Earlier today, December 6th 2018, Digitel Brasil, a Brasilian based tech firm specializing in enterprise data and telecommunications solutions, was hacked by “SHIZEN“ – member of the Brasilian based hacking group Pryzraky. In a press release made available the the public via his Twitter page, SHIZEN explains how he was able to breach a Microsoft-IIS/6.0 web server tied to the IP Address of 22.214.171.124 through an SQL Injection vulnerability tied to the sites back-end, exposing 3 databases, 26 tables and hundreds of email accounts along with their passwords. To be more exact, approximately 255 registered account owners with restricted access to digetel.com.br had their login email addresses and passwords compromised by the data breach.
When asked whether the accounts exposed belonged to Digitel Brasil customers or corporate employees, SHIZEN simply responded “Yes!” – indicating that the leak was a mixture of both. At this time Digitel Brasil has yet to release a statement on the matter, and it remains unclear if they are even aware of the breach in the first place.
Website Effected: hxxp://digitel.com.br
Raw Data Leak: https://pastebin.com/beYvDSDE
— ~SHIZEN. (@zglobal_) December 6, 2018
Categories: Hacking News