On September 9th, 2018, the official website of the Special Task Force for Upstream Oil and Gas Business Activities was hacked and defaced by Mr.Cr07, a member of the 1ntr0ver7_Tersakiti hacking group. The incident involved exploiting a known vulnerability in the system.
Hacker Details:
- Hacker Name: Mr.Cr07
- Hacker Group: 1ntr0ver7_Tersakiti
Website Details:
- URL: https://skkmigas.go.id/sad.htm
- System: Unix
- Web Server: CloudFlare
- IP Address: 104.20.88.39
- Location: United States
Incident Details:
- Date: September 9th, 2018, 21:33:29 (WIB)
- Proof of Concept: Known vulnerability (i.e., unpatched system)
- Reason: Heh…just for fun!
- Archive Page: https://defacer.id/mirror/id/2465
- Cyber Attack Report’s Page: https://defacer.id/cyber-attack-report/2465
Summary:
The website of the Special Task Force for Upstream Oil and Gas Business Activities was compromised by Mr.Cr07, who utilized a known unpatched vulnerability to execute the attack. This incident underscores the critical need for timely patch management and system updates.
Proof of Concept:
The attack was carried out by exploiting a known vulnerability, which involved an unpatched flaw in the system that allowed the hacker to gain unauthorized access and deface the website.
Reason:
Mr.Cr07 claimed that the defacement was done merely for amusement, with no underlying political or financial motives.