BSNL Website Hacked by Pakistani Hacker
By on October 26th, 2011

BSNL just can’t get enough of the negative lime-light. It has not even been two months since we reported BSNL getting compromised, and here we are again. A self-proclaimed Pakistani hacker has defaced a public BSNL page. Last time, we revealed a serious security flaw in an internal application at BSNL called Dotsoft, and funnily enough, the vulnerability still exists.
dotsoft-hack
Apparently, Dotsoft became a hot topic with ethical hackers earlier in 2009, here is a clear proof-of-concept hack attempt aimed at Dotsoft. Though, this time, the situation is even worse. Today, a sub-directory on the BSNL website was hacked by a Pakistani hacker. The hacker, who calls himself ‘KhantastiC haX0r’, placed an index.html file on the sub-directory to prove that he has write-access to the web server.   He has also stated he has copied and removed all logs of the intrusion, as well as copied the databases — possibly being held for ransom? The defaced site is available at http://www.bsnl.co.in/tender1/ and doesn’t seem to affect any other pages within the same sub-directory, like http://www.bsnl.co.in/tender1/archive3.php.

khantastic-hacker

It is worth mentioning that although ‘Khantastic haXor’ claims to have connections with the PCA, he was actually thrown out of the PCA according to online reports. The situation was so bad that his personal details were exposed by a rival online ‘crew’. They went so far as to include personal photographs of the person in question. In any fashion, KhantastiC haX0r doesn’t seem to take his online anonymity very serious, as his Google+ account features pictures in high detail.

BSNL seriously needs to strengthen itself against attacks like these, with over 90 million subscribers, it’s a wonder they’ve managed to stave off theft of credit cards, passwords and other internal databases. It would seem like this is an online turf-war and BSNL was simply caught in the middle, perhaps their state ties can help them with building a more robust and secure network.

This makes for a good Diwali gift for BSNL from Pakistan.

Tags: , , , , , , ,
Author: Chinmoy Kanjilal Google Profile for Chinmoy Kanjilal
Chinmoy Kanjilal is a FOSS enthusiast and evangelist. He is passionate about Android. Security exploits turn him on and he loves to tinker with computer networks. He rants occasionally at Techarraz.com. You can connect with him on Twitter @ckandroid.

Chinmoy Kanjilal has written and can be contacted at chinmoy@techie-buzz.com.
 
Copyright 2006-2012 Techie Buzz. All Rights Reserved. Our content may not be reproduced on other websites. Content Delivery by MaxCDN