Cyber attack on the Department of Innovation and Best Practice (https://innovation.gov.gr/) of the Interior Ministry was carried out a few minutes ago by the hacking team HighTech Brazil HackTeam.
The website of the Department of Innovation and Best Practices (https://innovation.gov.gr/) is down, with citizens not being able to visit the website for information, while anyone attempting to visit the website will be faced with the following defaced homepage:
In the last year it is observed significant increase in cyber attacks on critical state infrastructure and state websites both in Greece as well as globally. The security experts report that it is natural next as more and more malicious users are transferred to cybercrime. The hackers they seem to be multiplying while their technical knowledge is being optimized day by day. Expected, hacking attacks aimed at state infrastructure to cause strong concern to the relevant government officials.
According to the relevant information, the HighTech Brazil HackTeam managed to alter the website https://innovation.gov.gr/ adding a photo that says the following message:
“Invaded by 9bandz
HighTech Brazil HackTeam ”(= Breached by 9bandz HighTech Brazil HackTeam)
The hackers in this way they indicated that they have unauthorized access to that website having the ability to add / remove content they wish. The site still appears to be in the possession of hackers.
It should be noted that the reason why the hackers attacked the specific website of the Ministry of Interior has not been clarified yet.
The cyber attack is judged by security experts as "moderate criticality" but it is not yet clear whether other servers within the Ministry have been affected or the hackers have thus chosen to disorient the administrators in charge.
HighTech Brazil HackTeam
The hacking attack is signed by the hacking team HighTech Brazil HackTeam, with its members being of Brazilian and Portuguese origin.
The hacking team, since 2013, is rumored to have attacked hundreds of government websites worldwide, violating websites in Africa, America and Europe with Greece was again targeted by the cyber attack on the website of the Hellenic National Printing Office.
Department of Innovation Practices of the Ministry of Interior
The website of the Department of Innovation and Best Practices of the Ministry of Interior is part of the actions of the Ministry of Interior for the promotion of innovation in public administration that took place in 2020.
The Ministry of Interior, recognizing the need for the development of the innovation capacity of public organizations as well as the innovation skills of civil servants, developed the platform www.innovation.gov.gr in which the Public Sector Innovation Observatory has been created. The platform serves the following needs:
1. learning and exchanging good practices applied in other public organizations https://innovation.gov.gr/innovobserv/
2. information on the planning of the Ministry of Interior for the innovation policy, search for texts and useful tools for the implementation and dissemination of innovation https://innovation.gov.gr/innovation-page/
3. Participation in programs and actions of the project "Together We Innovate WE-novate Project" which aims to encourage open innovation through cooperation between public organizations that face common challenges and seek know-how for solutions to them https://innovation.gov.gr/open-innovation/
4. Supporting public organizations to develop innovation capacity and provide guidance through self-assessment tools and workshops https://innovation.gov.gr/innovation-labs/.
The SecNews conducts its own research to bring to light more information. Competent administrators must disable the server and control the type of access achieved by the hackers.
What is defacement?
A defacement attack is a kind of "vandalism" of a website, where hackers penetrate the website and replace its content with their own messages. It is usually used to cover something bigger, in the background, and the messages may convey a political or religious message, inappropriate content, or a notice that the site has been compromised.
Content alteration is usually achieved through use SQL injection and login to the administrator account. Common targets of defacement attacks are government figures and websites, or religious websites, and attacks are most often carried out by hacktivists, who prefer large pages with many viewers.