On October 13th, 2018, the website of the Kanjuruhan Kepanjen Regional General Hospital (RSUD) of Malang Regency was compromised and defaced by the hacker ITzCsTFuck, affiliated with the group Ancient One. The attack led to the replacement of the website’s content with unauthorized material.
Hacker Details:
- Hacker Name: ITzCsTFuck
- Hacker Group: Ancient One
Website Details:
- URL: http://rsud-kanjuruhan.malangkab.go.id/imgnews/Cr0TzZ.html
- System: F5-Big IP
- Web Server: Apache
- IP Address: 222.124.213.101
- Location: Indonesia
Incident Details:
- Date: October 13th, 2018, 22:35:33 (WIB)
- Proof of Concept: Known vulnerability (i.e., unpatched system)
- Reason: Not available
- Archive Page: https://defacer.id/mirror/id/9579
- Cyber Attack Report’s Page: https://defacer.id/cyber-attack-report/9579
Summary:
The Kanjuruhan Kepanjen Regional General Hospital (RSUD) of Malang Regency experienced a defacement attack by ITzCsTFuck from the group Ancient One. The attackers exploited a known vulnerability in the system, resulting in unauthorized changes to the site’s content.
Proof of Concept:
The breach utilized a known vulnerability related to an unpatched system, which allowed the attacker to gain unauthorized access and deface the website.
Reason:
The specific reason behind the attack was not disclosed. However, the use of a known vulnerability suggests that the attack was likely opportunistic rather than targeted for a specific agenda.