Hackers steal Nauta's credentials by exploiting the mobile Internet – Cubanet

User connected to mobile Internet (AFP photo)

HAVANA, CUBA. – Although the Internet connection in mobile phones opens up a world of possibilities for Cubans, it also generates endless opportunities for hackers trying to access the Internet more conveniently by stealing the credentials of Nauta from other users.

Since yesterday, the Telecommunications Company of Cuba (ETECSA) has started to implement Internet access through mobile data. The almost 6 million active lines must wait for a message from the state company that notifies the activation of the service on each mobile phone. According to official statements, the decision responds to congestions that an avalanche of requests would cause at the same time. Today the message will reach the numbers starting with 54 and 55.

Scrappionato, based on the range of cell numbers, some users have started to receive fraudulent messages since yesterday. The content of these SMS was intended to supplant the identity of ETECSA to request the credentials of the user Nauta, promising them that they would get free access to the Internet. With the user and password stolen from Nauta, you can log in to the user portal and transfer the available balance to another account.

Captive portal of Etecsa promoting the new Internet service in mobile phones (Author's picture)

"The misleading message came to me and I was tempted to deliver my credentials," said Viviana Cordero, an ETECSA user who was waiting for the message to connect to the Internet for the first time via mobile data.

Because of the lack of prevailing technological knowledge on the island, it would not be surprising if most of them fell into that trap. Currently, those who buy an Internet package are too busy trying to save Megabytes.

Probably, hackers used the ETECSA cell phone number database that has been available to anyone for years.

In an interview with the official press, Jeandy Enrique Rodríguez, head of the department of mobile services in Las Tunas, said that "it is not company policy to require user credentials" and that "this type of message (SMS) is linked to fraudulent activities. "

Even the messages of notices of fictitious prizes have been leaked online. To get the prize, the user must call a number abroad, thus incurring a loss of the main balance.

The Wifi zones have also been targeted by people trying to steal credentials to get more time from the Internet.

Author's photo

In the Roundtable program where the issue of cyber security was addressed, ETECSA executives said they were facing two major problems in the Wi-Fi zones: phishing or identity theft and denial of attacks services performed on the Internet. Wifi zone router.

"Attackers create a portal very similar to ETECSA, users enter username and password and do not know they have been stolen," explained Daniel Ramos, director of ETECSA security operations.

The denial of service is to saturate the routers to which users are connected to leave them without assistance. In this way users are disconnected from the real network and fall into the hands of fictitious networks.

Today, the goal of most of the attacks is to steal the credentials of Nauta to the market over time of the black market on the Internet. ETECSA maintains the price of 1 CUC per hour of navigation in a country where the average salary does not exceed $ 30 per month.


Please enter your comment!
Please enter your name here

This site uses Akismet to reduce spam. Learn how your comment data is processed.