August 13th, 2020 | Cybersecurity Daily
On August 13th, 2020, the SAPALH Mexico website, accessible at http://sapalh.gob.mx/dot.html, was compromised. The attacker, known as MalaikatHati from the 7Ghost-Team, utilized an SQL injection vulnerability to gain unauthorized access and deface the site.
Hacker Details:
- Hacker Name: MalaikatHati
- Hacker Group: 7Ghost-Team
Website Details:
- URL: http://sapalh.gob.mx/dot.html
- System: Linux
- Web Server: Apache
- IP: 50.116.84.117
- Location: United States
Incident Details:
- Date: August 13th, 2020 22:25:13 (WIB)
- Proof of Concept: SQL Injection
- Reason: Revenge against that website
Archive Page: https://defacer.id/mirror/id/95431
Cyber Attack Report’s Page: https://defacer.id/cyber-attack-report/95431
The attack was executed using SQL injection, a method where malicious SQL commands are inserted into a web form or URL to manipulate the database. This vulnerability can lead to unauthorized data access or modification.
The motive for this attack was stated as “Revenge against that website,” suggesting that the breach was carried out in response to a perceived grievance or conflict related to the website.