Nowadays hacking became a headache for various organizations. Latest news is that Indian Embassy websites hacked in different countries and the valuable and secured information had lost. Two hackers addressing from Netherlands had hacked seven Indian High Commission websites and posted online numerous secure details like Login, Passwords, Database containing names, passport numbers, email ids, mobile numbers of Indian people, etc.
According to the latest reports, security pen-testers by the name of Kapustkiy and Kasimierz have entered into Indian Embassy Websites and stole valuable data. They also mentioned the reason behind their hacking. They said the hack was to oblige administrators to consider the cyber security of their websites seriously.
The hackers in a Pastebin link shared on their twitter account posted that they have hijacked the Indian Embassy Websites in Switzerland, Italy, Romania, Mali, South Africa, Lybia, and Malawi. They also mentioned that they had leaked personal details of hundreds of Indian citizens including students those who are studying in abroad.
The Indian High Commissions sites those who faced hack had done an extraordinary investigation. After inspection, they said that they are susceptible to SQL injection vulnerability which lets the hacker to insert malicious SQL commands to the web application and get sensitive database information.
Hackers Via email told that “we did this thing to prove security was inadequate and several domains related to the Indian Embassy had the same weakness. By this incident, a lot of people lost hope and trust on Embassy. That’s why only we did this thing.”
The leaked data showed that the hacked websites are so unconfident and even user ids and passwords have also stored in plaintext without any hashing mechanism.