August 12th, 2019 | Cybersecurity Daily
On August 12th, 2019, the SSDM POLRI website, found at http://ssdm.polri.go.id/x.php, was compromised. The attacker, identified as xMrCold from the TEH Squad Cyber group, exploited a known vulnerability in an unpatched system to breach the site. This resulted in unauthorized changes and defacement of the website.
Hacker Details:
- Hacker Name: xMrCold
- Hacker Group: TEH Squad Cyber
Website Details:
- URL: http://ssdm.polri.go.id/x.php
- System: Linux
- Web Server: Apache
- IP: 120.29.228.9
- Location: Indonesia
Incident Details:
- Date: August 12th, 2019 19:48:21 (WIB)
- Proof of Concept: Known Vulnerability (Unpatched System)
- Reason: Heh…just for fun!
Archive Page: https://defacer.id/mirror/id/87867
Cyber Attack Report’s Page: https://defacer.id/cyber-attack-report/87867
The attacker took advantage of a known vulnerability in the website’s system, which had not been patched. Exploiting such vulnerabilities allows unauthorized access to systems by bypassing security measures that were either outdated or improperly maintained. This led to unauthorized modifications on the website.
The reason for the attack was given as “Heh…just for fun!” This suggests that the hacker’s motive was not driven by a specific agenda but rather to demonstrate their abilities or create disruption for amusement without a clear objective.