MWeb hacked, users’ details exposed (updated)
Duncan McLeod reports:
The accounts of thousands of MWeb broadband customers appear to have been compromised, with their logon and password details apparently published on the Internet by hackers. As many as 2,390 users of MWeb’s business digital subscriber lines have been affected.[…]
The list, which includes accounts belonging to several prominent businesses, including Pinnacle Micro, Africa Cash & Carry, Phumelela Gaming and Leisure, and Bloomberg, is headed by a racist message and details about how MWeb’s systems were compromised.
Read more on TechCentral (ZA)
Updated 10-26. TechCentral now reports:
Internet Solutions (IS) says the security breach reported for one of its business digital subscriber line (DSL) user-provisioning systems was not a hack. According to the IS log, there is no clear indication that the site was hacked, but that an authorised username and password was used to access the system.
“The user did attempt various SQL [database] injections, but this was only after successful login,” says IS chief technology officer Prenesh Padayachee. He says no other clients’ information was accessed in the process.