The JSE`s Web site was among those defaced over the weekend. A flurry of attacks saw at least five other sites` Web pages replaced with various messages.
Akt0r, the cracker who claimed responsibility for the defacement of the Computicket Web site last week, says the recent defacements were also his work. And more South African sites could be targeted.
"I don`t know what is next," he responded to an e-mailed question. "As I say, I can hack over 100+ Web sites now, but I have done enough high-profile Web sites to prove my point - that I can do it. I dunno what might be next, we have access to major international Web sites, but heh... dunno if we will hax0r [hack] it."
The JSE refused to comment on the defacement, saying only that it would issue a press release on the issue later. The site was, however, available by the start of business today and seemed to be fully functional.
Other sites defaced include gmpsa.co.za, networktimes.co.za, mad.co.za and maddogs.co.za, all hosted by Abraxas Web Solutions in Cape Town. The sites were replaced with a variety of messages criticising the lack of security and indicating that Akt0r would accept a job in the security industry. The text on one site read: "Hacked By aKt0r of the b10zcrew. Im planning to go public about myself and my activities. Im just to sexy for j00.. shouts to all b10z members...and y0 to kyla."
Conspicuously absent from the messages were rants against the Telkom monopoly that characterised earlier defacements by b10z, as well as the obscenities common in defaced pages.
Abraxas Cape Town could not immediately answer ITWeb`s request for detailed information, but Johannesburg division manager Keith Levenstein was able to confirm the defacements. Although not involved with the Cape Town business, Levenstein told ITWeb that he did not believe the attacks reflected badly on Abraxas` security. "I would think that a single FTP password was simply compromised and used to replace the pages," he says. He adds that the Abraxas network was not compromised and that many customers were not aware of the intrusion.
All affected Abraxas sites are expected to be returned to normal by close of business today.
Akt0r says he is not concerned with being tracked down by the police. "I do not think they have the knowledge to do so," he says. He claims to be entirely self-taught, having an interest in computers. "I just started playing around with computers," he says. He does not target specific systems, saying that he can compromise the security of servers using Unix, Linux, BSD or Windows NT. He rather targets high-profile sites that will help him communicate widely. At the moment the message is that he would like work in the security industry.
Although Akt0r has no immediate plans to deface more sites, he also does not see himself "retiring" any time soon. "I wanted to stop a long time ago, but it is like drugs, you know?"
Related stories:
Share