– by Milton Ramirez
Ecuador has been in the headlines a lot in 2008 so far. First, torrential rains have fallen and have left much of the country under water. Then, the controversial dispute involving national sovereignty and its neighbor, Colombia, has also been in the news recently. Finally, the announcement that has left Ecuador’s government in hot water [es] indicates that the Revolutionary Armed Forces of Colombia (FARC) has found shelter in the country. However, something that has not been in the news, but may be just as worrisome is the question of security on the internet and the recent incidents of hacking.
The hacking of the page of the presidency occurred in the middle of February, and was committed by a hacker who openly mocked [es]the security of government systems and assures he will get into other media portals. Carlos Jumbo [es], who works in this profession explains that it is not the first time this happened in Ecuador and problems like this can be solved:
It’s easy to locate and identify with prevention, the problem lies with those responsible for the security of these government’s entities, they should know today that the real battles are being fought in cyberspace…. They need to take advantage of the reform of the ambiguous National Security Law that is being debated in the Constituent Assembly, which introduces new regulations involving the protection of natural resources and the fight againstCyberterrorism, which is a growing threat in Latin America because of the little effort made by countries to devote their efforts to design and plan strategies to counter these latent threats. In the meantime, a culture of Cybersecurity can become an indispensible element for the development of lesser developed countries.
People and bloggers were concerned of this incident and Palulo [es]while visiting southern Ecuador tried to look for a technical answer from the experts at the Technical University of Loja. He interviewed two professionals who have deep knowledge of ASP applications, ISS servers y hacking. The following are Fausto Loja’s opinions:
The ISS servers can be attacked by bugs in the operating system used to manage it. In this case, the page of the presidency uses Windows, which is not as secure, and this is manifested in the publication of security patches (service packs) by Microsoft , besides “when developments are not made by those who know the facts, security may leave many doors open,” and this can allow others to enter the applications and make alterations…
Some of these violations are common in Ecuador, but not when the company allows the opening of private data. A major telephone company in the country allows the public see all sensitive information about its customers. La Bitácora de Calú [es], warns:
This is happening with Pacifictel, one of the state-owned fixed-line telephone operators in Ecuador. Anyone is able to know not only the name, identity card number or address of a subscriber from your listed phone number, but even the telephone numbers to which you have called, duration of calls and other details [..] Certainly for the customer itself, this information can be useful, but Pacifictel should create a user profile and password for each subscriber to enter where such information is provided, or else-as is happening right now-all your incoming and outgoing calls – and those of your neighbor- can be spied by anyone who has a simple Internet access.
Leave Your Comments