August 18th, 2020 | Cybersecurity Daily
On August 18th, 2020, the website of Wendy House School Nepal (wendyhouse.edu.np) was compromised by the hacker known as #No_IDeNtiTy, associated with the XploitSec-ID group. The breach occurred at 18:46:39 WIB and was executed using an SQL Injection attack.
Hacker Details: The attack was carried out by #No_IDeNtiTy from the XploitSec-ID group. The motivation behind the attack was reported as “As a challenge,” indicating a competitive or personal objective.
Website Details:
- URL of affected page: https://wendyhouse.edu.np/ft.php
- System: Linux
- Web Server: Unknown
- IP Address: 104.24.120.183
- Location: United States
Incident Details: The SQL Injection vulnerability exploited in this attack allowed unauthorized access to the website’s database. This incident underscores the need for robust database security practices and effective input validation.
For more information, refer to the archived page at https://defacer.id/mirror/id/99803 and the detailed cyber attack report at https://defacer.id/cyber-attack-report/99803.