Corpo de Bombeiros Militares de Tocantins Hacked by Al1ne3737, 32.24 KB of Data Leaked Online

Earlier this morning, February 26th 2019, the Military Fire Brigade of Tocantins, Brasil was compromised by a massive data breach. The hack/leak itself was claimed by “Al1ne3737” of the international hacking group known as “M1n3 B0ys,” whom managed to leak approximately 32.24 KB of data across 6 databases via the text file provided below. The leak itself features some interesting information, including the login user name, email address and password of 26 users, along with the National Cadastro de Pessoas Físicas (CPF) numbers, email addresses and passwords of 29 employees/personnel, as well as the login username, email address and password of 361 members of the Brigade.

Alvo: hxxp://bombeiros.to.gov.br
Raw Leak: https://pastebin.com/raw/ykFuNgH5
Database Download (32.4KB): https://anonfile.com/z7i1nevfba/Military_Fire_Brigade_of_Tacontins_txt

Admin Login: hxxps://intranet.bombeiros.to.gov.br/
CPF: 65872665172
PASS: 53749273

Screen Shot from Hacked Database:

No photo description available.

Diretoria de Tecnologia da Informação e Comunicação de Cachoeirinha Hacked/Defaced Along with 3 Other Brasilain Government Agencies

Towards the end of last week and into the weekend, the international hacking group known as “M1n3 B0ys” was active in a string of hacks, leaks and defacement’s targeting various Government agencies and municipality’s across Brasil. More specifically implicated in the hacks/leaks below were the Municipal Council of Poco Branco, Government of the Municipality of Damianópolis, City Hall of Cachoeirinha and Government of The State of Piauí.  At the present moment in time it doesn’t appear as though the hacks were political motivated, rather just just carried out for ‘the Lulz.

In addition to releasing the login credentials necessary to access the websites Webmail portal, the hackers also deface the Municipal Council of Poco Branco – replacing the homepage with a message reading “Extra, Extra: Ceará hacker invades the net … to sleep, of course. You may think your mistake are all bullshit to be forgotten, but they have resulted in actions that have pointed us in a new direction. Steve Jobs.” As for the Government of the Municipality of Damianópolis, in addition to defacing its website, it also appears as though the hackers were able to gain access to the governments official online Webmail portal – literally providing screenshots of themselves making an email under a Government officials account. 

The hack of the Diretoria de Tecnologia da Informação e Comunicação de Cachoeirinha was much more significantrevealing information including the login codes, passwords, office numbers, personal cell phone numbers and emails of 100’s of registered users, along with the CPF numbers, email addresses and passwords of well over 600 government employees, officials, personnel members and politicians. The leak also features the login credentials and emails of 8 IT Directors granting root access to all of the sites data. Honestly, there was so much information included in the data leak that’s it’s almost impossible to all summarize here. Instead, you are invited to browse through the leak for yourself.

Database Download (77.03 KB): https://anonfile.com/k1x2gav0b7/dados_sistemas.cachoeirinha.rs.gov.br_txt

The hack of Government of The State of Piauí was also significant, revealing the agency ID numbers, locations and extensions of 500 personnel members/offices. You can find the contents of this leak and more by browsing the links provided below. 

Câmara Municipal de Poço Branco:

Alvo: hxxp://cmpocobranco.rn.gov.br
Deface Mirror: https://defacer.id/archive/mirror/6844086

Email: suporte@openmaster.com.br
Passe: open8952

Screen Shot from Hack:

Image may contain: text

Governo do Município de Damianópolis:

Alvo: hxxp://damianopolis.go.gov.br/site/
Deface Mirror: http://www.zone-h.org/mirror/id/32231428
Webmail Login Page: hxxp://www.damianopolis.go.gov.br/site/acessaremail/

Screen Shot from Hack:

Image may contain: text

Prefeitura Municipal de Cachoeirinha:

Alvo: hxxp://sistemas.cachoeirinha.rs.gov.br
Raw Leak: https://pastebin.com/raw/HT2p5Ev4

Screen Shot from Hack:

No photo description available.

Governo do Estado do Piauí:

Alvo: hxxp://siscon.pi.gov.br
Leak: https://pastebin.com/4LsRtqVK
Leak Backup: https://ghostbin.com/paste/wep99

Screen Shot from Hack:

No photo description available.

Polícia Militar do Estado de Goiás Hacked, +331 KB of Data On Thousands of Military Personnel Leaked Online

Less than 24 hours ago, February 18th 2019, “Al1ne3737” of the international hacking group “M1n3 B0ys” released a massive data leak effecting the Brasilian
Polícia Militar do Estado de Goiás. Contained within a text file comprising of approximately 331.05 KB of data, the leak contains the contents of eight databases extracted from the website. Honestly, there was so much data released in the leak that it’s almost impossible to all summarize here at once, but what I can say is that it features Personally Identifiable Information (PII) on thousands of military police officers and personnel, including their full names, email addresses, telephone numbers, physical addresses, IP addresses, CPF numbers, user names, logins and more.

Rather than try to summarize it all here, I invite you to browse through the leaked data for yourself via the information provided below – enjoy! This is also the second such major hack of a state office in Goiás, adding to a hack/leak effecting the Office of Internal Affairs on January 11th 2019. A hack/leak which was claimed by the Brasilian based hacking group known as “Backbone Squad.” It is also the second such leak effecting a major military police agency in Brasil, adding to a hack/leak of the Policia Militar do Amazonas on January 28th 2019, a hack/leak which was claimed by a hacker known as “Kartovy.

Alvo: hxxp://pm.go.gov.br
Raw Leak: Leak_pm.go.gov.br
Database Download (331.05 KB): https://anonfile.com/p8mbv0uebf/pm.go.gov.br_txt

Browse Through Full Leak:

[pdf-embedder url=”https://roguemedia.co/wp-content/uploads/2019/02/Policia_Militar_Goias.pdf”%5D

Secretaria Especial de Agricultura Familiar e do Desenvolvimento Agrário Hacked by Al1ne3737, +1,000 Users Compromised by Breach

Earlier this morning, February 15th 2019, “Al1ne3737” of the international hacking group known as “M1n3 B0ys” announced a comprehensive hack and leak of the Secretaria Especial de Agricultura Familiar e do Desenvolvimento Agrário in Brasil. Contained within a leak consisting of nearly 15,000 lines are the names, unique user ID numbers, email addresses, passwords, CPF numbers, telephone numbers and encrypted passwords of approximately 1,126 registered users of the Federal Ministry of Agrarian Development (MDA) – including site administrators.

It remains unclear exactly how the hackers managed to breach the site, but the leak adds to a flurry of recent hacking activity from the group throughout the course of 2019. For example, over the course of the last week alone different members of the M1n3 B0ys hacking group have also managed to hack and/or deface the web pages belonging to the Universidade Estadual do PiauÍ, the Escritório de Ligação da Escola de Engenharia da UFMG and Prefeitura Municipal de General Carneiro – all in Brasil.

Alvo: hxxp://mda.gov.br/
Raw Leak: https://pastebin.com/raw/yPmJqqRL

Alvo: Universidade Estadual do PiauÍ
Deface: http://www.uespi.br/preg/

Alvo: Escritório de Ligação da Escola de Engenharia da UFMG
Deface: http://www.zone-h.org/mirror/id/32196493?hz=1

Alvo: Prefeitura Municipal de General Carneiro
Deface: https://www.generalcarneiro.pr.gov.br/licitacao/1221/
Leak: https://ghostbin.com/paste/cf5cc

https://twitter.com/al1ne3737/status/1096308027139989504

https://twitter.com/m1n3B0ys/status/1095339071700795395

https://twitter.com/m1n3B0ys/status/1095051590258622474

https://twitter.com/m1n3B0ys/status/1094715765712916480