People's Association's website hacked due to maintenance lapse

Last December, People’s Association’s website and 16 related sites were hacked. The hackers exploited the vulnerability found in content management system.
Communications and Information Minister Yaacob Ibrahim said in Parliament today that the authorities were aware of the vulnerability of the software tool used before it got hacked. He said the agencies using this software were told to check ahead of time, but there was a lapse in maintenance.
Yaacob Ibrahim added that preliminary investigations have traced the hacking activities to IP addresses overseas, and the police have requested assistance from their foreign counterparts. But I doubt they can trace the hackers behind this. They most likely hidden their real IP address before committing the hack.
If you are interested in finding out more about the hack, read the article by Knowledge Republic. According to the site, all the affected sites were using Joomla 1.5 to 1.7 or WordPress 3.1.3 to 3.3.1. The hackers most likely hacked into the site using either thru direct SQL injections or XSS by crafting code.

Leave a Reply

Your email address will not be published. Required fields are marked *