Etiqa suffers defacement
OMG, he did it again! came unnoticeable, the latest victim are Etiqa Insurance and Takaful website which owned by Maybank Group, a leader in malaysia’s bank industry.
CuciOtak, a well-known local hacker previously shocked us all with his (or is it her?) project, defacing Petronas Malaysian GP website back in March 2008 and UiTM’s in April. at time of writing, the defaced site has been taken down, but both the Etiqa.com.my and Mni.com.my domains remain inaccessible. as usual, google cache provides the live view of the defaced web.
M’sian GP defaced in march ‘08
just who the hell is CuciOtak? i wonder if my hakas friend here in utp know him/her in person. given the fact that they are in the realm of it, i’m pretty sure they have seen Cuciotak somewhere, sometime ago, havent you all? and it keeps me wonder, does utp have the capability of producing ace hakases (plural of hakas) like that? surely, utp itself have never offered any intensive network security courses but to live ‘freely’ inside the campus, some of the students (and i proudly call them my friends) took the initiative of learning and put it in practice. no, i’m not promoting the act of hacking, however we can never deny the advantages to us :P
apart from that, does utp’s website secure enough against this kind of attack? although some of us might be thinking “nak watpe pon hack website utp?”, the honor of the campus is at jeopardy. hmm, how strong we really are?
aiya web defacement is dead boring similliar like vandalizing. A good attacker tak taruk pun simpan diamx2 aja.
This is the same guy who hack jiwang torrent, hackzone, hackermalaysia,
yondie: haha, it depends on personal preferance la kot. kalo org mcm ko mesti la rasa boring, tabest, vandalism (ko kan baik), tp kalo noob mcm aku ni seronok aa tgk website yg represent big corporation ni kene deface. well~ (ikut gaya ko), a good attacker certainly tak taruk and simpan diam2 je, tp a cool attacker lain kot.
attacker != hacker
yondie: this hacker is not a defacer. I’m one of his victim. He always takeover server in and out but didn’t published our secret data. He only did what he always show on the page. For end user only see as he deface but apparently is NOT.
Congrate to Cuciotak ..
Sekurang2nya dia sedarkan admin web tu ..
Bayar gaji mahal2 bukan suh tdo ..
admin tu akan merasa keperitan selepas kena hIjack ngan Bro CuciOtak ..
hacker is just another phyco… keseorangan dan hidup terbiar penoh dgn kemurungan…. they only managed to hack unsecured pages.. no data stolen as the data are kept at secured network….behind firewalls, IDS, cluster of routers etc.
ahaha.. mcm2 pendapat. masing2 ada pandangan sendiri. on the +ve side, yeah, mebi dia dpt sedarkan admin tuh betapa pentingnya sekuriti walopon page yg biasa2 dan tade data penting, so to speak. -ve side, this act might encourage people to hack and deface other websites.
anyway, how do you guys define “defacing website”? hack, take control and compromise all the data or simply hack and put a signature?
jejoejz: you are totally wrong…when you deal with hacker which are same level as CuciOtak…secure or unsecure is not a problem to them…encrypt or non encrypt they still can break through…i know about this because i’m being tracking him years to years but end with unknown location…he/she make me suffer about a month to recover…like i said, end user like you always see as deface only…you dont know the story behind….do you know he manage to manipulate all the logs and let us believe the unknown activity?…you decide
ok, this is getting better. any more info relating to him/her?
snipo, what did he do to your server? mind sharing?
he/she steal our secret data and manipulate the log
do you notice he just attack cyberxmovie.com?
cuciotak buat lagi… kali ni kat http://www.cyberxmovie.com plak.
NONY: yeah.. saw that few minutes ago.
I thought the hacker has been captured already…but this cyberxmovie prove that he still out there!
uitm also kena jugak kan.
yep.. uitm kene gak semalam… again.
hari ni taleh access. aku cuba pagi td.
woh.. aku gugel for cuciotak kuar blog ko.. dated on a year ago plak uh..
tah2…
haha~
hacker is just another phyco… keseorangan dan hidup terbiar penoh dgn kemurungan…. they only managed to hack unsecured pages.. no data stolen as the data are kept at secured network….behind firewalls, IDS, cluster of routers etc.
quotin to the above statment.
im not that good in IT/Network security; are you sure that the attacker only attack to vuln/low security servers ? how sure are u for the data in IDC are all “safe”? try to brute forcing the routers for a couple of min/hours, ill bet that you can manage to get the pass from it and maybe once you have finished surveyin all the data or whateva in it, you can either deface or rm -rf /* the hdd0 or if u wanna harvest something from the servers u “pwn” maybe you can setup 1 backdoor and enjoy the ride. this is from my experience, maybe its a bit diff from you guys.
and im pretty sure that the CuciOtak guy is ranked l33t. here is some info for the mods to look up ;))
[cuci_otak] (~sakitjiwa@fm-ip-61.247.3.210.fast.net.id):
mono: i just couldn’t agree more. hackers tend to misdirect people and make them believe what he/she wan them to believe. with that MO, they can cover up their traces etc.
l337 is definitely for CO. luls.
eena: amacam? hit bak tak entry aku? wakakak.
wei geng…tengok menarakl.com.my pula..baru lagi ni
nissan: yep, read about that few hours ago.
http://akmals.net/v1/2009/09/cuciotak-brainwashing-again