August 13th, 2019 | Cybersecurity Daily
On August 13th, 2019, the website of the Mineral Technology Research Center (BTPM LIPI), found at http://bptm.lipi.go.id/wp-content/uploads/, was compromised. The attacker, identified as Mr.L3RB1 from the Sorong6etar group, executed a brute force attack to gain unauthorized access to the site, resulting in defacement.
Hacker Details:
- Hacker Name: Mr.L3RB1
- Hacker Group: Sorong6etar
Website Details:
- URL: http://bptm.lipi.go.id/wp-content/uploads/
- System: Linux
- Web Server: Apache
- IP: 203.160.128.6
- Location: Indonesia
Incident Details:
- Date: August 13th, 2019 11:11:01 (WIB)
- Proof of Concept: Brute Force Attack
- Reason: Heh…just for fun!
Archive Page: https://defacer.id/mirror/id/88081
Cyber Attack Report’s Page: https://defacer.id/cyber-attack-report/88081
The attacker used a brute force attack to break into the website. This method involves systematically attempting various password combinations until the correct one is found, exploiting weak or insecure credentials. Once inside, the hacker was able to make unauthorized changes to the site.
The reason for the attack was “Heh…just for fun!” indicating that the hacker’s goal was to challenge their skills or cause disruption for entertainment, without pursuing any specific goal or agenda.