Globe-owned sites defaced by hackers
ABS-CBNnews.com
Posted at 11/28/2014 6:30 PM | Updated as of 11/28/2014 7:09 PM
MANILA (UPDATE) – Several microsites owned by Globe Telecom were defaced by a group of Filipino hackers to protest the firm's "poor internet service."
Tech blog Coorms.com reported the group BloodSec Hackers defaced four Globe-owned sites with the message, “Dear GLOBE, Your service on your internet connection is not worthy what we pay for. Do something or expect the consequence. This is just the beginning. Expect Us!”
In a statement, Globe Telecom confirmed the report, saying it detected a defacement on the four Globe microsites hosted by third-party vendor Movent at 10 p.m., November 27.
Globe said it took down the four microsites (mybusiness.globe.com.ph, duo.globe.com.ph, payroll.globe.csme.com and update.globe-csme.com) immediately to conduct appropriate security checks.
"The server where the four websites are hosted is managed by a third party partner and outside of the Globe Corporate and Enterprise Network, where appropriate preventive and detective controls are in place. The attack is isolated on their end and was brought about by an unpatched vulnerability which is currently being addressed. Rest assured, our security incident response teams are currently investigating and conducting forensics in various areas to make sure that the incident is properly managed," Globe Chief Information Security Officer Anton Bonifacio said.
Globe assured customers that no critical customer data have been compromised since the information are not stored in the affected websites. It noted the four microsites are only used for advertising and marketing purposes only and are not connected to any of the private internal customer systems.
As of Friday afternoon, the message on all four sites have been removed.
However, the sites are still offline, with an advisory saying the firm is “currently conducting a maintenance activity to improve system performance.”
“You can reach us through any of these online channels if you need any help with your billing and other Globe services,” the advisory added.
Globe also said that its own Globe-hosted websites were not compromised.
Tech blog Coorms.com reported the group BloodSec Hackers defaced four Globe-owned sites with the message, “Dear GLOBE, Your service on your internet connection is not worthy what we pay for. Do something or expect the consequence. This is just the beginning. Expect Us!”
In a statement, Globe Telecom confirmed the report, saying it detected a defacement on the four Globe microsites hosted by third-party vendor Movent at 10 p.m., November 27.
Globe said it took down the four microsites (mybusiness.globe.com.ph, duo.globe.com.ph, payroll.globe.csme.com and update.globe-csme.com) immediately to conduct appropriate security checks.
"The server where the four websites are hosted is managed by a third party partner and outside of the Globe Corporate and Enterprise Network, where appropriate preventive and detective controls are in place. The attack is isolated on their end and was brought about by an unpatched vulnerability which is currently being addressed. Rest assured, our security incident response teams are currently investigating and conducting forensics in various areas to make sure that the incident is properly managed," Globe Chief Information Security Officer Anton Bonifacio said.
Globe assured customers that no critical customer data have been compromised since the information are not stored in the affected websites. It noted the four microsites are only used for advertising and marketing purposes only and are not connected to any of the private internal customer systems.
As of Friday afternoon, the message on all four sites have been removed.
However, the sites are still offline, with an advisory saying the firm is “currently conducting a maintenance activity to improve system performance.”
“You can reach us through any of these online channels if you need any help with your billing and other Globe services,” the advisory added.
Globe also said that its own Globe-hosted websites were not compromised.