The hackers gave an ultimatum to the operator of KRÉTA


The data of thousands of Hungarian students, teachers and educational institutions is at risk due to the attack on the KRÉTA platform.

Perhaps the most serious cyber attack case in the history of Hungary is unfolding, after Telex made public a few days ago that a group of hackers hacked the online basic platform of Hungarian public education, KRÉTA (Public Education Registration and Study Basic System), with which they were able to access the personal data of 1.7 million students. access by the perpetrators.

As it turned out, the operator eKRÉTA Informatikai Zrt. did not inform the public or the competent National Data Protection and Freedom of Information Authority about this, violating the data protection regulations of the GDPR, which require notification within 72 hours. The NAIH has since launched an investigation, but the events are far from over.

The Sawarim$ hacker group behind the attack released the source code of KÉRTA on Wednesday, allowing those in the know to look for additional weak points on the platform. The perpetrators communicating on Telegram also promised to publish a specific vulnerability on Thursday, but in the end they gave the operator an ultimatum.

“After the maintenance, we will test it. If the exploit is still working, we will send eKRÉTA Zrt. an official letter reporting the error. If we do not receive a response by Saturday 23:59 (not even a simple confirmation that they have received the letter) then we will publicly upload the exploit to GitHub.”

is written in the group with nearly 2,500 followers, so now the ball is rolling at eKRÉTA, at least if Sawarim$ keeps its word. THE A telex otherwise in the meantime he managed to speak with one of the group’s representatives, who said that an approx. They work as a 4-person Hungarian unit of an international hacker community of 110 people, and there are also minor members among them. Regarding the purpose of the attack, the source gave the following statement:

“I could say that the presentation of the Hungarian systems, how sloppy and how “developed” it all is. Of course, we also wanted to not publish the data, for example, if teachers’ salaries are increased, etc. But nothing came of this. , you can see it. Just a leak and hello.”

The hacker also shared that they have no plans to release personal information, “because we are not like that, here is all the data of minors and teenagers“.

Are you more seriously interested in IT? You can find our news and analyzes for IT and infocommunications decision-makers here.


Source: PC World Online Hírek by pcworld.hu.

*The article has been translated based on the content of PC World Online Hírek by pcworld.hu. If there is any problem regarding the content, copyright, please leave a report below the article. We will try to process as quickly as possible to protect the rights of the author. Thank you very much!

*We just want readers to access information more quickly and easily with other multilingual content, instead of information only available in a certain language.

*We always respect the copyright of the content of the author and always include the original link of the source article.If the author disagrees, just leave the report below the article, the article will be edited or deleted at the request of the author. Thanks very much! Best regards!