Protect your corporate IT network from hackers and other unwanted intruders with Proxy Sentinel™. Click here for all the details and get the peace of mind you deserve.
Back to our Homepage Proxy Sentinel™ high performance Internet proxy server and secure firewall solution Firewall Sentinel™ secure & powerful Internet firewall solution About Internet Security.ca and GCIS Frequently Asked Questions on Internet security issues Internet Security Industry News - Stay informed of what's happening Contact Internet Security.ca today and order your Proxy Sentinel™ or Firewall Sentinel™ server now!

SQL injection security flaw found on the systems of lawyers in Panama

Sponsered ads:
Read the latest IT news. Visit ItDirection.net. Updated several times daily.

If you need reliability when it comes to SMTP servers, get the best, get Port 587.

Get a powerful Linux Dual-Core dedicated server for less than $2.67 a day!

Share on Twitter.

April 11, 2016

Professional security researchers have discovered new holes in the systems of Panama leak firm Mossack Fonseca.

A self-styled underground researcher claims to have found a SQL injection security bug on one of the corporate systems of the Panamanian lawyers.

“They updated the new payment system, but forgot to lock the directory /onion/,” he said.

Mossack Fonseca specialises in helping its clients to set up firms in tax havens such as the British Virgin Islands.

The security leak of the Panama Papers has created a huge political battle in that country.

The lawyers informed clients in early April that the leak to journalists has been traced back to a hack on its email server, rather than a whistleblower.

Its apparent failure to adequately lock down its systems is surprising in the circumstances, however.

“It looks like Mossack Fonseca had really very low security level, such that hackers continue to hack them just for fun,” a security intelligence source who notified us of the claimed security vulnerability.

In between flagging up security issues with Mossack Fonseca, the same hacker has been busy over the last week attacking major media outlets, such as the LA Times and New York Times, and offering to sell access to insecure systems at NASA, among other stunts.

The same hacker (1x0123) claims to have contacted Edward Snowden, notifying him of some security issues on one of his projects. Snowden acknowledged the bug report on the Freedom of the Press Foundation website yesterday. Whether this is a coincidence or not is still not clear, however.

Sponsered ads:
Read the latest IT news. Visit ItDirection.net. Updated several times daily.

If you need reliability when it comes to SMTP servers, get the best, get Port 587.

Get a powerful Linux Dual-Core dedicated server for less than $2.67 a day!

Share on Twitter.


Home | Proxy Sentinel™ | Firewall Sentinel™ | FAQ | News | Sitemap | Contact
Copyright © Internet Security.ca    Terms of use    Privacy agreement    Legal disclaimer