July 11th, 2024 | Cybersecurity Daily
On July 11th, 2024, the Tourism and Creative Economy Agency of the Republic of Indonesia (KEMENPAREKRAF) website (apidatabsdk.kemenparekraf.go.id) was compromised by z-prvthax from the ParanoidHax group. The incident occurred at 11:09:21 WIB, involving an attack that exploited a known vulnerability in the system.
Hacker Details: The attacker, identified as z-prvthax, is associated with the ParanoidHax group. The exact motive behind the attack is not available, suggesting it may have been a demonstration of skills or part of a broader hacking campaign.
Website Details:
- URL of affected page: https://apidatabsdk.kemenparekraf.go.id/storage/z.php
- System: Linux
- Web Server: Nginx
- IP Address: 103.225.242.25
- Location: Indonesia
Incident Details: The breach was achieved through a known vulnerability in the system, which indicates that the targeted server was not adequately patched. This type of vulnerability often involves exploiting outdated software or misconfigured settings that were not addressed in a timely manner.
For further information, you can visit the archived page at https://defacer.id/mirror/id/122220 and the detailed cyber attack report at https://defacer.id/cyber-attack-report/122220.