The site of Rajkot Municipal Corporation, owned by the Indian government, is the latest one to be targeted by hackers part of the Team Dig7tal collective.
The website is a communication medium between the citizens of the city of Rajkot and the local council.
By leveraging an SQL Injection vulnerability, the hackers managed to gain access to the site’s database. It doesn’t appear as if they wanted to cause any damage, because they only leaked the database’s structure to demonstrate the risks posed by the flaw.
However, they published the vulnerable URL, thus allowing any ill-intended hacker to penetrate the site and steal other, more sensitive, information.
In the past couple of weeks, Team Dig7tal has exposed vulnerabilities in a number of sites, including the Los Alamos National Laboratory, Photography Masters Cup, Harvard University and the University of Nebraska-Lincoln.