Despite the second-largest telecommunications provider in Vietnam asserting that the security flaw on their website has been patched, the underground community on the Internet continues to share code that exploits the vulnerability at www.mobifone.com.vn, allowing unauthorized modifications to its content.
VnExpress has discovered a link to MobiFone’s interface that prompts users to log in to reset their password. However, instead of displaying the message “The number 090… and date of birth 01/01/1970 do not match” when a user inputs incorrect information, the message has been altered to “The number 0 VAI VUI NE MOBILE is highly secure, and date of birth -1/1/-1 do not match“.
 |
A section of the MobiFone website interface showing altered data (text in red) |
 |
Zoomed-in image of the data altered by hackers on the MobiFone site |
To investigate further, at 3:40 PM today, the journalist attempted to change the information on the provided link. The result was that the content on the site was indeed altered at will.
Half an hour later, this flaw was no longer present on the MobiFone site. However, it raises concerns about the security status at this address. Malicious actors may not simply be “browsing” and leaving a few messages. Recently, a representative of this telecommunications company asserted that MobiFone’s systems are among the safest and most secure available today. However, the Information Security Network VSEC firmly maintains the viewpoint that MobiFone should calmly analyze the situation, implement improvements, and enhance monitoring of system activities to guard against potential data breaches that could jeopardize customer rights and privacy.
Nguyễn Hằng
