Search This Blog

Powered by Blogger.

Blog Archive

Labels

Showing posts with label defacement. Show all posts

Ministry of Health Saudi Arabia website defaced by Moroccan hackers


Moroccan Islamic Union-Mail hacks and deface the official website of prevention program of injuries and accidents - Ministry of Health Saudi Arabia(moh-ncd.gov.sa)

The site was showing a picture of Mohamed Morsi The President Of Egypt and member in the Muslim Brotherhood and a clear message in arabic which said :

"Penetration in response to a statement by the Ministry of Interior inclusion of the Muslim Brotherhood in the list of terrorist groups."

"Our message to the governor of Saudi Arabia: The day will come who are under it is exposed to more than what it is now Syria." hackers said.

" The most worthy AQIM contain the Two Holy Mosques to be a compromise in everything Do not be biased for a class to another, until he became Al Saud believe in all that is Islamic terrorist And all of the resistance for pursuing terrorism The injustice of kin most Reluctantly --- one of Hussam signed Mohannad. Signature: Moroccan Islamic Union-mail"

The mirror of the defacement is available here:  http://www.aljyyosh.org/mirror.php?id=125826

This is not the first time the site being targeted by hackers - Earlier this year, a hacker going by handle 'Dr.SHA6H' also defaced the website.

Las Vegas Sands casino websites hacked and defaced by Anti WMD Team

Las Vegas Sands Corp which is said to be the world largest casino operator, has been targeted by hackers.  Websites of Sands casino and its subsidiaries have been defaced.

The sites home page modified with the world map marking the location of sands casinos with flickering flame.

"Damn A, Don't  let your tongue cut your throat "the defacement message reads. "Encouraging the use of weapons of Mass destruction, Under Any condition , is a Crime"

The defacement also contained personal information of Sands employees including e-mail id, social security numbers and other information.

The sign left in the defacement suggest it is done by a hacker group identified as "Anti WMD team".  However, we are not able to find any history about this group.

List of affected websites are: Sands official website (sands.com), Venetian (www.venetian.com), Palazzo (palazzo.com), Sands Bethlehem (pasands.com), Marina Bay Sands (www.marinabaysands.com), Venetian Macao (venetianmacao.com), Sands Macao (sandsmacao.com) and Holiday Inn Macao Cotai Central (sandscotaicentral.com).

All of the affected websites are currently showing "Undergoing Maintenance" message.

Sands Spokesperson told Associate Press that the company is working with law enforcement to find out the hacker behind this security breach.  The company couldn't say whether customers' card data had been compromised.

Turkmenistan Banks and Government websites hacked by Dr.SHA6H

A Syrian hacker with twitter handle "Dr.SHA6H" has hacked and defaced the official websites of two Turkmenistan state-owned commercial banks. The affected Banks are PrezidentBank (presidentbank.gov.tm) and Turkmenbashi Bank(tbbank.gov.tm).

The hacker managed to modify the contents of an article at PrezidentBank site and just wrote "Hacked By Dr.SHA6H" in the homepage.  The home page of Turkmenbashi Bank has also been modified by the hacker, he managed to place the message at the end of homepage.

The hacker didn't stop with these two bank websites defacement, he also breached few other government websites.

The affected websites includes Nowruz festival(www.nowruz.gov.tm ), Earthquake Engineering Research Institute Website(seysmostroy.gov.tm), Commerce and Industry of Turkmenistan(cci.gov.tm).

Dr.SHA6H is known for government websites defacements.  At the end of last year, he defaced several Kerala Government websites and left the same message.

Two more Indian Government websites hacked by Pakistani Hackers


In last few days, several Pakistani hacker groups have defaced plenty of Indian government websites.  Pakistan Haxors CREW is one of the group targeting the Indian websites.

The group today hacked into two Indian government websites: West Bengal State Coastal Zone Management Authority and Damodar Valley Corporation .

At the time of writing, 'wbsczma.gov.in' still showing the defacement while the 'portal.dvc.gov.in' went offline.  The group also claimed to have dumped the database. 

Today, another group named as "Team MaXiMiZerS" have defaced two India's Kerala state government websites along with hundreds of other websites.

Last night, Voice Of Black Hat Hackers group from Pakistan hacked two India's Rajasthan state government websites.

Indian Railways website hacked by Pakistan Haxors Crew


The official website of the Indian Railways has once again been hacked by Pakistani Hackers group.  This time, it is done by two hackers named as " H4$N4!N H4XOR" and "HUNTER KHAN" from the "Pakistan Haxors CREW(PHC)".

The home page of the site is not affected.  However, hackers managed to upload a "index.html" in a subdirectory("http://er.indianrailways.gov.in/cris/edrm_site/notice/index.html")

Not the first time :

Last August, Pakistan Cyber Army hacked into Indian Railways and uploaded their defacement page in the same "edrm_site" directory with a short message "Hello Guys. Aooooo Indian Railway Pawned LOL. Go to Hell This hack in reply to Pak Army Website".

In 2012, another hacker with handle "AiNAB", a member of Pakistan hacker group called Pakistan cyber pyrates, defaced multiple sub-domains of Indian Railways.(Refer: http://www.zone-h.org/archive/notifier=AiNAB/page=2)

At the time of writing, the website still shows the defacement message.  It is still unknown whether the previous vulnerability hasn't been fixed or hackers discovered new vulnerability.

It is worth to note the "H4$N4!N H4XOR" has hacked several Indian websites including Tamilnadu popular TV channels Jaya TV and Sun TV.

Exclusive: BCCI official website hacked by Bangladesh Grey Hat Hackers



A hacker named as "Ashik Iqbal Chy", from Bangladeshi Grey Hat hackers group hacked into the official website of Board Of Control For Cricket In India(BCCI.tv).

The hacker managed to publish and edit few articles with title "HackeD By AshiK IqbaL Chy" in the news section of the site.  Links to edited articles have also been displayed in the main page.

Hacker also changed the picture of the site with Bangladeshi cricket players with a short message saying " Don't mess up with Tigers!"

Hacker told EHN that he gained access to the admin panel of the website and managed to delete articles from the site which results in "under maintanence" mode.

Hacker told EHN that he managed to deface the home page also last night.  He provide us a screenshot of the admin panel.

Exclusive: Admin panel of BCCI

At the time of writing, the website is under "maintenance" mode.  Here is the list of mirrors of defacements:
http://www.zone-h.com/mirror/id/21650626
http://www.zone-h.com/mirror/id/21650812

Reason for the Hack:
One of the member of the hacker group told E Hacking News the hack is part of a protest against "India, England and Australia proposal on test cricket placed to the International Cricket Council"

Official websites of Daler Mehndi and Raghav hacked by Haxor 99


A Pakistani hacker with handle "Haxor 99" from Team MadLeets, has hacked into the official website belong to Indian Pop singer "Daler Mehndi"- Known for his work on Rang De Basanti movie.

"your site security is compromised" The hacker wrote on the defacement page.  "Nothing Delete or Harmed...Rise a Voice for Justice of Kashimr.  Patch Your Site"

He also defaced the official website of Raghav Mathur - a Canadian singer.  The same message left in the defacement.

Affected websites:
www.dalermehndi.com
www.raghav.com

At the time of writing, both websites are still defaced.  You can also check the mirror of the defacement here:
http://www.zone-h.org/archive/notifier=haxor%2099

OpenSSL.org hacked and defaced by Turkguvenligi

A few minutes back, the OpenSSL website(www.openssl.org) got hacked and defaced by a hacker named " Turkguvenligi "

The home page of the OpenSSL replaced with a simple defacement text saying "TurkGuvenligiTurkSec Was Here @turkguvenligi + we love openssl _ ".

OpenSSL immediately took action and removed the defacement from the page.  The website has been restored at the time of writing.


You can still check the defacement at Zone-H: "http://zone-h.org/mirror/id/21425720".  It has also been archived in Web-archive: "http://web.archive.org/web/20131229024230/https://www.openssl.org/"

It is still unknown how hacker gained access.  We are trying to reach the hacker.  Once we get a word from the hacker, the article will be updated here.

UPDATE: OpenSSL confirmed the site defacement and said "Source repositories verified and unaffected. More details on entry method in a future statement."

Central Bank Of India Hacked by Pakistan Cyber Army and Team MaDLeeTs

The official site of "Central Bank Of India" has been defaced by Pakistan Cyber Army and Team MaDLeeTs .

The deface seems to be a retaliation to defaces this morning by "Indian Cyber Army" on many Pakistani Sites.

The reasons for the Indian attack was that today is the 5th anniversary of the 26/11 terrorists attacks on Mumbai.



 Mirror:http://www.zone-hack.com/134702.html

Deface Link:https://www.centralbankofindia.co.in/site/

Hacker Barbaros-DZ targets Chinese Government websites



An Algerian hacker known as Barbaros-DZ has hacked into more than 20 Chinese Government websites within seven days.

“I'm attacking Chinese sites because they are corrupt. Look at them, they think that money is important in the world. That’s wrong. They don't understand what freedom and love is [important],” Eduard Kovacs from Softpedia cited hacker as saying.

“The Chinese country is a rich country, with much people, but much people only want much money,” he added.

“Let’s take an example, a Chinese company with 200 workers. The boss don't even care if someone is extinct, starved and that’s why I hacked important site of Chinese companies. Hopefully Chinese will be in the future a good country.”

According to report, the hacker use Remote File inclusion (RFI) and Local file inclusion(LFI) attacks for injecting his backdoor shell and deface the websites.

The hacked sites are Gaobeidian city (gbd.gov.cn), Association of Science and Technology in Shaowu(swskx.shaowu.gov.cn), wlcblsj.gov.cn, stz.cqfd.gov.cn, Wensheng party-building network(dangjian.wensheng.gov.cn ), Ningxia Science and Technology Agency(nxkjt.gov.cn), Zhuxi Chengguan Town People's Government(cg.zhuxi.gov.cn ).

Other hacked sites :  fhjd.ezhou.gov.cn, dalimz.gov.cn , cs.sqds.gov.cn , wh-aic.gov.cn, shicai.wangqing.gov.cn,zxdj.gov.cn , dytjj.gov.cn ,jidong.gov.cn, oa.bzqts.gov.cn ,ny.yuanjiang.gov.cn ,sl.tx.gov.cn ,ny.gaotai.gov.cn ,lgtw.luogang.gov.cn,snnm.gssn.gov.cn ,dl.lnzxw.gov.cn,www.ncsj.gov.cn .

The mirror of the defacement can be found here:
http://www.zone-h.org/archive/notifier=Barbaros-DZ

Argentina Ministry of Defence hacked & confidential documents leaked by LulzSecPeru




A Hacker group with online handle LulzSecPeru has managed to breach the Argentina Ministry of Defence website(www.mindef.gov.ar) and defaced the main page.

The hacker also leaked the documents that contain highly sensitive material rated SECRET (aircraft, submarines, guns). There are 3 RAR files has been uploaded in Anonfiles.

War Submarines, Radars(18MB), Classifieds Documents DEPARTMENT OF ARGENTINA DEFENSE DATABASE(55MB) and Database Dump(55MB). The database dump contains users, passwords ,secrets and name details.

"According to statements by the DEPARTMENT OF ARGENTINA DEFENSE the computer systems area say they had a system impossible to hack, thing turned otherwise." The hacker said .

"The event should not be taken as terrorism, was for the simple fact to prove that the system was totally vulnerable."

http://www.anonpaste.me/anonpaste2/index.php?39a17e9477a16aae#f3sv/Lm1u4MNOPcn4l3xBPaTylsLCv8EgdPCC8gbRv8=

At the time of writing, I am not able to reach Ministry of Defense site.  It seems like the admin has taken down the site for Investigation.

20+ Srilankan Government sites hacked by Bangladesh Grey Hat Hackers


More than 20 Government websites of Sri Lanka has been breached and defaced by Bangladeshi hacker group called "Bangladesh Grey hat hackers(BGHH)".

"Some so called hacker from sri-lanka challenged us that Their countries gov site is too much secured & unbreachable" The hacker said in the statement.

The hacker claimed that they defaced 22 government websites to prove them that " No system is Secured from us".

I agree with what BGHH said, you can't assure that system is 100% secure. That's why i usually say "System is 99% secure but hackers always have interest in the 1% vulnerability".

In their statement, the hackers urge Government of Sri-Lanka to increase the security of their site.

At the time of writing, all websites are re-stored by the admin .  The defacement has been mirrored on December 27. 

The list of hacked sites:
www.nc.gov.lk/
lgd.nc.gov.lk/
www.agridept.nc.gov.lk/
governor.nc.gov.lk/
plandept.nc.gov.lk/
cs.nc.gov.lk/
www.inframin.nc.gov.lk/
www.engdept.nc.gov.lk/
www.edudept.nc.gov.lk/
www.agrimin.nc.gov.lk/
www.probationdept.nc.gov.lk/
www.sportsdept.nc.gov.lk/
www.sec.nc.gov.lk/
www.coopmin.nc.gov.lk/
www.coopdept.nc.gov.lk/
www.irrigationdept.nc.gov.lk/
www.healthdept.nc.gov.lk/
www.healthmin.nc.gov.lk/
www.coopemp.nc.gov.lk/
www.psc.nc.gov.lk/
www.cm.nc.gov.lk/
www.revdept.nc.gov.lk

Turkish Ajan Hacker Group hacks Panda Security Greece


The hacker collective known as 'Turkish Ajan Hacker Group' have breached one of the famous Internet security solution firm, Panda Security, according to Cyber war news.

Hackers breached the Greece based website 'pandasecurity.gr' and left it with a defacement.

This is not the first time Panda official site has been hacked.   Earlier this year(March), Antisec hackers has managed to deface multiple sub domains of Panda security.

At the time of writing, the site has been restored and redirects to it s main domain(pandasecurity.com).

The mirror of the defacement can be found here:
http://zone-h.org/mirror/id/18754150

Swami Ramdev official site hacked by Turkish Hacker CyberDead



The official website of Swami Ramdev(divyayoga.com) has been breached by Turkish Hacker CyberDead and defaced with a message "We Will Be Your Curse On Cyber World !"

The hack was occurred on last Saturday(December 8) . The site has been restored at the time of writing and working properly. The defacement mirror can be found here:
http://www.zone-h.org/mirror/id/18716200

The hacker also has defaced one of the subdomain yoggram.divyayoga.com. The mirror for this defacement can be found here:

http://www.zone-h.org/mirror/id/18716202

The hacker also hacked more number of websites and defaced them.