OGRA’s website was hacked last evening; I was in office when I heard this breaking news on Geo TV. At once, I searched for OGRA, and started looking for more information about this defacement. After little work I found that OGRA’s website was hacked by H M G group of script kiddies from India run by a guy call Sneak and they call themselves Guards of Hindustan and some define this group Hindu Militant Group.
I remember, it’s been a year when I spoke with the owner of this group for first time. He was just a kid then (in terms of hacking) He didn’t know much about hacking and security concerns. This guy had a group of friends, who were keen to know more and more about hacking and they intended to use their skills for fun purposes.
After one year, they managed to hack OGRA’s website, but in my opinion they are still kids. As they haven’t done good job to deface OGRA’s site – which was open for them like anything. Instead of taking control of whole website and its data, they just placed a message “Welcome HMG”
This attack should be taken as a warning message for all websites in Pakistan, specifically, in a scenario, where majority of our websites are open to hackers – these include many of Government controlled websites as well. I am not naming them, so that they may not get exposed, but believe me, our Government websites are like a video game to hacking kids.
Yesterday, another Pakistani website got hacked, http://www.pakheaven.com/anonymous-mailer.php. I am not sure, if PakHeaven’s administrator knows about this hack or not, but these hacks can’t be termed as defacement, this is normally just a warning messages from fun players to inform administrators about security flaws. By the way, Spider Magazine’s website was hacked long ago, but seems like, its administrator damn cares about any such hack or security leaks.
So website administrators, please tune up your security, and make sure that you give tough time to hackers rather than just a minute to deface them
Update: I got this update through an email from Mr. Talat… He writes:
i want to share some information about OGRA’s website, only the main page link was changed/ hacked by HMG all other links and contacts were saved. Incident took place after 8pm on 17-11-08. Now website has been restored at 10.45am on 18-11-08 and that Indian IP has been blocked by ISP.
basically this was not as issue as raised by Geo TV – basically after hacking they called Geo tv and told them