Skip to main content

GAANA.COM HACKED !!!!


Why there in an urgent need of security experts in India! GAANA.COM GOT HACKED

If you have'nt heard about the news of Gaana.com getting hacked this week , you are either probably living in a den or you don't follow tech news at all. Gaana.com is a Timesgroup venture which is one of the biggest business groups in india with billions in revenues and apparently a hacker from Pakistan named “Makman” hacked it with a method called Sql injection  ,which bytheway is so common that every teenager in ethical hacking and security starts his career by learning the same. Data of approximately 10 millions users was compromised and hacker posted the link to a searchable database of Gaana user details on his Facebook page, with images of the service's admin panel.Anybody could access all the information of the users by just entering the email. It sound strange that a large company like TimesInternet did'nt have a pentesting or security team to deal with such issues  because of which such an exploit could be found easily.

What happened next is even more interesting. Mr Satyan Gatwani ,the CEO of timesinternet , interacted with the hacker on his facebook page, and in a hurry to save himself and his company from the embarassment,even offered to hire the same hacker as a security consultant.


The website was removed and the hacker officially posted a tweet declaring that no data was used or stored locally. But the bigger issue here still remains unsolved.  How could companies compromise on the security front of the technology ? Is there still a shortage of talent in the security sector?
With major players like CSSRL Laboratories coming in the market, the issue of talent is getting resolved but all the companies need to wake up before it's too late. To spread the skills across, CSSRL Laboratories has initiated Global Partnership Initiative to offer best of Franchise Opportunities to Entrepreneurs and Investors across, to create a Globe Enveloping IT Security Community. In this case , no harm was done. But we should not wait for the day when users have to suffer because of the fact that companies didn't have a proper security team.

- Naman Sharma

Comments

Richa Sharma said…
Because of less knowledge of Information Security this happened.

Popular posts from this blog

Holi Offer - Early Bird Discount on Admission for Certified Web Penetration Tester

Wishing a Happy Holi to all of you!

A lot of people who inquired in recent past have asked if there is any possibility of discount in the fee for our training program. All CSSRL professional training programs are designed and priced in such a way that they can provide best value for the money spent by the trainee as well as to ensure that we are able to continue to provide this training opportunity to everyone by keeping our Accredited Extension Centers financial feasibility under consideration.


CSSRL has come up with another offer on this festive occasion. For all those who complete their admission process and pay the fees between Holi and March 31st, 2017 for the Certified Web Penetration Tester (CWPT) program starting mid May 2017, CSSRL is offering an early bird discount of 20% on the total program fees.

The offer is applicable only on Certified Web Penetration Tester (CWPT) program
in regular mode training conducted at AEC Pune for batch starting mid May 2017. if entire fees is p…

CAREER AFTER 12TH IN CYBER SECURITY

Q. What isCYBER SECURITY? Ans. Cyber Security is the body of Technologies, processed and practices designed to protect Network, Computers programs & data from attack, damage or unauthorized access. In a computing context, the term security implies Cyber Security.  
Q. WhyCYBER SECURITYis Important? Ans. The increasing Volume & Sophistication of Cyber Security threats – including targeting phishing scans, data theft and other online vulnerabilities – demand that we remain vigilant about securing our Systems & Information.

Learn To Create iOS Apps With iPhone and iPad App Development Course