Incident Date: August 29th, 2024
Hacker Details:
- Hacker Name: SukaBintang01
- Hacker Group: garudasecurity
Website Details:
- URL: https://papua.kemenag.go.id/files/gallery/add094f0-5846-4b79-a36e-86f6d9a3a743.htm
- System: Linux
- Web Server: Nginx
IP: 103.7.13.69
Location: Indonesia
Incident Details:
- Date: August 29th, 2024 21:20:26 (WIB)
The Kemenag Kanwil Papua website (papua.kemenag.go.id) was defaced by SukaBintang01. The compromised page was located at https://papua.kemenag.go.id/files/gallery/add094f0-5846-4b79-a36e-86f6d9a3a743.htm.
The Proof of Concept used in this incident was a “Known vulnerability (i.e. unpatched system),” which means the attacker exploited a vulnerability that had not been patched.
The Reason for the attack was stated as “Heh…just for fun!” indicating the attacker’s motivation was merely for entertainment or challenge.
For more details, see the Archive Page: https://defacer.id/mirror/id/124818 and the Cyber Attack Report’s Page: https://defacer.id/cyber-attack-report/124818.