position

Hackers target Tasmanian government website

S4t4n1c_s0uls deface Premier's email to media

Stilgherrian (CSO Online (Australia))
— 21 July, 2011 15:45

Defaced: the graphic inserted into a Tasmanian government email

The Tasmanian government became the victim of a hacker today when a member of the group S4t4n1c_s0uls defaced an email sent to the state's media outlets at 9am.

CSO Online understands that the information in the email was real. However a graphic had been inserted, featuring Neo from the movie The Matrix and an illustration of a grinning spider, presumably the logo of the hacker sp1d3r who claimed responsibility for the attack.

The text "S4t4n1c_S0uls was Here! - by Sp1d3r" was also added, and Premier Lara Giddings' title changed to "Acting Acting Premier".

The email's headers, obtained by CSO Online, show that it was sent from the computer ws1-15murray.dpac.tas.gov.au running Debian GNU/Linux 3.0, which would appear to be a web server in the Department of Premier and Cabinet. There are indications that the hacker had root (administrator) access.

S4t4n1c_s0uls has claimed responsibility for almost 100 website defacements this month, including sites in Brazil, Jamaica, China, India and the Philippines. Five Chinese government websites were hit, and one in the Philippines.

Premier Giddings told the media she does not believe any sensitive information has been accessed. A Government spokesman says the incident is not impacting on day-to-day government services, the ABC reported.

Contact Stilgherrian at stil@stilgherrian.com, or follow him on Twitter at @stilgherrian.

Tags: government, hackers, S4t4n1c_s0uls

Comments

Post new comment

CSO Corporate Partners

Get exclusive access to CSO, invitation only events, reports & analysis.

Deep Security - Enterprise Virtualization Security

Advanced protection for physical, virtual and cloud servers

Submit your training courses

Media Releases

More Media Releases »

Latest Jobs

FTiPhone App DeveloperNSW
FTSenior Network Engineer - Cisco / Nexus / UCS / - Routing / Switching / WirelessNSW
FTSenior Network Field Engineer - Cisco R&S / Wireless SolutionsNSW
FTSenior Network Field Engineer - Cisco R&S / Wireless SolutionsNSW
CCSystem Engineer - Exchange - CONTRACTSWA
FTChange Management ProfessionalsNSW
FTSenior Citrix EngineerNSW
FTSenior Network Engineer - Cisco / Nexus / UCS / - Routing / Switching / WirelessNSW
CCAvaya Engineer - ERS 8600 4.1NSW
CCSystem Engineer - Lync and Exchange - CONTRACTSWA
FTiPhone Developer DeveloperNSW
FTiPhone App DeveloperNSW
FTTechnical Consultant (VB.NET Developer)NSW
CCIT Project Co-ordinatorNSW
FTASP.NET Developer (Digital)NSW
FTTechnical Services Engineer - ShoreTel/MitelVIC
FTSenior Citrix EngineerNSW

Solution Centers

Security Awareness Tip

Software security company www.clearswift.com gives some advice this holiday season to make sure employees don’t end up on Santa’s naughty list!

At a fundamental business level, social media is a useful additional tool for communicating and collaborating with customers, colleagues and new business prospects. From an HR point of view, the social web is not only useful for recruitment but also as a knowledge network. At an employee level, social media is changing the way we work: Employees increasingly expect to be able to access personal technology and services in the workplace. As the lines between work and home life blur, staff are looking for greater flexibility in their roles; working from home is an increasing trend, but so too is ‘home-ing from work’, where staff expect to be able to perform personal tasks at work.

But social media brings risk and reward to business in equal measure. Information security is a key concern: Many organisations view social media channels as yet another route along which sensitive data can escape from the business, whether accidentally or maliciously. On top of this, senior management may be concerned about the amount of time employees spend on social networks.

This cultural shift raises new questions about trust in the workplace, the balance of power in employer / employee relationship and levels of control over people and content.

Organisations using content and web security technology can manage the way their staff use email and the internet without having to resort to a default position of mistrust. With a whopping third of ANZ employers completely blocking social media access at work, there’s a real danger of throwing the benefits of collaboration out with the risks.

It doesn’t have to be that way.

Trust breeds responsibility: People underestimate the amount of company time they spend on personal browsing. Allow staff to view their own web usage and foster more responsible behaviour without undermining trust.

Know limits: Set clear limits on personal surfing and communicate them to users. Alert them when they are approaching their limit. Help your people to play by the rules.

Share the load: Spread responsibility for usage reporting among managers and department heads so everyone gets to see how their usage impacts on the rest of the organisation. This also gives managers greater control and visibility into usage.

Need to know: Yes, you need reports and visibility. What you don’t need is employee data becoming common knowledge. Access control means reporting can be adjusted on a need-to-know basis.

Security ABC Guides

7 Ways to Protect Your Business Printers

Can a hacker burn down your business by remotely setting one of your printers on fire? Researchers at Columbia University have recently proposed such a scenario, although HP quickly denied that it's possible. However, even if your printers can't be used as remote firestarters, there are many risks involved in networking a printer.

Read More

Market Place