Fresh from his recent attack to Cebu Pacific’s GetGo, kangk0ng of Pinoy LulzSec defaced another website – the recruitment portal of Philippine Army – jointhearmy[.]ph.
Similar to what he did with GetGo, kangk0ng claimed that he was able to access a database containing personal information from the compromised Philippine Army‘s recruitment website – Join The Army. He even allowed it to be downloaded publicly. The said database contains personal details of over 50,000 applicants. The Philippine Army was quick to turn down the site.
Manila Bulletin’s IT journalist Art Samaniego Jr was able to reach out with kangk0ng. The hacker said that he’s got three reasons for doing these – “First to make a point, second to make a mess and third to have fun.”
We’ve heard similar lines from other hackers typically from members of Pinoy LulzSec. The hacker also added that “he will continue defacing until the government wakes up and prioritize cyber security.”
On the other hand, the Armed Forces and Police Savings & Loan Association, Inc. (AFPSLAI) was also hacked. In a Facebook post, PHC Cyber Sec claimed responsibility for the attack. It wasn’t clear if they are related to kangk0ng and his group Pinoy LulzSec but a certain elkapitan commented that they were disappointed that the IT personnel working behind the website did not even bother to acknowledge their efforts in reporting security issues.
On a separate FB post, a certain majorproblem also from PHC Cyber Sec revealed some scanned copies of identification cards (IDs) presumably account holders of AFPSLAI. His caption bears the same tone as elkapitan‘s. He’s even suggesting to replace the website administrator of the company.
AFPSLAI is known to be the provider of financial products and services to military and police officers, retirees and their immediate family. The institution is listed as private and is supervised by the Bangko Sentral ng Pillipinas.
- Phishing Email Analysis Landing Page - September 19, 2024
- BPI to hold Cybersecurity Conference to ‘Fortify Cyber-Resilience in an AI World’ - July 25, 2024
- New Smishing Campaign makes use of Globe SMS Sender ID - May 27, 2024
The PH government should really tighten up their web security. It’s a shame that we’re always seeing hacked websites one after another.