Team PARANOID CODEIN Releases Database Leaks Along with XSS & SQLi Vulnerabilities Effecting 7 Brasilian Websites

Every now and again I come across some truly unique leaks, such as was the case yesterday. This is when I cam across a string of leaks posted by a hacker going by the name of “Etico Kartovy,” uncovered by a group of hackers going by the name of “Team PARANOID CODEIN” – aka “PCOD Team.” The leaks provided below are unique in that only some provide any actual data uncovered from within websites, instead choosing to publish the vulnerabilities of certain websites and how they can be exploited via “Cross-Site Scripting Attacks” (XSS) or “SQL Injection” (SQLi). These are the first such leaks of their kind I have ever come across, and there were se7en of them at that.

Effected by the data breaches provided below are the Hospital of Santa Casa, the Institute of Lands of the State of Piauí, Ligas Acadêmicas of the Federal University of Uberlandia, the Union of the Administrators of the Federal District of Sinda, the website of Support for Aquaculture, Brasil, the Federal Saving Bank of Caixa and the Interlegis Program, a Brasilian based political news outlet.

Website: hxxp://santacasacm.org.br
Raw Data Leak:

Website: hxxp://www.interpi.pi.gov.br
Raw Data Leak:

Website: hxxp://cardioliga.famed.ufu.br
Raw Data Leak:

Website: hxxp://www.sinda.org.br
SQL Injection Methodology:

Website: hxxp://sc-aqua.com.br
SQL Injection Methodology:

Website: hxxps://sidmfextrato.caixa.gov.br/
XXS Vulnerability:

Website: hxxp://www.interlegis.leg.br
SQL Injection Methodology:



Categories: Hacking News

Tags: , , , , , ,

Leave a Reply

Do NOT follow this link or you will be banned from the site!
%d bloggers like this: