Publication Date: September 21, 2020
On September 21st, 2020, the website of Thailand Institute of Chest Diseases (ccit.go.th) was compromised by the hacker known as K4TSUY4-GH05T, who is affiliated with the hacker group 7Ghost-Team. The attack specifically targeted the URL https://ccit.go.th/v.html, indicating a breach involving a specific page of the institute’s website.
The attacker employed SQL Injection as the proof of concept for this incident. SQL Injection involves inserting or manipulating SQL queries through input fields to exploit vulnerabilities in a web application’s database. This method was used to gain unauthorized access and potentially manipulate or retrieve sensitive data from the website’s database.
The reason given by the hacker for this attack was a desire to be recognized as the best defacer. This suggests that the primary motivation behind the breach was to achieve prominence within the hacking community by demonstrating superior defacing skills.
Hacker Details:
- Hacker Name: K4TSUY4-GH05T
- Hacker Group: 7Ghost-Team
Website Details:
- URL: https://ccit.go.th/v.html
- System: Windows 2008
- Web Server: Apache
- IP: 110.164.134.67
- Location: Thailand
Incident Details:
- Date: September 21st, 2020 14:16:19 (WIB)
- Proof of Concept: SQL Injection
- Reason: I just want to be the best defacer
Archive Page: https://defacer.id/mirror/id/108979
Cyber Attack Report’s Page: https://defacer.id/cyber-attack-report/108979