Internet Solutions (IS) has confirmed that the security breach reported for one of its business DSL user provisioning systems yesterday was not a hack. According to the IS log, there is no clear indication that the site was hacked, but that an authorised username and password was used to access the system. 

“The user did attempt various SQL injections, but this was only after successful login,” says Prenesh Padayachee, Chief Technology Officer at Internet Solutions. “There were no failed login attempts,” he adds. 

Padayachee adds that no other clients’ information was accessed in the process.  

The breach resulted in a number of MWEB business DSL customers’ usernames and passwords being made publicly available. IS has since been working closely with MWEB to re-provision security on the affected system and to monitor for unusual activity. “Additional security has been put in place to further enhance security,” says Padayachee.  “Internet Solutions is working closely with MWEB to ensure the continued functioning of the service in a robust fashion whilst these services are being migrated onto different systems,” he concludes.