How much does it take to hack a mobile network?
Is electronic government secure
in the era of WikiLeaks and Anonymous?

Is SCADA hacking a Hollywood fiction
or the nowadays reality?
Internet banking: is there any chance to win
over the fraudsters?

Cyber-crimes, cyber-espionage, cyber-war: where do we draw a borderline?

Pages

Thursday, May 22, 2014

The $natch Contest Is Over

The $natch contest took place during Positive Hack Days IV. Contestants needed to detect vulnerabilities in remote banking systems.


The contest was held in two stages. At first, the participants were provided with copies of virtual machines containing vulnerable web services of an online banking system (an analogue of an actual Internet banking system). The participants should detect vulnerabilities in the system within a specified period of time. In the second stage the participants were to exploit the vulnerabilities for unauthorized money withdrawal.

The remote banking system iBank was designed especially for the contest. It contained vulnerabilities that occurs in real life.

Participants had an hour to use the vulnerabilities they had detected during the first stage and to transfer the money from the ATM to their own account. 20,000 rubles were stored in the system.
This year, hackers were about to empty the account of the virtual bank. 17,000 rubles were stolen. Hackers could also attack the accounts of other participants.

The winner was d4d. He managed to steal 9359.71 rubles from the system. A participant named Helm took second place having withdrawn 6 thousand rubles. BigBear has stolen 533 rubles and came third.

4 comments:

  1. In my opinion, you can get really good motivation because of contest. On https://domyhomework.guru/blog/how-to-get-a-phd I read useful info and now I want to get PhD.

    ReplyDelete
  2. The contest was held in two stages. At first, the participants were provided with copies of virtual machines containing vulnerable web services of an online banking system TellTheBell

    ReplyDelete
  3. شركة مكافحة النمل الابيض ببريدة
    شركة تنظيف ببريدة
    شركة تنظيف شقق ببريدة
    شركة تنظيف مجالس ببريدة
    شركة تنظيف فلل ببريدة
    شركة تنظيف منازل ببريدة
    شركة مكافحة حشرات ببريدة
    شركة مكافحة حشرات بعنيزة
    https://beerm-ksa.com/%D9%85%D9%83%D8%A7%D9%81%D8%AD%D8%A9-%D8%A7%D9%84%D9%86%D9%85%D9%84-%D8%A7%D9%84%D8%A7%D8%A8%D9%8A%D8%B6-%D8%A8%D8%A8%D8%B1%D9%8A%D8%AF%D8%A9/

    Cleaning company in Buraidah is the most powerful companies providing cleaning services because it offers its workers trained and have experience in this field. The company uses modern methods and methods of cleaning and uses modern cleaning and rinsing equipment such as steam cleaning and other appliances used by the company in cleaning. Cleaning the houses, villas, palaces and companies. The company uses the method of steam cleaning, which kills germs and bacteria and is an effective solution for all types of dirt and stains

    ReplyDelete