14 DAY TRIAL // SEPO, the Eastern European hacker featured in our Hackers around the world series not long ago, provided us another list of major targets that kept him busy in the past several days.
The list of victims includes Podcast Chicago, Emirates Industrial Bank, Mediterranean Smart Cards Company, Valley View University of Ghana, Wallace Community College in the US, the Jewish National Fund from Belgium, and the Murmansk State Regional Universal Scientific Library.
From Wallace Community College, based in Dothan, Alabama, SEPO leaked tons of information from their databases, including user IDs, password hashes, and names.
The website of the Belgian Jewish National Fund, also known as Keren Kayemet LeYisrael, also proved to be vulnerable, SEPO managing to leak the database’s scheme to prove that he gained access.
The Russian Murmansk State Regional Universal Scientific Library was hacked, but he didn’t leak any data, except for some server information.
The databases of Valley View University, a private university located in the Greater Accra Region of Ghana, contained titles, names, department names, email addresses, passwords, and other sensitive information that could be of great value to an identity thief that relies mostly on social engineering to perform his malicious deeds.
The website of Mediterranean Smart Cards Company (MSCC), a company established in 2001 with the purpose of providing smart card payment processing services to banks across Africa, proved to be totally unsecured.
“Africa's leading electronic payment processing company. Hey, Admin! Did you hear about security?” SEPO said.
The hacker also had something to say when he saw the poor security measures implemented by the Emirates Industrial Bank.
“I thought bank’s websites are more secure... And private data of simple users can't be stolen, but... you can see the how banks are protecting your data.”
Passwords, email addresses and usernames were also obtained by SEPO from Podcast Chicago, whose site turned out to be vulnerable to any hacker who sought to obtain information that can later be used for malicious purposes.
Knowing SEPO, he’s not that kind of hacker, but if these websites don’t patch up their security holes, a lot of users may live to regret that they handed data over to them.