August 24th, 2020 | Cybersecurity Daily
On August 24th, 2020, the website of VTC Academy Vietnam (vtc.edu.vn) was compromised by the hacker known as #No_IDeNtiTy, affiliated with the XploitSec-ID group. The breach occurred at 06:52:21 WIB and was carried out using an SQL Injection attack.
Hacker Details: The attack was orchestrated by #No_IDeNtiTy from the XploitSec-ID group. The hacker’s motivation was stated as “I just want to be the best defacer,” indicating a desire for recognition in the hacking community.
Website Details:
- URL of affected page: http://vtc.edu.vn/ft.php
- System: Linux
- Web Server: Nginx
- IP Address: 118.69.174.214
- Location: Viet Nam
Incident Details: The SQL Injection vulnerability allowed unauthorized access to the website’s database, leading to the defacement. This incident highlights the critical need for secure coding practices to prevent database manipulation.
For more information, refer to the archived page at https://defacer.id/mirror/id/101590 and the detailed cyber attack report at https://defacer.id/cyber-attack-report/101590.