Thursday 25 August 2011

GPT InDuStRiEs Log Book



Over the past few days, GPT InDuStRiEs has been finding vulnerbilities within Singaporean websites and alerting the MOE, IDA, and SingCERT.

This page will keep track of our progress.


Date: 23rd August 2011
Recipient: Ministry of Education
Vulnerable Sites: 56
Compromised Site Alerts: 0

Date: 24th August 2011
Recipient: SingCERT
Vulnerable Sites: 28
Compromised Site Alerts: 0

Date: 25th August 2011
Recipient: SingCERT
Vulnerable Sites: 7
Compromised Site Alerts: 109

Date: 26th August 2011
Recipient: SingCERT
Vulnerable Sites: 0
Compromised Site Alerts: 241

Date: 27th August 2011
Recipient: SingCERT
Vulnerable Sites: 17
Compromised Site Alerts: 1

Date: 28th August 2011
Recipient: Ministry of Education
Vulnerable Sites: 3
Compromised Site Alerts: 0

Date: 28th August 2011
Recipient: SingCERT
Vulnerable Sites: 8
Compromised Site Alerts: 0


Total:
Vulnerable Sites: 119
Compromised Site Alerts: 351






The following websites had previous been notified by GPT InDuStRiEs, or us via MOE/IDA/SingCERT and have since patched their vulnerabilities. If the website has not been successfully patched, they will not be published here.

~None Yet~

Sunday 21 August 2011

First wave of emails should be out by Wednesday!

Took us quite awhile, but we've finally managed to complete a list of vulnerable Singaporean websites. We will be sending out emails to the administrators of these websites to inform them of their vulnerabilities over the next few days.

This first release will cover a few high profile websites. Then maybe nonsense like the following will cease to exist.

(Those at SPH, don't worry. File was deleted after the screenshot. We have no interest in looking at your mail. We didn't even decrypt the MD5 hash.)

//Image Removed via request from admin//



Wednesday 17 August 2011

S'poreans can help solve problems without relying on Govt - PM


Incredibly great morning we're having here at GPT InDuStRiEs! Someone actually emailed us with a scanned article from a local newspaper (Straits Times, I presume?).

The article name is "S'poreans can help solve problems without relying on Govt: PM". Excellent read!

Link to article here: http://db.tt/n6UJHNi


Friday 12 August 2011

CHECKMATE - UltrasMalaya.net



For having fans which constantly flame, hack and deface (among other things) Singaporeans due to the recent Malaysia VS Singapore match.

Tuesday 9 August 2011

Happy National Day, SingaporeANS!

Happy Birthday to Singaporeans!

Let's celebrate today as a holiday, and not the supposed birthday of an inanimate object.


Over the next few weeks, GPT InDuStRiEs will be releasing details to vulnerable Singaporean websites which will help protect against little script kiddies. Stay tuned!

Monday 1 August 2011

OHAII Moeslem H4x0r (AL3X 0WN5)

Queensway Secondary School - Hacked by AL3X 0WN5
AL3X 0WN5 - Information by GPT InDuStRiEs

118.97.164.242 (AL3X 0WN5) {medan@hack.cl}

IP Location:
Indonesia Pt Telkom Indonesia's Customer
ASN:
AS17974
Resolve Host:
242.subnet118-97-164.static.astinet.telkom.net.id









inetnum:        118.97.105.0 - 118.97.205.255
netname:        TLKM_AST_CUSTOMER
descr:          PT Telkom Indonesia's customer
country:        ID
admin-c:        HM444-AP
tech-c:         AI64-AP
status:         ALLOCATED NON-PORTABLE
remarks:        ------------------------------------------------------------------
remarks:        Send ABUSE and SPAM reports with plain ASCII text only to
remarks:        to abuse@telkom.net.id.
remarks:        The netname enclosed in square bracket is included inthe subject.
remarks:        ------------------------------------------------------------------
mnt-by:         MAINT-TELKOMNET
mnt-lower:      MAINT-TELKOMNET
mnt-irt:        IRT-IDTELKOM-ID
changed:        hostmaster@telkom.net.id 20101230
source:         APNIC

route:          118.97.160.0/20
descr:          PT. TELKOM INDONESIA
descr:          Menara Multimedia Lt. 7
descr:          Jl. Kebonsirih No.12
descr:          JAKARTA
country:        ID
origin:         AS17974
mnt-by:         MAINT-TELKOMNET
changed:        hostmaster@telkom.net.id 20110504
source:         APNIC

route:          118.97.160.0/20
descr:          PT. TELKOM INDONESIA
descr:          Menara Multimedia Lt. 7
descr:          Jl. Kebonsirih No.12
descr:          JAKARTA
country:        ID
origin:         AS7713
mnt-by:         MAINT-TELKOMNET
changed:        hostmaster@telkom.net.id 20110105
source:         APNIC

role:         PT Telkom Indonesia ABUSE INTERNET Response Team
address:      PT. TELKOM INDONESIA
address:      Menara Multimedia Lt. 7
address:      Jl. Kebonsirih No.12
address:      JAKARTA
country:      ID
phone:        +62-21-3860500
fax-no:       +62-21-3861215
e-mail:       abuse@telkom.net.id
admin-c:      HM444-AP
tech-c:       HM444-AP
nic-hdl:      AI64-AP
notify:       hostmaster@telkom.net.id
mnt-by:       MAINT-TELKOMNET
changed:      hostmaster@telkom.net.id 20060105
source:       APNIC

person:       PT Telkom Indonesia Hostmaster
nic-hdl:      HM444-AP
e-mail:       hostmaster@telkom.net.id
address:      PT. TELKOM INDONESIA
address:      Menara Multimedia Lt. 7
address:      Jl. Kebonsirih No.12
address:      JAKARTA
phone:        +62-21-3860500
fax-no:       +62-21-3861215
country:      ID
notify:       hostmaster@telkom.net.id
mnt-by:       MAINT-TELKOMNET
changed:      hostmaster@telkom.net.id 20060105
source:       APNIC















UMAD?

 

Sunday 31 July 2011

M43L Tro0P3rs - Malaysian Jokes



When stupid animals like these who have no form of common sense whatsoever insult or attack Singapore, I will be more than willing to step in and help my country.

Posting this in the hope that these so-called "hackers" see this (psychologically, fail hackers like these people will search up themselves on Google to boost their ego).

To those just joining in, a group of Malaysians (supposedly two) called  "M43L Tro0P3rs" decided to hack a few Singaporean websites over the latest football game (Heh, silly. I hate football too, but whatever). They claim, and I quote (BAD ENGLISH ALERT) "So Rude With Us When We Lost with you" and "Was Won With The “Cheat Acting” and imported Player". "We Lost With Dignity and We Play With our Pure National Player. So Dont Make Some Annoying Insult with Us!!!".

Well let's take a look at the Malaysian sore "LOOSER" tactics. (Credit to some Stomper)
1. Malaysian players would first launch a mind game to intimidate their opponent before match.
2. Their fans would then either insult the opponent's players or use a laser pointer on their goalkeeper to win the match.
3. Whether they win or lose, their newspapers will launch another attack.
4. Their retarded fans deface opponent's flag with outrageous spelling mistakes.
5. Sore Malaysian football goons hack into S'pore websites.

Yet, Singapore hasn't even done any attacks, verbally or physically, towards the Malaysians. Who's the one without dignity now?


Both of you think you are smart? Think again. All you can do is target websites with SQL/Javascript Vulnerabilities. Can't hack anything else? Can't DoS anything? Can't crack any hashes? Too bad. The only damage you can do is bombarding the site with a plethora of horrible English.

Note that Copy/Pasting the same message over and over again makes you look dumber and dumber. Placing the image of an ugly monkey with your message is probably your most horrid action, though. Everyone who saw 'it' is now stupider for having seen it. I award you no points.

You guys are ESPECIALLY stupid, as seen from the sheer fact that you cannot come up with your own HTML.

//mouse
//Circling text trail- Tim Tilton
//Website: http://www.tempermedia.com/
//Visit http://www.dynamicdrive.com for this script and more
function cursor_text_circle(){
// your message here
 Copy much?

As for your "Hacked" image (http://l2oul3ah.persiangig.com/image/hacked.gif), must you seriously steal from some random Iranian site (one with an exposed Index too)?

COME AT ME, YOU MONGRELS.  Bring me down like how how "ultrasmalaya.net" is down now.


Ah well, judging by the intelligence level shown, prepare to be Doxed and caught.
(VERY simple for those who got defaced. Find the IP which attacked you. WHOIS IP. Is Proxy? Report Abuse. Find actual IP. Is Proxy? Repeat. If not? Report to police. Profit.)

I am anonymous.
I am one.
I do forgive.
I have an eidetic memory.
Expecto Patronum.