By Prince Moore
Concern is being raised about the level of monitoring for government websites, with one cybersecurity consultant highlighting that the recent hacking of JamaicaEye may have happened long before it was detected by its handlers.
JamaicaEye is part of a network of camera surveillance systems across the island, which the government says should increase public safety.
The Ministry of National Security on Sunday confirmed that a cyber-incident affected access to the JamaicaEye website.
Cybersecurity consultant Gavin Dennis said the sequence of events on the website indicates a weakness in the system.
“For the website, the search results for Google was changed. So that means Google had detected that something had happened with this site. Google was reporting that there was some Chinese language on the site, and Google tends to do that maybe every 24 hours, to crawl the web and see, has your website changed? That’s how it shows the results to people.”
“Now, that’s very common with web shells. And so for it to be there in the search result, which is only crawled, let’s say, about every 24 hours, it means that the site would have been compromised for a while. The owners did not realise until the discussion started in social media,” Mr. Dennis pointed out.
He was speaking Wednesday night on TVJ’s All Angles.
National Security Minister Dr. Horace Chang, who was also a guest on the programme, confirmed that the recent cyberattack on JamaicaEye took place days before it was reported to the ministry by the Jamaica Cybersecurity Incident Response Team (JaCIRT).
But he maintained that there was no compromise to video footage or evidence recorded by the JamaicaEye cameras.