The group claims to be the “watchdog” of the Pakistani cyberspace and reportedly monitors websites to make sure they keep functioning smoothly.
Members of the group, Khanisgr8, Net_Spy, Xpired, Sho0ter and N3t.Crack3r, in an email sent to ProPakistani revealed that hundreds of .pk domains, including google.com.pk, msn.com.pk and other domains for top global brands were defaced on Saturday due to security flaws with the PKNIC system.
Photo: Screenshot on ProPakistani
The group pointed out that the defacement took place because the PKNIC servers were vulnerable to Boolean-based blind SQL injection, time-based blind SQL injection, cross-site scripting and sensitive directory disclosure.
The members provided ProPakistani with complete parameters and proofs of vulnerability, which according to experts, were valid. The security experts told ProPakistani that PKNIC has been vulnerable for a long time.
Earlier, a hacker named eBoz, had re-routed around 284 .pk domains from their servers to a hosting account allegedly owned by himself, by penetrating and re-configuring the DNS and name servers of these domain names.
COMMENTS (10)
Comments are moderated and generally will be posted if they are on-topic and not abusive.
For more information, please see our Comments FAQ
can i contect you?
Wow, that is scary, we have sensitive information stored by PKNIC. They better employ someone who knows what are they doing.
sounds cool stuff
Umm....Okkaaayyyyy....
PSEB or PASHA should take over PKNIC. Whoever dealt with PKNIC knows about the low quality service, high cost of .pk domains and basic level of their website. Its a joke. Owner making too much money and pays no attention to the users. Its basically Qabza group. ET should investigate it in detail.
What a news...??Are we really interested in knowing why that happened?All we are concerned about is,How you're going to prevent this in future...???Right?
About time Pakistan takes internet security seriously. Reportedly Pakistan military networks were attacked recently.