Publication Date: September 8, 2020
On September 8th, 2020, the website of the Mexico Secretariat of Agriculture (sicde.agricultura.gob.mx) was compromised by the hacker known as K4TSUY4-GH05T, who is affiliated with the hacker group 7Ghost-Team. The attack specifically targeted the URL http://sicde.agricultura.gob.mx/v.html, indicating a breach involving a particular page of the government’s agriculture website.
The attacker utilized SQL Injection as the proof of concept for this incident. SQL Injection is a method where malicious SQL queries are inserted into an input field to manipulate or access the database behind a web application. This vulnerability allowed the attacker to exploit the site’s data or functionality.
The reason given by the hacker for this attack was a desire to be recognized as the best defacer. This implies that the primary motivation behind the breach was to achieve notoriety within the hacking community by showcasing their defacing skills.
Hacker Details:
- Hacker Name: K4TSUY4-GH05T
- Hacker Group: 7Ghost-Team
Website Details:
- URL: http://sicde.agricultura.gob.mx/v.html
- System: Linux
- Web Server: Apache
- IP: 187.188.62.7
- Location: Mexico
Incident Details:
- Date: September 8th, 2020 18:15:28 (WIB)
- Proof of Concept: SQL Injection
- Reason: I just want to be the best defacer
Archive Page: https://defacer.id/mirror/id/106091
Cyber Attack Report’s Page: https://defacer.id/cyber-attack-report/106091