Eskom Utility Fund Payroll Hack
Eskom Payroll Hack
Cyber news goes as follows: 28-11-2014
Eskom in Gauteng, South Africa were nearly hacked of billions of rand by two Eskom employees and an outside ring leader that have since been arrested by the Hawks for hacking and fraud after a 2 months investigation into suspicious fraudulent activities in Eskom's IT department.
The two Eskom employees were about to hack Eskom's payroll network system which would have compromised billions of rand. The two were caught in the act trying to hack the power utility's payroll of R3bn and arrested on Friday at Eskom's training facility in Midrand while on duty.
The Hawks interrogated the two Eskom employees which resulted in the arrest of the ring leader in Meredale, just south of Johannesburg in Gauteng, South Africa. The Hawks then seized several computers from the ring leader, cellphones and other devices believed to be used in the crime from the three suspects homes.
Eskom forensic investigator Ajith Hansrajh and computer specialist Sampie Pretorius say in the report that during October they were analysing all computers allocated to Eskom staff following a security breach.
“On October 2 at about 2.30pm, Eskom’s host intrusion protection protocol prevented attempted access from a programme called Ardamax. This programme or application is used as a key logger and is typically used to secretly decipher access codes in order to secretly or unlawfully intercept passwords, usernames and other logon credentials of user accounts. The upload and/or use of such a programme on Eskom’s IT network is prohibited and unlawful,”.
What Is Ardamax Keylogger?
Ardamax Keylogger is a multilingual application that stores everything that happens on a computers records and is not complicated to use. Once installed the registry automatically activates and all the tasks that are running on your computer are stored.
It offers an invisible mode so no one will know that you are using a keylogger. It captures passwords that are entered in the computer, programs that are running, text written, chats used, saves e-mails records as well as visualization of the chats, different instant messaging services, such as Windows Live Messenger, AIM, Skype, Yahoo Messenger or Google Talk, among others. This is one wicked program specifically designed to spy on your computer without the user knowing (it operates in the background, undetected, storing your every move) And Ardamax Keylogger even offer tutorials. All major institutions should take precautions against such programs.
But anyway, the Hawks seem to have had a busy, successful month. It is the second time this month that the Hawks have prevented a major Cyber heist. Earlier this month the Hawks arrested a former Gautrain Management Agency employee for hacking the agency's financial details and attempting to steal an amount believed to be around R800 million.
Directorate for Priority Crime Investigation (DPCI) - Hawks
The Directorate for Priority Crime Investigation (DPCI), is a crime fighting unit now known as the Hawks.
The Hawks are a new unit which have replaced the former Scorpions and will focus on fighting organised crime, Cyber crime as well as criminal high-flyers who show little regard for South Africa's criminal justice system. It is said the Hawks leave no stones unturned, even targeting the President himself while investigating corrupt politicians.