A hacker attack seems to have taken place a few hours ago on its website companyof the management of COSCO and specifically of SEP S.A.
The state-owned Chinese company Cosco is known to have its subsidiary SEP SA bought the 2 jet and started 1 in October 2009 in order to become the first large-scale terminal in Greece. The company is fully controlled by COSCO and holds 5 the world leader in freight management companies. screened by the Greek media about its use as a transit center for multinational IT companies.
Despite all the investments made by the Chinese investors of Cosco, it seems that the protection of the company's IT systems, and in particular those available to the public, was almost non-existent. The Indonesian hacker, a member of the Gantengers Crew with the nickname "d3b~x" (who a few days ago also carried out a website defacement attack on a banking application company) seems to be behind the attack on the SEP S.A. website.
The “d3b~x”, according to information of foreign websites, proceeded to tamper with the website's internal link, using a weakness that he probably identified in the website's management system. The Indonesian hacker also has a website [here]. His weakness allowed him, as we can see from the result, to post his own content on the link [here]
Screenshot of the attack you can see next to it, while until the moment these lines were written the management team of SEP S.A. has not noticed the attack.
It is worth noting that the Gantengers Crew are low-level hackers, lacking the necessary expertise for high-level attacks, and using common tools available to everyone for making site alterations. This makes the impact of the attack even more important, as it appears that little has been done to protect the site from external tampering attacks, while cognitive hackers are getting spoiled and unauthorized access!
The site, although informative for the public, is within the company's infrastructure. It is not clear whether there is an interconnection with internal company systems or is in a demilitarized zone (DMZ). In any case, administrators and IT officers must immediately disable the site and investigate what access malicious hackers have accessed and if they have gained access to internal systems in the organization.
