Filipino Black Hat Hackers Attack Dozens of Websites

By Allan Jay Dumanhug & Jason Te Occidental

Filipino black hat hacking group, Pinoy Lulzsec, breached, defaced, and leaked the databases of multiple websites on the evening of April 1st. This is in line with their annual April Lulz event, wherein they hack websites and leak information for entertainment and as a means to mock the lack of cybersecurity measures of these sites. One of the hacked pages posted a message from them, saying these can be easily hacked by 12-year old kids. Websites include those from government agencies in the Philippines and abroad, public and private schools, and Filipino companies.

As of 10:00 PM, April 2, 2018, the list of hacked websites and leaked databases includes:

Hacked Local Websites:

Government

• http://stacruz.gov.ph (Official Website of Municipality of Sta. Cruz)
• http://asunciondavnor.gov.ph (Official Website of Municipality of Asuncion)
• http://talaingod.gov.ph (Official Website of Municipality of Talaingod)
• https://www.bulacan.gov.ph/index.html (Official Website of Bulacan)
• http://www.sanagustinromblon.gov.ph (Official Website of San Agustin Romblon)
• http://www.pcc.gov.ph/aprillulz.PhP (Official Website of Philippines Carabao Center)
• http://carmendavnor.gov.ph/ (Official Website of Municipality of Carmen)
• http://spda.gov.ph/lulz.html (Official Website of Southern Philippines Development Authority)

Academe

• http://www.esti.edu.ph/aprillulz1.php
• http://lspusc.edu.ph/aprillulz1.php
• http://ispsc.edu.ph/aprillulz1.PhP
• http://integratedmontessori.edu.ph/aprillulz1.PhP
• http://admin.integratedmontessori.edu.ph/aprillulz1.PhP
• http://myhsi.dlshsi.edu.ph/

Private

• http://apps.1dmg.com.ph
• http://magnoliachicken.com
• http://unilevergives.ph/X-m3n.php
• http://starmargarine.com/X-m3n.php
• http://aqua-coco.com.ph/X-m3n.php
• https://www.stpauls.ph/aprillulz.PhP
• https://wendys.com.ph/aprillulz2.php
• https://www.mikspot.ph/aprillulz.PhP
• http://pcworx.ph/aprillulz.php
• http://www.ipic.com.ph/aprillulz.PhP
• https://www.pmap.org.ph/aprillulz.PhP
• http://concordecac.com.ph/aprillulz.PhP
• http://www.bankofsanjose.ph/aprillulz.PhP
• https://www.euroflats.ph/aprillulz.php
• http://kinalola.ph/aprillulz.php
• http://reva.com.ph/aprillulz.PhP
• http://alarme.com.ph/aprillulz.PhP
• http://bevstravelandtours.com.ph/aprillulz.PhP
• http://cinnabon.ph/aprillulz.PhP
• http://coolaroo.com.ph/aprillulz.PhP
• http://dmc.org.ph/aprillulz.PhP
• http://effects.com.ph/aprillulz.PhP
• http://enhanced.com.ph/aprillulz.PhP
• http://exponentcontrols.com.ph/aprillulz.PhP
• http://gmc.org.ph/aprillulz.PhP
• http://infomax.com.ph/aprillulz.PhP
• http://jandmproperties.com.ph/aprillulz.PhP
• http://javilandpalms.com.ph/aprillulz.PhP
• http://makinarya.ph/aprillulz.PhP
• http://millies.ph/aprillulz.PhP
• http://pryce.com.ph/aprillulz.PhP
• http://shepherdhousepublishers.com.ph/aprillulz.PhP
• http://smcc.com.ph/aprillulz.PhP
• http://tripmart.com.ph/aprillulz.PhP
• http://ultramodular.com.ph/aprillulz.PhP

Hacked International Government Websites:

• http://vava.quangnam.gov.vn (One of the Government Websites of Vietnam)
• http://phuquy.gov.vn (One of the Government Websites of Vietnam)
• http://tqi2.gov.bd (One of the Government Websites of Bangladesh)
• http://bellville.gov.ar (One of the Government Websites of Argentina)
• http://tnhighways.gov.in (One of the Government Websites of India)
• http://tnrsp.gov.in (One of the Government Websites of India)
• http://vitoriadoxingu.pa.gov.br/index.php (One of the Government Website of Brazil)
• http://sedurb.pa.gov.br (One of the Government Website of Brazil)
• http://sedop.pa.gov.br (One of the Government Website of Brazil)
• http://www.hemopa.pa.gov.br/lulz.html (One of the Government Website of Brazil)
• http://oeirasdopara.pa.gov.br/lulz.html (One of the Government Website of Brazil)
• http://policeubon.go.th/lulz.html (One of the Government Website of Thailand)

Leaked Databases:

• DEPED CALAMBA CENTRAL DATABASE

Link: http://anonfile.com/{REDACTED}/depedca1_central_database.zip

• ALUMNI OF TAGUIG CITY UNIVERSITY

Link: http://anonfile.com/{REDACTED}/alumni_tcu.csv.gz

• LAGUNA STATE POLYTECHNIC UNIVERSITY of Sta. Cruz

Link: http://anonfile.com/{REDACTED}/lspusced_main.sql.gz

• BULACAN

Link: https://anonfile.com/{REDACTED}/bulacan.sql.gz

• DEPED BACOOR

Link: http://anonfile.com/{REDACTED}/depedbacoor.tar.gz

• PHILIPPINE CARABAO CENTER Link: http://anonfile.com/{REDACTED}/pccdb-joomla.sql.gz

We do not recommend opening these leaked databases as we believe that they contain virus or malware.

According to Pinoy Lulzsec, they will be extending their April Lulz event until April 3 as stated on their Facebook Post.

= = = = = = = = =

The authors are co-founders of Secuna, a startup security company that focuses on website application, penetration task services and spreading cybersecurity awareness and education.