Ghost Squad Hackers targets Govt. of India Clean Money initiative website

The hacker group has left a message on the Clean Money website, claiming that the group’s administrator, S1ege has hacked the site.

Share this Intel:

The Operation Clean Money website https://cleanmoney.gov.in/  seems to have been hacked by Ghost Squad Hackers (gSH). The page https://cleanmoney.gov.in/gsh/ displayed the message: “hacked by s1ege greetz to all GSH members”. S1ege is the self-described “administrator” of the  hacktivist group, which commonly orchestrates attacks against  governments, banks, and media outlets. Their attacks range from data leaks and Distributed Denial of Service (DDoS) attacks, to defacing websites and account takeovers. In an interview, S1ege said that gSH, which was formed in 2014, aims to “create a massive, effective, and powerful squad to help propagate vigilante orientated operations.”

 

Fig 1: https://cleanmoney.gov.in/gsh/
Fig 1: https://cleanmoney.gov.in/gsh/

Operation Clean Money is an initiative of the Government of India, Income Tax Department, which was launched in 2017, to create a tax compliant society through a fair, transparent, and non-intrusive tax administration. While the Clean Money website has not been defaced by gSH, they appear to have backdoor access to the Clean Money servers. 

While Twitter users have alerted the Indian CERT and the Income Tax Department to the hack, the https://cleanmoney.gov.in/gsh/ page is still up, at the time of publishing this article.

 

Update: Since the article was published, the page https://cleanmoney.gov.in/gsh/ has been taken down. 

Be informed about these Threats in your Inbox

Sign up now to our Threat intelligence Newsletter and be the first to know about these threats first in your inbox.