Tue, 27 Jul 2021 Today's Paper

MCNS website hacked

17 January 2013 07:58 am - 41     - {{hitsCtrl.values.hits}}

A A A

A Hacker with twitter handle "@ThisIsGame0ver" has hacked into the official website of Sri Lanka's Media Center for National Security (MCNS).

The Media Centre for National Security (MCNS) was established for the specific purpose of disseminating all national security and defence-related information and data to the Media and the public from one co-coordinated centre.

The hack was announced in Twitter . As per the mirror of the defacement page, the security breach was occurred on 14th Jan.

The hacker defaced main page(nationalsecurity.lk) as well as uploaded a defacement page in uploads directory

At the time of writing, the defacement page has been removed from the main page, visitors are being presented with a message that says "We are currently performing site maintenance. we'll be back 100% in a bit. "

But We are still able to see the uploaded defacement page here : www.nationalsecurity.lk/MCNS/defence-security/news/plugins/spaw/uploads/index.html

The hacker also leaked the compromised database. The dump contains Sensitive information including admin username, password(plain-text format), MySQL username and password.

It also includes email address, username and plain-text format password of users.

http://218.62.32.76/releases/nationalsecurity.txt 

(Source: ehackingnews)
See Kapruka's top selling online shopping categories such as Toys, Grocery, Flowers, Birthday Cakes, Fruits, Chocolates, Clothing and Electronics. Also see Kapruka's unique online services such as Money Remittence,News, Courier/Delivery, Food Delivery and over 700 top brands. Also get products from Amazon & Ebay via Kapruka Gloabal Shop into Sri Lanka.

  Comments - 41

See Kapruka's top selling online shopping categories such as Toys, Grocery, Flowers, Birthday Cakes, Fruits, Chocolates, Clothing and Electronics. Also see Kapruka's unique online services such as Money Remittence,News, Courier/Delivery, Food Delivery and over 700 top brands. Also get products from Amazon & Ebay via Kapruka Gloabal Shop into Sri Lanka.

 

  • Roshan Thursday, 17 January 2013 08:56 AM

    Every work that this done against the Govt is by Western power or Tamils.

    Geek Friday, 18 January 2013 12:34 PM

    This is NOT from LTTE or any other srilankans. This attack done by a Pro hacker (s) for a hobby or some publicity! of course, some PRO' hackers team like UGnazi,Nazi gods,etc they are still hijacking Gov't websites,banks,e-commerce website for their publicity! they will never reveal their real name in publicly ( obviously ) but they always have alias like JoshtheGod,.hack,etc,etc!

    UGnazi's already take down WHMCS,cia.gov, Pakistan Gov't ,etc websites using Ddos Attack,Sql injection,Oauth Malfunction,etc,etc method. this is not a big deal for them!

    I'm sure MCNS hosted with SLT server and they will never maintain weekly or daily backups! of course they do have yearly backups. Defese employees and other Top secret informations now in public.

    Geek Friday, 18 January 2013 12:34 PM

    Time to create a Quick Security strategy to resolve this situation!
    Call TechCERT or Get Pro's server Geeks support to resolve this situation!
    1, First of all put MCNS website live using cloudflare or any other CDN technology! so defense site ( front end/static page) will be online without any problem.
    2, Then Reset the logins using any MD5 or SHA1 encryption method and optimize the DB, server using advance server hardening methods! Test this with different webserver ( not from local server) and recombile all the files using MD5 then restore this DB's.
    But this is very basic & quick recovery method, I'm sure this server doesn't contain any Firewall or redundant backups! When you recover everything try to conduct a a professional Server audit & code audit from PRO Server security management companies.
    Rgds,
    Srilankan

    Saman Thursday, 17 January 2013 02:08 PM

    No need to fight physically to topple the Govt. This is more humane way. If this was available during elections Gen Fonseka could have won the election. No more Computer Gilmart.

    Palitha Galapitiya Friday, 18 January 2013 02:11 AM

    Dam Shame..!!!

    Ranjith Thursday, 17 January 2013 02:39 PM

    Call white van

    Sathyapala Thursday, 17 January 2013 02:45 PM

    Poor IT infrastructure had led to this, certainly it's not the skills. Our government institutions, Banks and Privet sector do not invest much into IT Security.

    Little Johnny Thursday, 17 January 2013 09:23 AM

    Who ever did it is smart, which in turn shows how weak we are in terms of IT Security...

    goefer Thursday, 17 January 2013 09:23 AM

    This is a UNP conspiracy along with the NGOs, US and India. CJ has passed out the information !!!!!!!!!!!!!!!!!!!!!!!! No. Mervyn did not know anything about this!!! He was busy collecting the identity cards of his secretary and personal assistants after they had by mistake bumped off some guy who was on a mobile phone

    Truth Thursday, 17 January 2013 09:41 AM

    Disgrace

    Poornima Thursday, 17 January 2013 09:47 AM

    I hope the LTTE is back. They were better than these bastards.

    malkanthi Friday, 18 January 2013 03:28 AM

    This is a skull dangerous!

    Dee Thursday, 17 January 2013 10:42 AM

    have to be a foreign conspiracy, someones got to be smart to do this type of thing.

    Pasel Thursday, 17 January 2013 10:56 AM

    Give the investigation to Melvin

    ICCStats Thursday, 17 January 2013 10:54 AM

    what if they start bombing again and one of your family members die?

    Leena Friday, 18 January 2013 04:38 AM

    The certainly don't invest enough for language skills either.

    Selva @ EHackingNews Friday, 18 January 2013 04:53 AM

    Thanks for sharing this news.

    mail_guy Thursday, 17 January 2013 11:09 AM

    Education, sports, justice, now defense, what else remaining?

    SureshP Thursday, 17 January 2013 11:12 AM

    Yes! Shows the calibre of our so called experts. Who in the world would store passwords as text??

    mikee Thursday, 17 January 2013 11:19 AM

    Wonder of Asia.

    Debby Thursday, 17 January 2013 11:17 AM

    We are currently performing site maintenance. we'll be back 100% in a bit.

    Clueless Thursday, 17 January 2013 11:23 AM

    better at killing innocent, extortion, misinformation and what not?

    jan Thursday, 17 January 2013 11:25 AM

    who is the local julian assange?

    meenavan Thursday, 17 January 2013 11:23 AM

    Work of USA....... call Wimal to make Upawasa opposite American embassy

    cynthia pietersz Friday, 18 January 2013 05:33 AM

    Also remember that our soldiers did not lay their lives for some stooges to rob the fellow countrymen. This is also govt.terrorism.

    hmm Thursday, 17 January 2013 11:33 AM

    i know the password.. its ******* :D

    Rohan1 Thursday, 17 January 2013 11:41 AM

    We were led to believe that the Defence Secretary is an IT expert. If he could defend his own website how would he save the people of Lanka?

    Surain Thursday, 17 January 2013 11:40 AM

    Dust bin of Asia

    samara Thursday, 17 January 2013 11:53 AM

    cyber attacks can be followed by direct invasion

    malkanthi Friday, 18 January 2013 06:23 AM

    poor hulugalle struggling. No media release yet, obviously cannot deny this one!!!

    Sheik Thursday, 17 January 2013 08:15 AM

    Hilarious..!!!!!!

    Lokka Thursday, 17 January 2013 08:15 AM

    who cares!

    Pragmatic Porak Thursday, 17 January 2013 12:38 PM

    I don't think people got your sarcasm

    Beta Thursday, 17 January 2013 12:52 PM

    i advise the sri lankan national for their own safety , we can not believe on National Security , if we depend on them we we also will be hacked :)

    rehan Thursday, 17 January 2013 01:23 PM

    WHO cares, we see day light robbery

    reader Thursday, 17 January 2013 01:21 PM

    You have forgotten all the killings by the LTTE what a shame. our solders didnt lay their lifes to hear these type of stories

    Nodrog Thursday, 17 January 2013 08:35 AM

    Like everything else even the MCNS also has turned out to be a joke.

    Dr wiki Thursday, 17 January 2013 08:36 AM

    What a jill-Mart

    budhika Thursday, 17 January 2013 08:37 AM

    LTTE is back

    Upul Thursday, 17 January 2013 08:46 AM

    May be work of western powers , behind international hand, Tamil diaspora , etc.. etc..

    saradiyal Thursday, 17 January 2013 01:48 PM

    Way to go, hack them all...!


Add comment

Comments will be edited (grammar, spelling and slang) and authorized at the discretion of Daily Mirror online. The website also has the right not to publish selected comments.

Reply To:

Name - Reply Comment


Site survey near Akasa Chaitya: Is it the end of Yala?

The Yala National Park has been at the receiving end of human disturbances fr

Basil Rajapaksa’s catch 22 situation

Sri Lankan politics has been a good deal of family business. It was not even

“This govt. printed Rs. 880 billions”

This is the roadmap of Zimbabwe

“We are on the cusp of a mothers-led movement for better birth rights in Sri Lanka” – Kanya D’Almeida

Writer Kanya D’Almeida became the first Sri Lankan to win the ‘Commonweal



See Kapruka's top selling online shopping categories such as Toys, Grocery, Flowers, Birthday Cakes, Fruits, Chocolates, Clothing and Electronics. Also see Kapruka's unique online services such as Money Remittence,News, Courier/Delivery, Food Delivery and over 700 top brands. Also get products from Amazon & Ebay via Kapruka Gloabal Shop into Sri Lanka.