A concerned citizen sent a message to Blogger Engineer regarding a website that got defaced today. According to the report, the hacker only meant to inform the administrator of the website regarding the security issues that they should consider addressing.
The website of iHomes (ihomes[.]ph) was defaced by Kazmii of High Intensity Hackers. Its subdomains were also defaced including beta (beta[.]ihomes[.]ph), blog (blog[.]ihomes[.]ph and cpanel (cpanel[.]ihomes[.]ph). These were also posted in the group’s social media accounts where they also pointed out that they merely defaced the website – nothing more.
iHomes is in the business of real estate providing property options for families who are just starting up. The company is serving clients not just in Metro Manila but also in nearby provinces such as Cavite, Laguna, Bulacan, Rizal, Pampanga, Batangas and Quezon.
Based on their whois records, iHomes‘ website is less than a year old and is developed by a third-party IT provider Smarts Web Design (SWD) IT Solution. Blogger Engineer will reach out to both companies to let them know of this security incident.
This is the first time that we’re reporting Kazmii and his hacking group High Intensity Hackers in Blogger Engineer. The group, according to the source, has been doing their thing since 2015 but it was only recently that they revived their activities. iHomes is just one of the websites that they managed to deface recently.
Kazmii, based on his records in Zone-H, appears to be new as all of his defacements only happened recently.
On their Facebook Page, High Intensity Hackers posted a status hiring admins back in January. This could be the start of the group’s plan to be back in business.
**Updates**
April 24, 2019 – Via their official Facebook Page, iHomes confirmed that their website was indeed attacked and that they were able to fix it. The company also said that they put “additional security layers for the server” to prevent this attack from happening again in the future.
April 25, 2019 – We got a tip that Kazmii isn’t a newcomer after all. A source said that he is also the one behind the nickname Gr3ySh4DoW.
April 25, 2019 – High Intensity Hackers dumped the database found in the compromised iHomes website and posted it in their FB page. The domain was also re-defaced hxxps://ihomes[.]ph/kazmii[.]php
.
- Phishing Email Analysis Landing Page - September 19, 2024
- BPI to hold Cybersecurity Conference to ‘Fortify Cyber-Resilience in an AI World’ - July 25, 2024
- New Smishing Campaign makes use of Globe SMS Sender ID - May 27, 2024