Search This Blog
Powered by Blogger.

Blog Archive

Labels

About Me

Load More
Trendy Right Now

Popular Posts

Showing posts with label Pakistan Hackers. Show all posts
Phishing Mails
China Cyber Attacks India Pakistan Hackers Phishing Mails

A Hacker Collective Based in Pakistan, Being Backed by China to Gather Intelligence Against India

 

In a rather coordinated attempt in order to steal strategic data and critical infrastructure by sending phishing mails a campaign was launched by a Pakistan-backed hacker, Transparent Tribe. 

The campaign, dubbed as 'Operation Sidecopy' utilizes a remote access malware that can heighten its privilege in undermined systems, and thus, easily steal data by infiltrating a computer. 

Cyber Security researchers at Seqrite, the cyber security solutions arm of Quick Heal, believe that the main tools utilized in Operation Sidecopy shows the association of Transparent Tribe which Seqrite believes is being backed by China to accumulate insight against India. 

One of the main characteristics that Seqrite believes can be associated with Pakistan's Transparent Tribe is the remote server facilitating that the 'collective uses'. 

As per researchers Kalpesh Mantri, Pawan Chaudhari and Goutam Tripathy at Seqrite, Operation Sidecopy utilizes Contabo GmbH to 'host' the remote server through which the malware is instructed and information inflow is controlled, which Transparent Tribe is accounted for to have done already.

Himanshu Dubey, director of Quick Heal Security Labs, affirmed that alongside the Operation Sidecopy cyber attacks are highly targeted towards India in nature and have been continuously observed since 2019.

'Till now, this attack has been only seen targeting India.The Tactics, Techniques and Procedures (TTPs), as well as Decoy documents that we analysed, were crafted specifically in Indian context,” he says. 

Clarifying the Pakistan and China connection in the series of cyber attacks taken note of, Quick Heal's Dubey says, “We have considered several factors such as infrastructure used for command servers, registered domain naming patterns and recently created domains, command and control server names are similar to the names used by APT36 in past, and APT36’s history of attacks targeting Indian defence organisations.Also, one domain that hosted HTML stager applications is registered to a user in Rawalpindi, Pakistan.” 

 Dubey avows that the entirety of Seqrite's discoveries under Operation Sidecopy have been shared with the authorities of the Indian government in order to assist them with taking proper digital protection steps and forestall loss of important data.
Read more »
Pakistan Hackers
Breaking News Hackers News Pakistan Hackers

BJP Junagadh website hacked by Pakistani hackers

Local news organizations reports that BJP Junagadh unit's website (bjpjunagadh.org) was hacked and defaced by some unknown hackers.

The hackers who defaced the website posted comments against BJP and RSS. The defacement also contains several images of people burning and standing on the Indian tricolor.

We have referred some defacement-mirror websites, the hack appears to have taken place in February.  It is unclear whether these local reports referring this incident or the website got defaced again today.

According to the defacement-mirror record(hxxp://dark-h.org/deface/id/12604), this website was defaced by a Pakistani hacker going by handle "Sniper haxXx" who is responsible for many Indian websites' hacks.

"As soon as I reached office, our IT cell employees told me that someone has hacked our website http://www.bjpjunagadh.org and uploaded photographs and comments to malign reputation of BJP, RSS and Narendra Modi,"Indian Express quoted In-charge of BJP Junagadh office Raju Jivani as saying.

A complaint has reportedly been lodged against the unknown hacker, police are trying to find the hacker who is responsible for the breach.

Meanwhile, Gujarat Pradesh Congress Committee's President Arjun Modhwadia told reporters that "This is purely an attempt to get votes by playing the communal card ahead of the election"
Read more »
Team MaXiMiZerS
Defaced Website Hackers News Pakistan Hackers Team MaXiMiZerS

Pakistani hacker group 'Team MaXiMiZerS' hacks India's Kerala state Government websites

Hundreds of Indian websites including two Kerala state Government websites have been breached by a Pakisani hacker group identifying itself as "'Team MaXiMiZerS"

The affected websites are Cooperative Institute of Management and Technology (cimat.kerala.gov.in) and Kerala Cultural Welfare Development(cwb.kerala.gov.in), Kerala's Kannur University (kannuruniversity.ac.in). 

Other affected sites have been listed here: http://pastebin.com/p0zPbQDC

The defaced websites displayed the message  "What we Ask From India All the time is the only Kashmir , Most of the times we dnt act like that but this is the only way left . Why indian army is killing innocent's in kashmir ?  We Just Ask you these simple Question's and the indian gov got no answer's..... why ?"

"This is the only way left to protest for us. For what you are scared of ? India will loose the beauty of kashmir ? how many muslim brother's being killed on daily basis did u ever thought ? a 16 year's girl raped and killed a boy shot in the head for what ? because they are protesters ?All we ask is just the Answer of these Questions Nothing Personal ...you will pay for these sins one day"
Read more »
Pakistan Haxors CREW
Cyber War hacker news HaXor Hasnain Pakistan Hackers Pakistan Haxors CREW

Indian Public Health Engineering Department website hacked by Pakistan Hackers


West Bengal Branch of Indian Public Health Engineering Department website(www.wbphed.gov.in) has been breached by a hacker from Pakistan.

A hacker with handle H4$N4!N H4XOR from Pakistan Haxors CREW has has uploaded a defacement page in the "Uploads" directory of the site (http://www.wbphed.gov.in/applications/GO/uploads/index.html).

When we asked about the vulnerability responsible for the breach, the hacker said that the website is vulnerable to SQL Injection vulnerability.

"Security Breach!Free Kashmir. Free Syria. Stop Spying On US. Stop Killing Muslims. We Have All Your Data. Don't Try To Catch Us" The defacement message reads.

The hackers said the defacement is revenge for hacking Pakistan websites.  He also claimed to have compromised the database from the server.

In the last two days, the group hacked into Indian Railways website and Official website of Assam Rifles.
Read more »
Pakistan Haxors CREW
Defaced Website Hacking News Pakistan Hackers Pakistan Haxors CREW

Official website of Assam Rifles hacked by Pakistan Haxors CREW


Just few minutes ago, the Pakisani hacker group known as "Pakistan Haxors CREW" has hacked into the official website of Assam Rifles.

The main home page is not affected by this attack.   The hacker has just uploaded a html file 'phc.html' in the main website(http://assamrifles.gov.in/phc.html).

Hacker didn't provide much information on the defaced page except a short message saying "Security Breach! Admin Secure It Thankssss".

In their official facebook page, the hacker group said "We Have What We Want".  We are not sure what they mean by that,  whether they have obtained any sensitive information or just mentioning about the defacement. The mirror of the defacement is here "add-attack.com/mirror/466057/ ".

According to the add-attack mirror record(www.add-attack.com/mirror/466052/), there is another group called "United Bangladesh Hackers" also defaced the website, just few hours before Pakistani hackers.

The same pakistani hacker group recently breached the Indian Railways website and uploaded their defacement.
Read more »
Pakistan Haxors CREW
Breaking News Defaced Website defacement Hacking News HaXor Hasnain Pakistan Hackers Pakistan Haxors CREW

Indian Railways website hacked by Pakistan Haxors Crew


The official website of the Indian Railways has once again been hacked by Pakistani Hackers group.  This time, it is done by two hackers named as " H4$N4!N H4XOR" and "HUNTER KHAN" from the "Pakistan Haxors CREW(PHC)".

The home page of the site is not affected.  However, hackers managed to upload a "index.html" in a subdirectory("http://er.indianrailways.gov.in/cris/edrm_site/notice/index.html")

Not the first time :

Last August, Pakistan Cyber Army hacked into Indian Railways and uploaded their defacement page in the same "edrm_site" directory with a short message "Hello Guys. Aooooo Indian Railway Pawned LOL. Go to Hell This hack in reply to Pak Army Website".

In 2012, another hacker with handle "AiNAB", a member of Pakistan hacker group called Pakistan cyber pyrates, defaced multiple sub-domains of Indian Railways.(Refer: http://www.zone-h.org/archive/notifier=AiNAB/page=2)

At the time of writing, the website still shows the defacement message.  It is still unknown whether the previous vulnerability hasn't been fixed or hackers discovered new vulnerability.

It is worth to note the "H4$N4!N H4XOR" has hacked several Indian websites including Tamilnadu popular TV channels Jaya TV and Sun TV.
Read more »
Pakistan Hackers
Defaced Website hacker news HaXor Hasnain Pakistan Hackers

Sun TV website hacked by Pakistan Hacker


Pakistani hacker known with online handle "Hasnain Haxor" who is recently being featured in news for his hacking attacks targeting TV Network has once again breached another top Tamilnadu TV channel network.

Sun Network is the latest victim of the hack.  The following Sun Network websites have been defaced in recent attack: Official Sun Network (sunnetwork.in), Fm websites(redfm.in,suryanfm.in), sun.in and sunpictures.in.

We aware of the recent incident where an Indian hacker has been arrested for Jaya TV website hack. 

However, the hacker who behind the Jaya TV website hack is from Pakistan defacing all other TV channel network and left a defacement message saying:

"We Are PHC ( PAKISTAN HAXORS CREW ) We Just Want Justice & Peace
I Hack AIADMAK website & jaya Tv So Kick Out That Innocent Kid From The Jail"
The same hacker recently hacked into Puthiya Thalamurai website and left the same defacement message.

In case, you are not able to see the defacement, you can check the defacement mirror here:  1.http://zone-hc.com/archive/mirror/b3f36ce_sunnetwork.in_mirror_.html
2. http://zone-h.com/mirror/id/21209662
3. http://zone-h.com/mirror/id/21209519
4. http://zone-h.com/mirror/id/21209514
5. http://zone-h.com/mirror/id/21209511

All other hacking attempts done by the hacker has been mirrored here: http://zone-h.com/archive/notifier=hasnain%20haxor
Read more »
Pakistan Hackers
Breaking News Defaced Website hacker news Pakistan Hackers

Jaya TV website hacked and defaced by Pakistani Hackers


Hackers from Pakistan Haxors Crew has hacked into Jaya TV network official website. The main domain and subdomain have been defaced.

Jaya TV is one of the major Tamil language satellite television channels based in Chennai, India.

The following domains are affected : jayatv.tv , artist.jayatv.tv and cinema.jayatv.tv.  The group also hacked into aiadmkallindia.org.


The group also defaced the Canara Bank Employees' Union website(cbeu.in). They also leaked database comproImised from the server.

At the time of writing, all of the affected websites still showing the defacement page.  "jayanews.in" shows "under maintenance" error page.

*Update:
When contacted by the press Jaya TV network denied that it is not their official website.

*Update 2:
But some analysis shows that it  is indeed an official site. The archive version of the site shows tv schedules and also the official contact numbers. And the domain has been used for a loong time.

Proof: http://web.archive.org/web/20130920040126/http://www.jayatv.tv

Proof 2: http://who.is/whois/jayatv.tv
Read more »
Subscribe to: Posts (Atom)