A hacker attack appears to have taken place a few hours ago on COSCO's management company website, specifically SEP SA.
The state-owned Chinese company Cosco is known to have its subsidiary SEP SA bought the 2 jet and started 1 in October 2009 in order to become the first large-scale terminal in Greece. The company is fully controlled by COSCO and holds 5 the world leader in freight management companies. screened by the Greek media about its use as a transit center for multinational IT companies.
However, despite all the investments made by Cosco's Chinese investors, it seems that the protection of the company's IT systems, especially those that are available to the public, was almost non-existent. The Indonesian hacker, a member of the Gantengers Crew with the nickname "d3b~x" (who a few days ago also carried out a website defacement attack on a banking application company) seems to be behind the attack on the SEP S.A. website.
"D3b ~ x", according to information from foreign websites, has altered the internal link of the site, using a weakness it may have identified in the site's management system. Indonesian hackers also have a website [here]. His weakness allowed him, as we can see from the result, to post his own content on the link [here]
Screenshot of the attack you can see next to it, while until the moment these lines were written the management team of SEP S.A. has not noticed the attack.
It is worth noting that Gantengers Crew are low-level hackers, not possessing the necessary expertise for high-level attacks, while using common tools available to anyone to make changes to web pages. This makes the impact of the attack even more significant, as it appears that minimal measures were taken to protect the website from external tampering attacks, at a time when sophisticated hackers are achieving tampering and unauthorized access!
The site, although informative for the public, is within the company's infrastructure. It is not clear whether there is an interconnection with internal company systems or is in a demilitarized zone (DMZ). In any case, administrators and IT managers must IMMEDIATELY shut down the website and investigate what kind of access was gained by malicioushackers and if they managed to gain access to internal systems of the organization.
