Recently two Indian Government websites have been hacked. These websites have been defaced and are having some vulnerabilities. The 2 subdomains that have been hacked belong to the National Council of Science Museum (NCSM) and the Indian Council Of Agricultural Research (ICAR).
The issue has been reported by Sourajeet Majumder (@TechCrucio) on Twitter. He on his Twitter handle has reported that threat actors have defaced 2 subdomains – Innovationhub and Sugarcane.
It’s been more than 12 hours but the defaced pages are still on the portals and vulnerabilities is yet to fix
— Sourajeet Majumder (@TechCrucio) August 24, 2021
When visiting the Sugarcane website, it says a weird message- ‘Vuln! patch it Now!‘, and when visiting the Innovationhub website it shows a GIF with a message – (laZy hAcker kill me ;).
Given below is the screenshot of what the website says when visited.
Sourajeet Majumder reported this issue at 2:31 on 25 August by tagging the Indian Computer Emergency Responsible Team, National Informatics Center, Sanjeev Gupta, National Council Of Science Museum, and Indian Council Of Agriculture Research. Even after hours of reporting, the vulnerability has not been patched and users will get the same error again when visiting the website.