Welcome, Guest: Register On Nairaland / LOGIN! / Trending / Recent / NewStats: 3,176,457 members, 7,897,941 topics. Date: Monday, 22 July 2024 at 11:24 PM |
Nairaland Forum / Science/Technology / Webmasters / GTBank Website Has Been Hijacked? (11149 Views)
Is This A Pirated Gtbank Website? / Gtbank Website Hacked / Gtbank Website Review (2) (3) (4)
Re: GTBank Website Has Been Hijacked? by webstradamus: 7:18pm On Feb 15, 2012 |
chidyke77: Do not take his word for it. Most of the bank's staff don't even understand what happened. Only the IT security guys know and they're not allowed to divulge info about it. If I were you, I would immediately change my PIN and any other credential associated with my account with them. Since they have refused to admit the fact that they were compromised, rest assured that they will not be held liable should anything happen to the funds in your account. |
Re: GTBank Website Has Been Hijacked? by chidyke77(m): 7:26pm On Feb 15, 2012 |
webstradamus:tnks a lot, i hv to change my password immediately. |
Re: GTBank Website Has Been Hijacked? by PapaBrowne(m): 7:51pm On Feb 15, 2012 |
I experienced it 2 days ago and yesterday. I had to make a very important transfer so I had to look for a way around. I observed that the problem existed in Chrome and Mozilla browsers, so I tried Explorer and it worked without problems. Funnily, I called GTBank to report the incident and the customer care representative said he hasn't gotten any reports of that nature, which I could tell he was lying cos he went ahead to assure me that it would soon be resolved. However since then, I have been checking my account balance regularly!! Isn't good at all for a banks we repose so much trust in. |
Re: GTBank Website Has Been Hijacked? by webstradamus: 8:01pm On Feb 15, 2012 |
PapaBrowne: Damn!! The attack was targeted at machines running IE6 - IE8. |
Re: GTBank Website Has Been Hijacked? by denzel2009: 8:20pm On Feb 15, 2012 |
I'm sorry for you if you experienced abnormalities and still used it anyway. You could have used an unsecured session displaying your details to a 3rd party. |
Re: GTBank Website Has Been Hijacked? by kaysy(m): 8:54pm On Feb 15, 2012 |
the website http://www.gtbank.com/ is working perfectly well here, could it be that the so called hijack has been resolved? i just came across this message now and checked the site and all things proved to be normal including the internet banking, so i guess u should try again bro |
Re: GTBank Website Has Been Hijacked? by 8figure(m): 9:06pm On Feb 15, 2012 |
@webstradamus You are absolutely correct, and the guy was glad that it later opened with the most vulnerable set of browsers. |
Re: GTBank Website Has Been Hijacked? by PapaBrowne(m): 11:33pm On Feb 15, 2012 |
webstradamus: denzel2009: 8figure: I had to make the transaction. I didn't have a choice but to take the risk. What gave me confidence is the extra security provided by the little device called the token. My account is safe. But I have moved funds out of it to my other accounts. Asides, if anything happens, GT would have to pay for it. |
Re: GTBank Website Has Been Hijacked? by logica(m): 11:51pm On Feb 15, 2012 |
PapaBrowne:LOL. You'll be on a long thing. And then, you will not be able to prove that it was their negligence and not your ignorance that caused the loss. |
Re: GTBank Website Has Been Hijacked? by denzel2009: 11:54pm On Feb 15, 2012 |
logica:I was about to tell him to read about the concept of non-repudiation |
Re: GTBank Website Has Been Hijacked? by ocheejemb: 1:37am On Feb 16, 2012 |
denzel2009: If you use the service normally and due to GTB's vulnerabilty the connection is compromised then using this same concept of Non-Repudiation its GT thats at fault |
Re: GTBank Website Has Been Hijacked? by chelseabmw(m): 1:55am On Feb 16, 2012 |
Re: GTBank Website Has Been Hijacked? by Ecash1: 2:10am On Feb 16, 2012 |
It is phishing not actually server attack. Those guys with .tk extension are actually fond of that, they will send you info ( I received a mail to this effect last week), that you should confirm your bank details by clicking here ( A link to supposed GTBbank website) that will then direct you to their dubious website, similar to the internet platform of GTB. On careful look, you will discover that the address in the address bar is not reading GTB , but the phising website.tk or like. All they want is your internet banking details, but they are yet not too wise. |
Re: GTBank Website Has Been Hijacked? by webstradamus: 2:29am On Feb 16, 2012 |
E cash: Are you for real? |
Re: GTBank Website Has Been Hijacked? by klas(m): 3:04am On Feb 16, 2012 |
If the 'phisher' get my Internet banking details, how will they generate my token numbers necessary for most transactions on Gtb platform? |
Re: GTBank Website Has Been Hijacked? by Kashif(m): 8:01am On Feb 16, 2012 |
The token has not worked since last night! |
Re: GTBank Website Has Been Hijacked? by ProGSM(m): 8:06am On Feb 16, 2012 |
They still better than others and the hack will not affect any bodies account. |
Re: GTBank Website Has Been Hijacked? by qholar(m): 8:11am On Feb 16, 2012 |
@OP - I think GTB did a site maintenance yesterday, but i later gain access to their website in the evening and i succeeded with my transaction via internet banking |
Re: GTBank Website Has Been Hijacked? by Ecash1: 9:08am On Feb 16, 2012 |
Yes @ webstradamus I am for real, infact realer , I can forward to you the mail that these guys sent to me, I still have it in my box. @ Kclas, that is why i said they are not too wise, there are other security gates that they can not even smell, besides the Id they are taken through phising, be that as it may they can still wreck some havoc without the token. |
Re: GTBank Website Has Been Hijacked? by denzel2009: 10:40am On Feb 16, 2012 |
oche_ejemb: If GT bank haven't come out to publicly disclose that their systems were compromised like reliable companies like Sony, VISA and PayPal did, it's your word against theirs. You'd be told you have been a victim of phishing attack or your computer is a zombie within a botnet. Your money don go tey tey I have heard horror stories of people receiving text messages of fraudulent transfers from their accounts over the week-end and they haven't been refunded cos GT bank could not establish they were fraudulent transactions. Stay safe bro! |
Re: GTBank Website Has Been Hijacked? by Jarus(m): 10:51am On Feb 16, 2012 |
I don't think there was any attack or their system was compromised. I think it's just a network irregularity for few hours. I experienced it and after some refreshing, I carried out my transactions smoothly. |
Re: GTBank Website Has Been Hijacked? by ogbongzky(m): 11:14am On Feb 16, 2012 |
I can't transfer. Keeps telling me the token generated is not valid, that I should keep trying. |
Re: GTBank Website Has Been Hijacked? by Harzan(m): 12:21pm On Feb 16, 2012 |
y always gtb!!! |
Re: GTBank Website Has Been Hijacked? by doncigalo: 2:26pm On Feb 16, 2012 |
Plz can someone post the contact details or location of GTB's IT department. I have uncovered a potential flaw with their electronic banking portal that I need to inform them about. |
Re: GTBank Website Has Been Hijacked? by webstradamus: 9:24pm On Feb 16, 2012 |
Looks like they're doing a total cleanup of the infected files right now. And to think no official statement has been given regarding the incident? I'm really disappointed in them. Honesty should be a major virtue in banking!!!
|
Re: GTBank Website Has Been Hijacked? by rejoice3: 12:07am On Feb 17, 2012 |
Yes @ webstradamus I am for real, infact realer , I can forward to you the mail that these guys sent to me, I still have it in my box. @ Kclas, that is why i said they are not too wise, there are other security gates that they can not even smell, besides the Id they are taken through phising, be that as it may they can still wreck some havoc without the token. ------------------------------------------------------------------------------------------------ E Cash, I ask you again, are you for real? Let me answer that, you're not! When you personally type the domain name into your address bar and get redirected, that's pharming not phishing. When some bloke sends you an email purporting to come from your bank, and asking you to click on a (bogus) link, that's phishing. For the records, the site was actually hijacked but I didn't find any malicious code on the attacker's server during my analysis. I think it was just some sort of denial-of-service attack. The site was down for no less than 14hrs on Wednesday (9:30 - 23:30). I checked back briefly yesterday morning but found no malicious iframe on their landing page anymore. As someone said, what disappointed me most is that GTB did not have the decency to explain the outage or apologise to the impacted customers by putting some message on their website. I understand the possible impact that might have had on consumer confidence, but their PR dept could have worked with IT / IT Security to put some sort of spin on the whole episode. Keeping quiet and pretending nothing happened just makes people lose trust in the bank |
Re: GTBank Website Has Been Hijacked? by rejoice3: 12:21am On Feb 17, 2012 |
@Webstradamus, Thanks for that screenshot. This is so disgraceful. A popular customer-facing site? I mean, they should have a default "site down for maintenance" banner to put up whenever any clean up activity is ongoing. How can they possibly deny the outage after being caught pants down as above? As you rightly said, they're dishonest. I'll advise every user of their online banking service to assume their PC is infected already and use a live linux CD for their banking activities. Two-factor authentication is already susceptible to man-in-the-browser (MITB) attack, so dont let your little token give you a false sense of security. Anyone willing to know more about live CD can email security@digiss.net |
Re: GTBank Website Has Been Hijacked? by ocheejemb: 1:27am On Feb 17, 2012 |
Hey guys! Check this out, Could this be what happened or was to happen to GTB's website? Someone said he got through during the time of this said attack, I hope he's checked his details properly, http://www.bbc.co.uk/news/technology-16812064 This attack is against the kind of mechanism GTB uses, the autogenerated token |
Re: GTBank Website Has Been Hijacked? by mrperfect(m): 6:15pm On Feb 17, 2012 |
This isn't a pretty picture hope they have recovered now. |
Re: GTBank Website Has Been Hijacked? by Obinoscopy(m): 10:08am On Feb 18, 2012 |
Too bad |
7 Practical Ways Through Which You Can Earn Massively In Blogging / I Buy And Sell Bitcoins, Converts Gift Cards To Instant Cash In Bank / What Is Work Of Website Designer And Website Developer?
(Go Up)
Sections: politics (1) business autos (1) jobs (1) career education (1) romance computers phones travel sports fashion health religion celebs tv-movies music-radio literature webmasters programming techmarket Links: (1) (2) (3) (4) (5) (6) (7) (8) (9) (10) Nairaland - Copyright © 2005 - 2024 Oluwaseun Osewa. All rights reserved. See How To Advertise. 45 |