Jump to content
Matt

Philippines Navy website hacked by Pr3 H4ck3r

By Matt, in Stiri securitate

Recommended Posts

Matt Newbie

Matt

Posted
Posted

pr3-h4ck3r-Philippine-cyber-army.jpg

A Hacker with handle "Pr3 H4ck3r" from Philippine Cyber Army has claimed to have hacked into the database of the Navy website.

According to hacker's statement, he compromised the data by exploiting the SQL Injection vulnerability in the Navy's "BRP Alcaraz blog" page (navy.mil.ph/alcaraz).

However, we are not able to access the given link at the time of writing. It appears the admin has taken down the link.

The news was first reported by local hacking news site PinoyHackNews. In a pastebin post(pastebin.com/5xhP6zft), hackers leaked the login credentials compromised from the database.

It includes the Admin login credentials.

What's worse is that they are using very weak username and password. They have used the "userpassword" as password. Even if there is no bug, hacker could have guessed the password or get the password by brute-forcing. It is sad to know that the Navy website itself has poor security and weak passwords.

Sursa EHackingNews.Com

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
Go to topic listing
×
×
  • Create New...