dot.ph is the local domain registry which handles all .ph domains. ?Unfortunately, as of this writing, nobody from Dot.ph have responsed to our emails, support tickets and calls. It is currently posted in their website that their normal office hours will resume on Monday (December 3),? it said. The site added: ?This issue is reminiscent of the November 2008 when Dot.ph was also hacked during a weekend and our domain was parked to earn from the traffic being generated. We only got control of our domain back the following Monday when office operations started in Dot.ph.? Sulit then made the appeal for Dot.ph to have a 24/7 support. ?They are running a very critical single point of failure for all websites using the .PH domain.”]]>

Facebook Comments

Latest Posts