Incident Date: October 24th, 2020
Hacker Details:
- Hacker Name: K4TSUY4-GH05T
- Hacker Group: 7Ghost-Team
Website Details:
- URL: https://etempahan.selangor.gov.my/
- System: Windows 2008
- Web Server: Apache
IP: 211.25.230.141
Location: Malaysia
Incident Details:
- Date: October 24th, 2020 13:39:34 (WIB)
The Malaysia Selangor State Government Portal website (etempahan.selangor.gov.my) was compromised on the specified date. The attacker, identified as K4TSUY4-GH05T from the hacker group 7Ghost-Team, targeted and altered the website.
The Proof of Concept for this attack involved an SQL Injection vulnerability. This method allows the attacker to inject malicious SQL queries into the website’s database, potentially gaining unauthorized access to or altering sensitive information.
The reason for this hacking incident was stated as “I just want to be the best defacer,” indicating that the attacker’s motivation was driven by personal ambition to excel in defacing activities.
For more information, visit the Archive Page: https://defacer.id/mirror/id/118771 and the Cyber Attack Report’s Page: https://defacer.id/cyber-attack-report/118771.