Hacking Incident #294: University Center of FEI Campus São Paulo Brazil (ojs.fei.edu.br) Hacked by Rizka Xploit

Incident Date: October 16, 2020, 20:19:50 (WIB)

Hacker Details:
Hacker Name: Rizka Xploit
Hacker Group: Bojonegoro Cyber Security

Website Details:
URL: www.ojs.fei.edu.br/ojs/public/
System: Linux
Web Server: Apache
IP: 186.215.158.56
Location: Brazil

Incident Details:
Proof of Concept: Known vulnerability (unpatched system)
Reason: Heh…just for fun!

Archive Page:
https://defacer.id/mirror/id/116269

Cyber Attack Report’s Page:
https://defacer.id/cyber-attack-report/116269

The University Center of FEI Campus São Paulo, particularly its Open Journal Systems (OJS) page (www.ojs.fei.edu.br/ojs/public/), was hacked by Rizka Xploit, a hacker affiliated with the Bojonegoro Cyber Security group. This attack targeted an unpatched vulnerability in the university’s system, making it susceptible to exploitation.

The hacker utilized a known vulnerability, a common attack vector in systems that fail to update or patch security flaws. Exploiting this vulnerability allowed the hacker to manipulate the public section of the OJS platform.

Despite the technical nature of the hack, the motive was rather playful, with the hacker stating it was done “just for fun.” Though not seemingly harmful, such incidents can disrupt services and undermine trust in institutional cybersecurity.