A souvenir booklet distributed to guests printed the Indonesian flag the wrong side up. As a response, many Indonesians have characterised it as a “fatal error” at the SEA Games 2017.
Yesterday, Datuk Dr Amiruddin Abdul Wahab, the chief executive officer of CyberSecurity Malaysia, confirmed that 33 sites have been defaced by hackers.
“The incident is real and we are currently investigating, monitoring and working closely with other agencies to address this,” said Datuk Dr Amiruddin.
Following the rise of a viral hashtag #ShameOnYouMalaysia, a group calling themselves ExtremeCrew has taken responsibility for the attacks, displaying their screen names on the hacked websites.
The websites are hijacked to display images of the upside-down flag as seen in the souvenir booklets, along with the message “My national flag is not a plaything.”
Our more recent observation of some of the defaced sites also showcase different messages, such as “Never ignite a flame, if you cannot extinguish it” and “Don’t turn my nation’s flag upside down, fool! It’s not a toy!” among others.
On top of these defacements, CyberSecurity Malaysia has also reported that they have been notified of confidential information leaks, and possible Distributed Denial of Services (DDOS) attacks.
Malaysian Youth and Sports Minister Khairy Jamaluddin has since apologised profusely for the error, including a closed-door meeting with the Indonesian Minister of Youth and Sports Affairs Imam Nahrawi.
The two ministers have since shaken hands and said that the issue was resolved to a room full of press.
Khairy has also overseen the reprinting and redistribution of corrected booklets.
As of time of writing, the official SEA Games website is still up and running.
Nevertheless, here is the list of websites that have been defaced by the hacker group.
There have been reports from various sources that have listed the number of affected websites to be close to 100, and even 140+.
However, upon our own search for the affected websites, we were only able to find around 50, aggregated from various sources as well as our own additions.
Of these defaced websites, some of them, such as EasyParcel has been able to regain their original homepage.
Some others have resorted to taking down or suspending their websites in the meantime, while others continue to display ExtremeCrew’s messages.
The list of websites include:
- http://2017investorsguide.com
- http://aziziali.com
- http://aziziali.my
- http://aziziali.net
- http://beahappymillionaire.com
- http://beliemas.com.my
- http://belisuratpajak.com
- http://belowmarketvalue.properties
- http://bonda.com.my
- http://cashflowprinciple.com
- http://gosipadan.com
- http://innercircle.com.my
- http://innercircle.my
- http://kolejjutawan.com
- http://kualalumpurmalaysia.com
- http://lawyerhartanah.com
- http://masauntukemas.com
- http://mesinwang.com
- http://millionairesguidetogreatness.com
- http://money101mastery.com
- http://pakejumrah.com.my
- http://pelaburanhartanah.com
- http://pendapatanpasifseumurhidup.com
- http://rahsiaemas.com
- http://rahsiasuratpajak.com
- http://retirerich.guru
- http://rezekiberniaga.com
- http://pmbinvestment.com.my/index.htm
- http://pmbinvest.com.my
- http://www.aezahaniel.com/
- http://ajglokal.com/
- http://zainalrashid.net/
- http://vlms.mkm.edu.my/
- http://vidmiil.com/
- http://vidmastery.com/
- http://paksi.org/
- http://www.ustazahsu.com/
- http://sigma-tv.com/
- http://sfamindset.com/
- http://sembangbincang.com/
- http://corporatewellness.com.my/index.php
- http://doterramalaysia.com.my/index.php
- http://heartworks.my/index.php
- http://www.healingbreakups.com/index.php
- http://rahsiakerjayagraduan.com/
- http://puimserver.com/
- http://www.puimhosting.my/index.php
- https://pelanggan.puimhosting.my/index.php
- http://puim.org.my/index.php
- http://www.ascotacademy.com.my
- http://360inflatables.com/
- https://easyparcel.my/
Among these, there were also government-tied sites that have reportedly been hit, including:
http://online.mdjerantut.gov.my/indonesia/niki.php
http://jpnperak.moe.gov.my/q.php
At time of writing, both of these sites have been taken down and have yet to be restored to their original state.
The takeaway? Protect your systems.
These attacks prove the importance of ensuring security on your websites, in case all of your hard work developing SEO is ruined by disgruntled hackers.
CyberSecurity Malaysia has advised organisations to protect themselves and their websites by following a 10-step guide.
In their recommendation, CyberSecurity Malaysia advised organisations to apply in-depth defensive strategies in protecting their networks, utilising tools like Firewalls, IPS, IDS and etc. These can either prevent, or at least log the more generic attacks.
Organisations should also make sure that systems, applications and third party add-ons are updated with the latest patches and upgrades.
On top of that, organisations are also advised to update their operating systems or software to their latest versions, as the older versions may have a vulnerability that can be exploited by intruders.
A full list of these recommendations can be found here.