Hackers claiming to be “Workforce Dangerous Dream” have managed to realize entry to the official web site of Ministry of International Affairs and Embassy web sites of Lebanon.The hacker uploaded a hacked web page named “default.html” on 20 Embassy web sites of Lebanon and the web site of Ministry of International Affairs of Lebanon.
The motives behind the hack and defacement by the hacker is unclear. Though the hacker left an Arabic message “عاصفة الحزم قأدمة إلى لبنان ” on their deface web page. Whereas utilizing Google translator to translate the message, the next message was translated “The Storm of the Bees to Lebanon”.
The strategy utilized by the hacker to realize entry to those vital web sites are nonetheless unknown, nor do we all know but if the hacker stole any delicate information from these authorities web sites.
Upon investigating the hack, the hacked web sites seems to be hosted on a Home windows 2012 servers, hosted in america by an organization named “WeHostWebSites”. All hacked web sites had been hosted on the identical server. This might imply that the hacker had gained entry by some means to a weak web site hosted on the server, permitting them to hack different web sites from the backend attributable to poor safety added by the server administration staff.
The hackers had additionally saved a cached mirror on the cybercrime archive for the information of the defacement. On the time of publishing this information, all web sites had been hacked and defaced. Because the defacement was recent, the cached mirrors had been nonetheless pending for approval. Subsequently, if web sites aren’t listed on the hyperlink above, it will probably be listed right here.
The embassy web sites which have been hacked are Embassy of Lebanon in Madrid – Spain (Spain), Embassy of Lebanon to the Republic of Gabon – Libreville, Consulate Basic of Lebanon in New York, Embassy of Lebanon to the Bolivarian Republic of Venezuela, Embassy of Lebanon to the Republic of Sudan – Khartoum, Embassy of Lebanon in Hungary – Budapest, Embassy of Lebanon to the Arab Republic of Egypt – Cairo, Embassy of Lebanon to the Kingdom of Morocco – Rabat, Embassy of Lebanon in Republic of Armenia – Yerevan, Embassy of Lebanon in Islamic Republic of Pakistan – Islamabad, Embassy of Lebanon in Federal Republic of Nigeria – Abuja, Embassy of Lebanon in Switzerland, Embassy of Lebanon in Malaysia – Kuala Lumpur, Embassy of Lebanon to the Sultanate of Oman – Muscat, Embassy of Lebanon in the UK, Embassy of Lebanon in Republic of Indonesia – Jakarta, Embassy of Lebanon within the Federal Republic of Germany – Berlin, Consulate Basic of Lebanon in Rio de Janeiro, Embassy of Lebanon in Kingdom of Sweden – Stockholm, and Embassy of Lebanon to the Hellenic Republic – Athens.
This isn’t the primary time that the Ministry of International Affairs of Lebanon web site being hacked. Based on Zone-H information, the web site had been hacked two occasions earlier than! On 21/03/2017, a hacker named “Mr.Domoz” from the hacktivist group known as “AnonGhost Workforce” had uploaded a hacked web page with the file identify “domoz.htm”. Whereas again in 2015, a hacker from Jordan named “MoThAnnA-X” had managed to add a hacked web page with the file identify “x.htm”. That too, being hosted on the identical Home windows 2012 OS server, and internet host.