Anonymous Hacks South African Government

Anonymous is at the hacktivist game again, this time targeting South African government as part of its #OpAfrica initiative.

The group hacked a database within the Government Communications and Information Systems (GCIS) department, leaking names, phone numbers, email addresses and hashed passwords of more than 1,000 government employees.

The hackers gained access to an old GCIS portal that hadn’t been updated; South Africa said that the vulnerability has been tracked down and closed.

Operation Africa is “a disassembly of corporations and governments that enable and perpetuate corruption on the African continent.” Anonymous said that in particular, the focus is on the issues of child labor and Internet censorship on the continent.

“We are fighting alongside other operations such as OpNigeria and AnonymousSA to help free the continent from the plague of exploitation that has been occurring for centuries,” it said.

South African developer Evan Knowles said that government employees made it fairly easy for Anonymous to carry out its work, because those hashed passwords are hardly secure. He said that all of the 1,471 passwords from the GCIS data that Anonymous dumped were hashed using the MD5 function without salt. And, that it was trivial to crack 1,116 of them anyway.

“All in all, in the collection of 1116 passwords, there were only 549 unique passwords,” he said. “This included nine passwords which were only one letter long, and 53.1% of the passwords failed a standard, very basic test (contains at least one number, and a minimum length of 6). 29.8% of the passwords contained the word ‘password’. 628 passwords (42.7%) were already in plain text and did not need to be cracked.”

Further, 25.2% of users had passwords that were identical to their first name.

The top 10 passwords in the GCIS dump were: password1; password01; password02; password2; password123; Admin#11; Education2015; Password123; password03; and, Password.

“Not too imaginative, but strangely satisfyingly stereotypical as far as poor passwords go,” Knowles said in his blog.

Anonymous Hacks South African Government

Tara Seals

You may also like

Misguided “Bitcoin Baron” Hacker Gets 20 Months

Nissan Suffers Anonymous DDoS in Whaling Protest

Hacktivist Warns World Cup Sponsors Anonymous DDoS Attack is Coming

Hackers target Cambridge in the name of Julian Assange

Anonymous and LulzSec announce they are joining forces

What’s hot on Infosecurity Magazine?

Insider Threats Surge 14% Annually as Cost-of-Living Crisis Bites

Cybersecurity Pros Urge US Congress to Help NIST Restore NVD Operation

FBI Warns of Massive Toll Services Smishing Scam

Russia and Ukraine Top Inaugural World Cybercrime Index

How to Backup and Restore Database in SQL Server

How to Open and View OST Files Without Outlook

Banning Ransomware Payments Will Do More Harm Than Good

Palo Alto Networks Warns About Critical Zero-Day in PAN-OS

Cybersecurity Pros Urge US Congress to Help NIST Restore NVD Operation

Women Experience Exclusion Twice as Often as Men in Cybersecurity

CISA Urges Immediate Credential Reset After Sisense Breach

Windows: New 'BatBadBut' Rust Vulnerability Given Highest Severity Score

Is MFA Enough? Strategies for Next-Level Identity Security in 2024

Beyond Passwords: Securing the Digital Age with MFA, 2FA, and Passwordless Authentication

Disinformation Defense: Protecting Businesses from the New Wave of AI-Powered Cyber Threats

Adapting to Tomorrow's Threat Landscape: AI's Role in Cybersecurity and Security Operations in 2024

Untangling the Web: Navigating Third-Party Risk in a Hyperconnected World

Bouncing Back: Building Organizational Resilience in the Face of Cyber-Attack

Infosecurity Magazine Spring Online Summit 2024: Day One

Infosecurity Magazine Spring Online Summit 2024: Day Two

Russia’s Midnight Blizzard Accesses Microsoft Source Code

I-Soon GitHub Leak: What Cyber Experts Learned About Chinese Cyber Espionage

LockBit Takedown: What You Need to Know about Operation Cronos

Women in Cybersecurity at Infosecurity Europe 2024

Anonymous Hacks South African Government

Written by

You may also like

What’s hot on Infosecurity Magazine?