On October 19th, 2018, the Internship Portal managed by the Center for Health Human Resources Planning & Empowerment, Ministry of Health, Republic of Indonesia was hacked and defaced by a hacker known as MR.5T1Y0. The hacker is linked to the group Dark Side Team.
Hacker Details:
- Hacker Name: MR.5T1Y0
- Hacker Group: Dark Side Team
Website Details:
- URL: http://www.internsip.depkes.go.id/images/bpjs/49062_20181019202517.1
- System: Unknown
- Web Server: Apache
- IP Address: 202.70.136.169
- Location: Indonesia
Incident Details:
- Date: October 19th, 2018, 20:26:29 (WIB)
- Proof of Concept: Brute force attack
- Reason: As a challenge
- Archive Page: https://defacer.id/mirror/id/11346
- Cyber Attack Report’s Page: https://defacer.id/cyber-attack-report/11346
Summary:
The Internship Portal for the Ministry of Health of Indonesia, crucial for managing health internships, was compromised by MR.5T1Y0. This attack utilized a brute force method to gain unauthorized access to the system, resulting in the defacement of the website.
Proof of Concept:
The attacker used a brute force attack to infiltrate the website’s defenses. This method involved systematically attempting various combinations of login credentials to bypass the authentication system and gain access to sensitive areas of the website.
Reason:
The hacker, MR.5T1Y0, indicated that the breach was carried out “as a challenge,” suggesting that the motivation behind the attack was a test of skill rather than for malicious intent.