Highlights of Days Festivities from Friday’s Attack on The Government of Sudan

On April 6th 2019 I published a press release revolving around an internationally coordinated hacking operation due to take place that day, flying under the banner of “Operation Sudan” (#OpSudan). Therefore, it only feels right to do a full recap of the days events here today. Among a shortlist of those whom made highlights from this past Friday were NewSecGroup, Lorian Synaro, CYB3R C0V3N, Willenium and LulzSec Kurdistan – among many others, I am sure. A brief recap of the days festivities is chronicled below – enjoy!

Learn More – #OpSudan Press Release 4/06/2019: https://roguemedia.co/2019/04/06/opsudan-hacktivists-around-the-world-prepare-for-massive-cyber-attacks-against-the-government-of-sudan/

Hacks, Leaks & Defaces from 4/06/2019:

Obied Oil Refinery: hxxp://ord.sd/
Data Leak: https://www.hastebin.com/leriniqito.http
Leak Backup: https://pastebin.com/gb8XuUTf

Open University of Sudan: hxxps://www.ous.edu.sd/
Data Dump 1: https://pastebin.com/4pKrivLF
Data Dump 2 (15k users & Passwords): https://pastebin.com/raw/4pKrivLF

Al-Sharq Al-Ahlia University: hxxp://alhia.edu.bh/
Data Leak: https://hastebin.com/zucogarivo.rb

#TangoDown’ed:

Omdurman National Bank: hxxp://www.onb-sd.com/
Bank of Khartoum: hxxp://bankofkhartoum.com/
Organization of Sudan Affairs: hxxps://sswa-sd.com/

hxxp://ashorooq.net/
hxxp://almeghar.com/
hxxps://mofa.gov.sd/
hxxp://fcsit.edu.sd/
hxxp://fmoh.gov.sd/
hxxp://isd.gov.sd/
hxxp://ksp.gov.sd/
hxxp://moe.gov.sd/
hxxp://rivernilestate.gov.sd/

Defaced:

Sudanese Ministry of Finance: hxxp://finance.gov.sd/
National Council for Medical Specialties: hxxp://smsb.gov.sd/

Screen Shots of Defaces:

Image may contain: text

No photo description available.

https://twitter.com/cyb3rc0v3nsec/status/1114598409921617922

https://twitter.com/LulzSecKu/status/1114634627652751361

https://twitter.com/LulzSecKu/status/1114634627652751361

Follow Up: Highlights from First Annual April Lulz Day 2019

On March 31st 2019, I published an article advertising “April Lulz Day 2019,”  an international hacking operation to be launched on April 1st 2019 on behalf of international LulzSec affiliates worldwide. Therefore, it only seems right to do a follow up article here today, chronicling all of the “festivities” associated with the operation – you’re welcome @TheInternet. While I’m certain I did not uncover them all, below is a list of hacks, leaks and defaces from April 1st – at least that I was able to find.

So, what were the highlights you ask!? Ohh, I don’t know, nothing major, “only” about 16 websites were crashed via DDoS attack, 5 websites had their databases hacked and leaked online, 28 websites were defaced, at least 500 Twitter accounts were closed and over 1,000 Facebook accounts were hacked – 😏. Below you can see the full run down, attributed to the sources behind them. All sites marked with “hxxp” are websites crashed via DDoS attacks.

LulzSec Argentina (@LulzSeguridad):

hxxp://elmetroonline.com.ar/
hxxp://ccs.com.ar/
hxxp://amcham.org.eg/
hxxp://gov.ua/
hxxp://dak.gov.ua/

Quilmes Encendido Oeste Wifi Passwords Leak: https://pastebin.com/raw/UNk0E21u

LulzSec Kurdistan (@LulzSecKu):

List of 27 Websites Defaced 4/01/2019: https://pastebin.com/JfHwAT02
Deface Mirror of 27 Websites Hacked/Defaced: https://mirror-h.org/search/hacker/30891/

Target: hxxp://borde.com.tr/
Deface: http://borde.com.tr/lulzsecku/

List of 500 Twitter Accounts Taken Down: https://pastebin.com/GbA1fjTM

Pinoy LulzSec (@PinoyLulzSec__):

hxxp://depedzn.net/
hxxp://depedlacarlota.com/
hxxp://uphsl.edu.ph/
hxxp://uphsl.edu.ph/
hxxp://depedlacarlota.com/
hxxp://depedzn.net/

Target: hxxp://bookhub.ph/
Database Leak: https://ghostbin.com/paste/5jqzn

+250 Hacked Facebook Account Logins: https://pastebin.com/gX7809Ag
Additional Facebook Leaks Part 1: https://textuploader.com/15y98
Additional Facebook Leaks Part 2: https://textuploader.com/15y0a

Polytech University of Phillipines: hxxps://www.pup.edu.ph/taguig/
Database Download: https://anonfiles.com/p6NaR2W4me/PUPTAGUIG_SQL
Download Backup: https://www.datafilehost.com/d/c7d4716e

Confidential Doc Stolen from Philippines Army: https://uploadfiles.io/82mtc

Lorian Synaro (@LorianSynaro):

hxxp://uofk.edu/
hxxp://alintibaha.net/
hxxp://akhbarelyoum.net/
hxxp://assayha.net/
hxxp://almeghar.com/

Miscellaneous:

750 Facebook Accounts Hijacked – ClownSec: https://pastebin.com/raw/peCbG4Wf

Target: hxxp://presidencia.gob.sv/
Deface: http://multimedia.presidencia.gob.sv/files/backup/index.html

Hackers The World Over Prepare for April Lulz Day 2019

Having been around the internet for a while I cant help but notice an increased level of international fervor surround something referred to as “April Lulz Day 2019,” an international hacking operation being launched by LulzSec affiliates all around the world. While I’m certain not all of the targets whom will be #TangoDown‘ed tomorrow have been released publicly, it appears as though the US Federal Bureau of Investigation, Central Intelligence Agency and National Security Agency appear to be the groups central targets, no pun intended – with all of the those 3 letter acronyms appearing in several publications advertising the date.

To date, at least from what I have been able to find, LulzSec Argentina, LulzSec Kurdistan, LulzSecITA, Pinoy LulzSec and ForTheLulz have all been pushing advertisements on behalf of it for several days now.  Rumor has it LulzSecITA has been holding onto a leak of a certain Mayor from Rome, though it remains to be seen if/when that leak will be released to the public. For the time being, if you are not planning on participation yourself, I guess just sit back and enjoy the lulz! 🍿

https://twitter.com/ForTheLuIz/status/1111366142122225664

https://twitter.com/PinoyLulzSec__/status/1112153161903407105

https://twitter.com/ForTheLuIz/status/1110685602389901312

https://twitter.com/LulzSeguridad/status/1110687220355215367

https://twitter.com/ForTheLuIz/status/1110925278753316864

LulzSecKurdistan Hacks/Defaces 4 Websites Across Turkey & Iran

Last night, March 29th 2019, a new group of hackers going by the name of “LulzSec Kurdistan” (@LulzSecKu) claimed responsibility for hack and defacement of 4 websites across Turkey and Iran. While the group is new to social media as of March 2019 and the hacks below represent their first couple postings to the service, according to the groups website, the hackers appears to have been very active over the course of the last two weeks – hacking/defacing 150 websites around the world dating back to March 14th 2019.

LulzSecKurdistan’s Portfolio: https://mirror-h.org/search/hacker/30891/pages/5

Browsing through their archives, it appears as though the group is primarily interested in targets in the United States, Israel, the Netherlands, South Africa, Turkey and Iran, targeting various local businesses, organizations and/or gaming websites hosted inside these countries. The group also appears to be political active as well, hacking some websites and replacing them with a message reading “Stop Killing Muslims.

Hacked Iran:

Target: hxxp://hamedhamidi.ir/lulzKurd.htm/
Defacement: http://hamedhamidi.ir/lulzKurd.htm
Mirror: https://mirror-h.org/zone/2082022/

Target: hxxp://tptm.ir/lulzsecku/
Defacement: http://tptm.ir/lulzsecku/
Mirror: https://mirror-h.org/zone/2082020/

Hacked Turkey:

Target: hxxp://borde.com.tr/lulzsecku/
Defacement: http://borde.com.tr/lulzsecku/
Mirror: https://mirror-h.org/zone/2082021/

Target: hxxps://myth.com.tr/
Mirror: https://mirror-h.org/zone/2082019/

Screen Shot of Defacements:

No photo description available.

Image may contain: text

https://twitter.com/LulzSecKu/status/1111675505063981056