Date: June 19th, 2019 | 14:41:55 WIB
Publication: Cybersecurity Daily
The Dewan Perwakilan Daerah (DPD) Republik Indonesia website was compromised, with the URL http://beta.dpd.go.id/owned.html being specifically targeted. The attack was executed by the hacker known as Xwizx404, affiliated with the hacker group Majalengka Security Hacker.
Hacker Details:
- Hacker Name: Xwizx404
- Hacker Group: Majalengka Security Hacker
Website Details:
- URL: http://beta.dpd.go.id/owned.html
- System: Linux
- Web Server: LiteSpeed
- IP: 103.134.152.2
- Location: Singapore
Incident Details:
- Proof of Concept: SQL Injection
- Reason: I just want to be the best defacer
- Archive Page: https://defacer.id/mirror/id/71721
- Cyber Attack Report’s Page: https://defacer.id/cyber-attack-report/71721
The attack employed SQL Injection, a technique that exploits vulnerabilities in a website’s database interaction. This indicates the presence of insufficient input validation or sanitization.
The hacker’s motivation was stated as a desire “to be the best defacer,” reflecting a personal challenge rather than any political or ideological goal.