Big security lapses make Mideast firms easy prey

Big security lapses make Mideast firms easy prey
Big security lapses make Mideast firms easy prey 

By Arno Maierbrugger
Deputy Business Editor
Gulf News
July 1, 2010

Dubai: It takes nothing more than a simple Google search and the use of 
an appropriate keyword string to get access to the web server of some of 
the largest companies in the Middle East, a recent trial of German web 
hacking experts has shown.

They said they were able to access web servers of the world's largest 
oil exploration company, Saudi Aramco, of the Pearl Qatar development 
and several other regional company networks.

According to a member of the German hacker community, who informed Gulf 
News but understandably does not want to have his name published, 
Aramco's "poorly secured" web server is "like an open book" for those 
who conduct a specially crafted search query to reach file directories. 
The web specialists were able to access and download confidential 
documents such as technical drawings, detailed information on oil rigs 
and even blueprints of the infrastructure, fire protection system and 
communication network of the world's largest oil field, Al Ghawar. Some 
of the downloaded documents can be viewed on the hackers' website.


Attend Black Hat USA 2010, hosted at Caesars Palace in Las Vegas, Nevada
July 24-29th, offering over 60 training sessions and 11 tracks of Briefings
from security industry elite. To sign up visit 

Site design & layout copyright © 1986-2014 CodeGods