Addis Ethiopia Weblog

Ethiopia's World / የኢትዮጵያ ዓለም

  • September 2021
    M T W T F S S
     12345
    6789101112
    13141516171819
    20212223242526
    27282930  
  • Archives

  • Categories

  • Recent Posts

Posts Tagged ‘National Security’

የዶ/ር አህመድ ተቋም “ኢንሳ” የዓለም ዲጂታል ቴክኖሎጂ ባለሙያዎች መሳለቂያ ሆነ

Posted by addisethiopia / አዲስ ኢትዮጵያ on May 31, 2019

የውጭ አገራት ጠላፊዎች የ142 ኢንሳ ወኪሎችን ኢሜይል አድራሻዎችን እና የይለፍ (የምሥጢር) ቃላትን በቀላሉ ለመጥለፍ ችለዋል። ምክኒያቱ፦ የኢንሳ ወኪሎች አስቀድሞ ሊተገበር የሚችልና አሰትማማኝ ያልሆኑ የይለፍ ቃላትን ለመጠቀም በመምረጣቸው ነው።

ይህን መረጃ ያቀረበችልን ባለሙያ፡ አሳፋሪ ስለሆነ ክስተት እንዲህ ብላለች፦

The passwords we discovered in use by INSA were basic (and hackable) beyond belief.“

በ ኢንሳ ጥቅም ላይ የዋሉት የይለፍ ቃላት ለማመን እስኪከብድ መሰረታዊ (እና የሚጠለፉ) ናቸው።”

As the most tech-savvy people in Ethiopia, whose entire careers literally revolve around online and national security, their lack of secure passwords is absolutely shocking„

እጅግ በጣም በተራቀቀ ቴክኖሎጂ ላይ እድሜልካቸውን ለመሰማራት የመረጡና በብሔራዊ ደህንነት ላይ ያተኮሩ ኢትዮጵያውያን ባለሙያዎች አስተማማኝ ያልሆኑ የይለፍ ቃላትን መጠቀማቸው በጣም አስደንጋጭ ነው።”

ኢትዮጵያ አገራችንን እንደ ክፍት መጽሐፍ ማንም ያነባታል ማለት ነው። ምስጢር የሚባል ነገር የለንም፤ ጠላቶቻችን ሁሉ ስለ አገራችን የሚፈልጉትን መረጃ ሶፋቸው ላይ ቁጭ ብለው በቀላሉ ማግኘት ይችላሉ።

ለነገሩማ ተቋሙ በዶ/ር አብይ አህመድ ገና ተልእኮው አገራችንን ብዙ ከሆኑት የውጭ ጠላቶቿ ለመመከት ሳይሆን፥ በማህበራዊ ድረገጾች ላይ ኢትዮጵያውያንን ማሸበርና፣ የህሊና ታጋዮችን ማሸማቀቅ ነው። እውቀታችንን፣ ጊዚያችንን እና ገንዘባችንን ኢትዮጵያን ከውጭ ጠላት በመከላከል ሥራ ላይ ከማሰማራት ኢትዮጵያውያኑን እየመታንና እያዳካምን አገራችንን ለጠላት አሳልፈን ለመስጠት እንሻለን። ከቦሌ አውሮፕላን ማረፊያ የሚደርሱን መረጃዎች እንደሚጠቁሙን፡ ልዩ ፍተሻ የሚካሄድባቸው መንገደኞች ኢትዮጵያውያን እና ሌሎች አፍሪቃውያን ብቻ ናቸው፤ ነጩ ሰተት ብሎ ይገባል/ይወጣል። ምን ዓይነት ዘመን ነው?! ምን ዓይነት ከሃዲ ትውልድ ነው!?

ይህ አሁን የተከሰተው ነገር፡ ምናልባት ኢትዮጵያን የሚጠቅም አጀንዳ ስለሌላቸው ሤራቸው ይጋለጥባቸው ዘንድ የተፈጠረ በጎ ነገር ሊሆን ይችላል። ፀረኢትዮጵያ ሴራቸውማ ፈጠነም ዘገይም በሚገባ መጋለጡ የማይቀር ነው።

በነገራችን ላይ ጦር ሠራዊቱም ተመሳሳይ ክስተት ይታይበታል፤ ስለዚህ እነ አረቢያ እና ግብጽ አዲስ አበባ ድረስ፣ የሕዳሴው ግድብ ድረስ ሰተት ብለው መግባት ይችላሉ ማለት ነው። እጅግ በጣም ያሳዝናል!


Ethiopian INSA Agents Hacked: 142 Agents Chose The Predictable Password


SafetyDetective’s research lab discovered a leak online regarding the Ethiopian National Security Agency (INSA).

The hackers managed to easily scrape a few hundred of INSA agents’ email addresses and passwords, allowing them to potentially log in to INSA’s email server (and personal emails using the same credentials).

INSA notoriously monitors and intercepts all Ethiopian citizens’ communication, in an attempt to ‘safeguard the country’s information and information structures’, according to their website’s mission statement…

Political hacking is nothing new: While the fact that hackers could so easily hack a security agency – and the Ethiopian INSA especially – is alarming, what was even worse was that the passwords we discovered in use by INSA were basic (and hackable) beyond belief. Basically, they weren’t salted and hashed. While big databases usually have their data protected and encrypted (in case someone breaks in), this one didn’t and had common passwords easy to decrypt.

Just take a look for yourself: Screenshot of 42 of the 300 secure email addresses and passwords of Ethiopian INSA employees

Of the 42 passwords screenshotted above (of 300 overall), 9 of those are ‘p@$$w0rd’ – AKA, one-step above ‘password’ which we also saw 3 uses of in total (of 300). That’s really secure, security agents!

In fact, out of the 300 agent email addresses we scraped, we counted 142 uses of ‘p@$$w0rd’ (that’s almost half), and 62 passwords containing a `123’ sequence, similar to another surprising set of unchanged default passwords that were discovered by our team. It goes without saying that, even had the server not been hacked, the passwords we saw post-scraping were easily hackable.

As the most tech-savvy people in Ethiopia, whose entire careers literally revolve around online and national security, their lack of secure passwords is absolutely shocking, although major security breaches affecting ordinary citizens are nothing new.

That and the fact that, when we tried to verify the hack, we were able to use these leaked login credentials again and again.

Since the data was scraped a while ago, it now seems that these credentials no longer work, meaning INSA has either reset these passwords or changed the internal email server.

But, sensitive INSA data is still available to even the most low-level of hackers: taking the leaked usernames and using a brute-force attack on the new email server would still easily hack agents’ new passwords especially if they are as insecure and hackable as they were previously.

We suggest the agents set new, stronger passwords that are as secure as their employment requires them to be: Safety Detective’s Password Checker will allow INSA agents to strengthen their preferred passwords (other than ‘p@$$w0rd’) to prevent any further hacks.

It is recommended that databases encrypt sensitive info, then if the worst happens, attackers will be left with useless hashes.

Because all matters of national security deserve to be securely ‘password’ protected.

Source

_______________________

Posted in Curiosity, Ethiopia, Infos, Media & Journalism | Tagged: , , , , , , , , , , , , | Leave a Comment »

Cardinal Wilfrid Napier: Abortion Culture Cannot Hope for ‘Happy or Peaceful Future’

Posted by addisethiopia / አዲስ ኢትዮጵያ on January 8, 2018

The intrepid Cardinal Wilfrid Napier has once again blasted the modern abortion-rights culture, suggesting that a society that “destroys its unborn babies with such abandon” should never hope to have a happy or peaceful future.

The South African Cardinal was responding to news posted on social media by pro-life champion Obianuju Ekeocha, who noted that only three days into 2018, the world had already seen the deaths of 293,548 unborn babies through “legal” abortion.

I beg all people of goodwill to speak up against this injustice,” Ms. Ekeocha said. “Make it part of your mission this year to be unabashedly pro-life.”

Cardinal Napier replied with a rhetorical question, “How can a culture that destroys its unborn babies with such abandon ever hope to have a happy or peaceful future, which is the deepest-seated desire of every human heart?”

Shortly afterward, the prelate launched another indictment of the abortion lobby, this time in response to an Ohio ad campaign by an abortion provider that calls abortion “life-saving,” “sacred,” “a blessing,” and “safer than childbirth.”

To say abortion is safer than child birth,” the cardinal tweeted, “is like saying ‘life’ in a grave in the cemetery is safer than life on the street. On the street you could get knocked over by a bus, mugged by a desperate drug user, or shot by an extremist!”

This is not the first time this cardinal, who is also the archbishop of Durban, has strongly voiced his firm opposition to the killing of children in the womb.

Last January, the cardinal reacted forcefully to President Obama’s farewell address to the nation by reminding people that Obama had been a global advocate of abortion-on-demand as well as an enemy of religious liberty.

Immediately following the farewell address, Napier retweeted a number of particularly pointed critiques of the outgoing president and his legacy, stressing the irony of Obama as a “son of Africa” funding illegal abortions in Africa as well as Marie Stopes International, the notorious abortion promoter that works throughout African nations.

In the summer of 2016, Napier called for an apology for the countless deaths at the hands of the U.S. abortion industry and, in particular, the disproportionate number of black babies who have been aborted, which he referred to as “genocide.”

Quoting the figure of more than 57 million babies legally aborted in the United States since the 1973 Roe v. Wade Supreme Court decision (from Planned Parenthood’s own Guttmacher Institute), the Cardinal asked, “Isn’t this something we should be apologizing for?”

Source

______

Posted in Conspiracies, Ethiopia, Health, Infos | Tagged: , , , , , , , | Leave a Comment »

 
%d bloggers like this: