14 DAY TRIAL // The official website of the California Employment Training Panel (etp.ca.gov) has been hacked. The attacker is Shadow Haxor from the Philippines.
The hacker has told Pinoy Hack News that he leveraged a ColdFusion vulnerability in order to gain access to the EPTs systems.
Shadow Haxor has defaced the EPT website’s homepage, but he has also added a defacement page to https://www.etp.ca.gov/x.htm.
At the time of writing, the site of the EPT is still defaced. A mirror of the defacement is available on zone-h.org.
According to its website, the EPT “provides funding to employers to assist in upgrading the skills of their workers through training that leads to good paying, long-term jobs.”
I’ve requested a statement on this incident from the organization. This post will be updated if they respond.