Publication Date: May 31st (WIB)
Incident Date: May 31st, 2024 06:22:52 (WIB)
The Government of Bandar Lampung City website (bandarlampungkota.go.id) experienced a significant hacking incident. The hacker, identified as Mr insane, affiliated with the group TEAM_INSANE_PK, managed to take over 43 subdomains of the website.
Hacker Details:
- Hacker Name: Mr insane
- Hacker Group: TEAM_INSANE_PK
Website Details:
- System: Linux
- Web Server: Apache
- IP: 103.106.114.121
- Location: Indonesia
Hacked Subdomains:
This section lists the URLs of the 43 subdomains of the Government of Bandar Lampung City website that were compromised during the hacking incident. Each link represents a specific page or resource that was taken over by the hacker.
- https://dispar.bandarlampungkota.go.id/images/BOX.aspx
- https://disperdag.bandarlampungkota.go.id/images/BOX.aspx
- https://disperkim.bandarlampungkota.go.id/images/BOX.aspx
- https://dispora.bandarlampungkota.go.id/images/BOX.aspx
- https://dispusip.bandarlampungkota.go.id/images/BOX.aspx
- https://distani.bandarlampungkota.go.id/images/BOX.aspx
- https://dkp.bandarlampungkota.go.id/images/BOX.aspx
- https://dlh.bandarlampungkota.go.id/images/BOX.aspx
- https://dpm.bandarlampungkota.go.id/images/BOX.aspx
- https://dppkb.bandarlampungkota.go.id/images/BOX.aspx
- https://dpppa.bandarlampungkota.go.id/images/BOX.aspx
- https://kecbumiwaras.bandarlampungkota.go.id/images/BOX.aspx
- https://kecenggal.bandarlampungkota.go.id/images/BOX.aspx
- https://keckedamaian.bandarlampungkota.go.id/images/BOX.aspx
- https://keckedaton.bandarlampungkota.go.id/images/BOX.aspx
- https://keckemiling.bandarlampungkota.go.id/images/BOX.aspx
- https://keclabuhanratu.bandarlampungkota.go.id/images/BOX.aspx
- https://keclangkapura.bandarlampungkota.go.id/images/BOX.aspx
- https://kecpanjang.bandarlampungkota.go.id/images/BOX.aspx
- https://kecrajabasa.bandarlampungkota.go.id/images/BOX.aspx
- https://kecsukabumi.bandarlampungkota.go.id/images/BOX.aspx
- https://kecsukarame.bandarlampungkota.go.id/images/BOX.aspx
- https://kectanjungkarangbarat.bandarlampungkota.go.id/images/BOX.aspx
- https://kectanjungkarangpusat.bandarlampungkota.go.id/images/BOX.aspx
- https://kectanjungkarangtimur.bandarlampungkota.go.id/images/BOX.aspx
- https://kectanjungseneng.bandarlampungkota.go.id/images/BOX.aspx
- https://kectelukbetungbarat.bandarlampungkota.go.id/images/BOX.aspx
- https://kectelukbetungselatan.bandarlampungkota.go.id/images/BOX.aspx
- https://bagperencanaan.keuangansetda.bandarlampungkota.go.id/images/aspxjpg.aspx
- https://bappeda.bandarlampungkota.go.id/images/aspxjpg.aspx
- https://bpbd.bandarlampungkota.go.id/images/aspxjpg.aspx
- https://bpkad.bandarlampungkota.go.id/dokumen/aspxjpg.aspx
- https://damkar.bandarlampungkota.go.id/images/aspxjpg.aspx
- https://dinaspangan.bandarlampungkota.go.id/images/BOX.aspx
- https://dinsos.bandarlampungkota.go.id/images/BOX.aspx
- https://diskopukm.bandarlampungkota.go.id/images/BOX.aspx
- https://kectelukbetungtimur.bandarlampungkota.go.id/images/BOX.aspx
- https://kecwayhalim.bandarlampungkota.go.id/images/BOX.aspx
- https://korpri.bandarlampungkota.go.id/images/BOX.aspx
- https://kwarcab05.bandarlampungkota.go.id/images/BOX.aspx
- https://organisasi.bandarlampungkota.go.id/images/BOX.aspx
- https://polpp.bandarlampungkota.go.id/images/BOX.aspx
- https://rsud.bandarlampungkota.go.id/
Proof of Concept:
The hacking incident exploited a known vulnerability related to an unpatched system. This vulnerability allowed Mr insane to gain unauthorized access to multiple subdomains, demonstrating a failure in the site’s security measures and patch management processes.
Reason:
The hacker’s motivation for the incident appears to be recreational, with Mr insane stating the action was “just for fun.” This highlights the need for robust security measures and continuous monitoring to prevent such incidents, even when the motives are not malicious.