Again and again, Filipino Government websites keep getting hacked by several hacking groups. Well defacing is the common case here which is internet vandalism on my part. I’d like to point that implementing security to filter simple and sophisticated attacks is very easy. You know what they said. If you want to catch the criminal, think like a criminal.
If you ask me, there are four possible ways that a site can get hacked. SQLi (SQL Injection), LFI-RFI (Local, Remote File Inclusion), and XSS (Cross Site Scripting). Then again if you’re too naive about security I suggest disabling “error_reporting” during live mode.
The story goes into an infinite loophole. It’s simple really, they get hacked, news pop out, they restore it with the same file lol.