Date: July 29th, 2019 | 04:09:52 WIB
Publication: Cybersecurity Daily
The Bureau of Planning and Foreign Cooperation under the Ministry of Environment in Indonesia was hacked by MR.IX, a member of the InfinityCyber group. The defacement occurred at the URL http://biropkln.menlh.go.id/L0z.php.
Hacker Details:
- Hacker Name: MR.IX
- Hacker Group: InfinityCyber
Website Details:
- URL: http://biropkln.menlh.go.id/L0z.php
- System: Linux
- Web Server: Apache
- IP: 27.50.25.166
- Location: Indonesia
Incident Details:
- Proof of Concept: SQL Injection
- Reason: Heh…just for fun!
- Archive Page: https://defacer.id/mirror/id/84693
- Cyber Attack Report’s Page: https://defacer.id/cyber-attack-report/84693
This incident underscores the continued threat posed by SQL Injection attacks, particularly on public sector websites that may not have robust security measures in place. SQL Injection allows attackers to exploit weaknesses in an application’s database handling, enabling unauthorized access to sensitive data and the ability to deface web content.
The hacker’s motive, as stated, was purely for amusement, reflecting a common trend among cybercriminals seeking attention or bragging rights within the hacking community. Although seemingly trivial, these attacks can still damage the credibility and security posture of public institutions.