advertisement

Another high profile website hacked, this time it’s Fingaz

advertisement
Financial Gazette website hacking

We have been alerted by readers to the hacking of yet another high profile website in Zimbabwe, that of the Financial Gazette, www.financialgazette.co.zw. Our checks show that the website was hacked on Friday, 4 January 2013, and remains compromised at the time of posting this article.

advertisement

Loading the Fingaz website right now shows the page in the screenshot below:

Financial Gazette website hacking

advertisement

Some of you will probably notice that the hack, by a group called HighTech Brazil HackTeam, is similar to the one that hit the ZOL last week. And like the ZOL website defacement, this one also looks like a random attack on known content management vulnerabilities.

Our checks also show that the website is hosted internationally. The Financial Gazette, is one of the most read local weekly newspapers in Zimbabwe. Like other newspapers in the country, the media company’s establishment of online presence has not been smooth. Websites belonging to print media companies in Zimbabwe have been subjected to defacement in such random hacks.

Here are some examples in the past 2 years:

Thank you Greg Kawere


Quick NetOne, Telecel, Africom, And Econet Airtime Recharge

If anything goes wrong, click here to enter your query.


WhatsApp Discussions

Click to join a Techzim WhatsApp group:
https://chat.whatsapp.com/DmLxdWXYWiC33Fhn5aRKIS

If you find the group full, please notify us on +263 715 071 199 and we'll update the link.


11 thoughts on “Another high profile website hacked, this time it’s Fingaz

  1. Can techzim investigate if these sites where designed by the same person/company ? this is pointing to the designers/developers of the site?

  2. Lesson number n+1 from the hacks: Backup daily. File & DB. Roll-back becomes “easy” in the event of such incidents.

  3. I see a lot of developers on here pointing out flaws etc, but maybe the best plan is to help educate us. Could techzim solicit advise on improving web security from a development and hosting perspective, it could be a really interesting article and help us all learn at the same time.

    1. if direct sql injection was used i would shoot the person who did not do sql escaping, seriously!

Comments are closed.