Slashdot Mirror

← Back to Stories (view on slashdot.org)

Hackers Broke Into Brazil Power Grid Operator's Website Last Thursday

Posted by kdawson on from the wolf-no-really-this-time-i-mean-it dept.

An anonymous reader writes "A week ago, 60 Minutes had a story (we picked it up too) claiming that hackers had caused power outages in Brazil. While this assertion is now believed to be in error, hackers were inspired by the story actually to do what was claimed. Last Thursday, they broke into ONS, the operator of the grid (Google translation; Portuguese original). DarkReading has specific details on the SQL injection vulnerabilities the hackers probably used."

2 of 85 comments (clear)

  1. actually by Anonymous Coward · · Score: 5, Informative

    the hackers invaded the _website_, the ONS network of computers that actually control the system is private and not connect to the internet.

  2. Re:full disclosure by mitoyarzun · · Score: 5, Informative

    Here in Chile a guy reported the government about a serious bug on their outsourcing website (chilecompra.cl), they ignored him for months, and he made the bug public (you were able to know your competition's offer to the government just by changing a GET parameter).

    He was condemned by a court for breaking the law, more info here (spanish)

    What kind of action should one take in those cases? Has this happened before in other countries?