U Tun Lwin

Chiang Mai (Mizzima) – A Burmese hacker group that targets popular Burmese websites broke into the  Myanmar Climate Change Watch (MCCW) website created by noted meteorologist Dr. Tun Lwin.

The website provides free up-to-date information on climate changes and weather news in Burma.

The hackers, known as the Blink Hacker Group (BHG) , posted a notice on the website that said users’ passwords were kept in plain text format, which undermines user privacy, the group said.

They hacked the website first on March 11 and then posted the warning on the website on Thursday.

The warning directed the website owner to repair the flaw in storing passwords as soon as possible or otherwise ‘BHG would hack and destroy this website’.

More info

———

We informed that vulnerability since last year : critical SQL injection (vulnerability) on Myanmar Climate Change Watch

I don’t know why they hack this kind of website, for revenge ? for promote themselves?  for advertise their news? ;; don’t know at all! Whatever and whoever they are, you should take care your site sand fix as soon as possible when you got alerted security weakness. 🙂

 

 

Explore More

LFI Scanner By GlaDiaT0R

#!/usr/bin/perl #LFI Scanner By GlaDiaT0R #My Mail: the_gl4di4t0r[AT]hotmail[DOT]com #Home Page: DarkGh0st.Com #Greetz To Boomrang_victim, Marwen_Neo & All Tunisian Hackers #www.darkgh0st.net #www.tunisian-power.net More Info http://www.planetcreator.net/planetcreator/perls.php?id=37

Read More

LFI/RFI testing and exploiting with fimap

fimap is currently under development but still usable. Feel free to test it! This document and tool is not recommend for people who doesn’t know what LFI/RFI is. If you

Read More

Critical SQL Injection in Myanmar Calendar

PlanetCreator‘s Security Team Researcher Infofreakzzz reported another Critical SQL injection (vulnerability) on Myanmar Calendar URL : http://www.myanmarcalendar.org/ SQL injection is a code injection technique that exploits a security vulnerability occurring

Read More