BurmeseHackers Group Hacked Irrawaddy Online Store Last night a hacker group named “BurmeseHackers” hacked Irrawaddy Online Store owned by Irrawaddy News Magaine, The Irrawaddy magazine and its Web site cover Burma and Southeast Asia, providing in-depth news and information to international readers. The Irrawaddy is published by Irrawaddy Publishing Group (IPG), an independent, nonprofit media [...]
BurmeseHackers Group Hacked Irrawaddy Online Store
Last night a hacker group named “BurmeseHackers” hacked Irrawaddy Online Store owned by Irrawaddy News Magaine,
The Irrawaddy magazine and its Web site cover Burma and Southeast Asia, providing in-depth news and information to international readers. The Irrawaddy is published by Irrawaddy Publishing Group (IPG), an independent, nonprofit media organization. IPG was established in 1993 by Burmese journalists living in exile and is not affiliated with any political organization or government.
Double Click on Image to view Bigger and Clear
Email This Post
13 Responses to "BurmeseHackers Group Hacked Irrawaddy Online Store"
Leave a Reply
Submit News
Exploits DB by Offensive Security
- WordPress TimThumb Exploitation
- vbSEO – From XSS to Reverse PHP Shell
- Owned and Exposed
- Google Hacking Database Updates
- Bypassing UAC with User Privilege under Windows Vista/7 – Mirror
- Fuzzing vs Reversing – Round #2 (Reversing)
- Fuzzing vs Reversing – Round #1 (Fuzzing)
- vBulletin – A Journey Into 0day Exploitation
- Foxit Reader Stack Overflow Exploit – Egghunter Edition
- Google Hacking Database Reborn
comment by $@T0R!
although we don’t know that they’re the real hackers or not, they can be considered as the trained warriors of burmese military. because, although they said that they’ll attack to all of the gov and anti-gov sites, they just attacked the anti-gov sites. and one more shameful thing is that they can only perform the DDOS attacks but not in web level attacks. they only can attack the sites which are reported from the ethical hackers. such as the reports in planetcreator.net . as an ethical hacker, i totally upset their crazy attacks. now, i’m making a site to challenge them if they can hack my site or not in the way of web level hacking (DDOS attack won’t be included). if they can bypass my security system, i’ll salute them and if they can’t, i’ll f**k their ass… I think that it’s the time to defeat those crazy script kiddies…
Regards :-
$@T0R!
comment by admin
I don’t know exactly about Who they are, Where they all are from and what they really want to do and What is their visions.
I just want my guys to updates every news, I sent to webmaster of Irrawaddy twice. They don’t fix web vulnerability, therefore Those Hackers Group hacks again n again…
Furthermore, as $@TOR! said why they are just attacking to anti-gov? why they don’t try to attack mmgov?…. There’s no further information about they hacked gov’s site or system…
Do they scare?
comment by $@T0R!
if i’m not wrong, the admin of planetcreator.net post one of their attack of moh.gov.ge
and they performed the DDOS to planetcreator.net.
in this case, i think thaye they might firstly tried out via the url parameters to find out the custom vulnerability such as SQLi and Directory Traversal etc… but think that they failed to get the vulnerable parameter and then, they might started their shameful DDOS coz DDOS is the easiest attack mechanism and the hardest thing to fix. attacking with DDOS is none technical sense. anyway, lets go ahead to our discussion…
Q : Why they don’t attack to gov sites?
Ans 1 : may be they scared or they may be from government side.
Ans 2 : most of the gov sites are in the form of static html sites and they won’t be able to hack the static sites ( anyway, they can try out for backend cpanel or grabbing the FTP etc…)
Ans 3 : when i tested the gov sites, some of these are vulnerable. but in the language of cfml, aspx and so on. so, we can consider that if they’re not from the side of military gov, why they don’t hack these? Yes, it’s totally sure that they have no skills in MSSQLi and they don’t understand the hacking mechanisms clearly and may be they just learnt the parrot-learning to play… so, should we call them as the leet hackers? it would be the question in advanced
Regards :-
$@T0R!
comment by admin
Yeah, whatever and whoever they are, as I noticed that they just tying to attacking gov and anti-gov … bcoz if they want test their hacking skill , can try other vul website in myanmar. The following websites r in vul. (Note. I’m not mean all can deface).
Planet Myanmar Website http://www.planet.com.mm
Yangon Media Group http://www.yangonmedia.com
Burmese Classic http://www.burmeseclassic.com/
People Media Voice http://www.yourmyanmar.com/
Myanmar National League Official Site http://www.myanmarnationalleague.com/
Enjoy Myanmar http://www.enjoy.net.mm
Minitstry of Transport Department of Meteorology & Hydrology http://www.dmh.gov.mm
Myanma Posts and Telecommunications http://www.etelegram.net.mm/
MRTV-4 Online http://www.mrtv4.net.mm
Myanmar Blogger Press http://www.mmblogpress.org
News Era Journal http://www.khitpyaing.org
Irrawaddy News Magazine http://www.irrawaddy.org
Irrawaddy Online Store http://www.irrawaddystore.com.com
KMD Group of Companies http://www.kmd.com.sg
Yangon City Development Committee http://www.yangoncity.com.mm
Myanmar Computer Professionals Association http://www.mcpamyanmar.org
MySuboo http://www.mysuboo.com
Bamatalk http://www.bamartalk.com/
Myanmar e-Lottery http://www.myanmarelottery.com
Shwe Hosting http://www.shwehosting.com
Airmandalay http://www.airmandalay.com
Ministry of Transport http://www.mot.gov.mm
Myanmar Music Online http://www.myannarmusiconline.net
Myanmar Goal http://www.myanmargoal.com
Minthamee Video Store http://www.minthamee.com
Myanmar Market Journal http://www.zaygwet.com
Thanyawzin – Myanmar Online Friends Community http://www.thanyawzin.com/
All Training in Myanmar http://www.myanmartraining.com
All of these webmasters have to beware and fix it as soon as possible.
comment by british gymnastics
Ello…The column for real got me idea man….. a intelligent piece ,I must say.
comment by admin
There are some vul in Irrawaddy Online Store such as XSS :
Still Existing;
comment by cypher
==========================================
SQL ERROR On Department of Marine Administration
==========================================
http://www.dma.gov.mm
====== user name=cypher ====== passwords=’or”=’ ========
————————————————————————————
Microsoft OLE DB Provider for SQL Server error ’80040e14′
Line 1: Incorrect syntax near ‘#’ / “=”
/_inc/functions.asp, line 59
comment by zaw
May I get a web site from one of hacker to watch Myanmar TV channel.I can’t watch Myanmar TV because I’m living in Thailand but I’m one of Myanmar. Please help me every one can help me. Thank you. Naing Zaw (Temporary Thailand)
comment by zaw
May I get a web site from one of hacker to watch Myanmar TV channel.I can’t watch Myanmar TV because I’m living in Thailand but I’m one of Myanmar. Please help me every one can help me. Thank you. My e-mail address is zaw_25@hotmail.co.th .Naing Zaw (Temporary Thailand)
comment by kupokupo
lol…… XD
“http://www.dma.gov.mm” and “http://www.dmamyanmar.com” r soooo easy to inject sql
just type ‘ or ’1′=’1′– in both pass and username XD
comment by Alvin Malagisi
I wanted to jot down a simple message in order to appreciate you for those fantastic strategies you are giving at this website. My incredibly long internet lookup has finally been recognized with wonderful knowledge to exchange with my best friends. I would repeat that many of us readers actually are unequivocally lucky to be in a perfect website with very many perfect people with very helpful solutions. I feel rather fortunate to have encountered your website and look forward to some more enjoyable minutes reading here. Thanks again for all the details.
comment by underground hacking group
http://www.city.com.mm vulnerable to SQL injection
admin’–
admin