‘Sanji & Jed’ compromises PNP websites

Fresh from their ABS-CBN stint yesterday, Sanji & Jed of the hacking group Philippines CyberSec Community attacked the websites of the Philippine National Police (PNP).

In a report to sent to us today, the website of the Philippine National Police Foundation, Inc. (PNPFI) has been defaced. The culprits behind the attack are the duo who left a message in the main page saying “Patch Your Website Security”. The defacement only took place today. Hopefully, the web administrators of the website are already working on this security issue.

The group also targetted another PNP website yesterday. The website of PNP’s Directorate for Personnel and Records Management (PNP-DPRM) was purposely hacked to test a how-to hacking article if it’s working. The group is claiming that they were able to upload a web shell backdoor after exploiting a vulnerability found in the website.

The group’s intention may be good – that is, to remind the IT personnel of these government sites to ensure that timely patches and updates are deployed. However, we do not encourage others to do the same thing as these activities are still considered illegal.

We will bring these reports to PNP’s attention. We’ll keep this article updated as we get feedback.

Fjordan Allego
Follow me

Fjordan Allego

Fjordan Allego aka Fjordz is an IT security practitioner in the Philippines. He maintains a couple of blogs where he shares his views on various topics that he finds interesting. A self-confessed introvert who's mostly active in social media, Fjordz also loves to travel and explore the wonders of the world.
Fjordan Allego
Follow me

Related Posts:

Speak Your Mind

*

This site uses Akismet to reduce spam. Learn how your comment data is processed.