Myanmar Internal Revenue Department
Jump to navigation Jump to search
To expose the military junta following a coup, Myanmar's Internal Revenue Department was hacked by the Sugondese Electronic Army. The leak is available for journalists and researchers through DDoSecrets.
Explanation of the Hack
Initial access was gained using ProxyShell via the IRD's Microsoft Exchange email servers. One of the servers had an active domain admin RDP session with credentials dumped from lsass. This gave the hackers access to the rest of IRD's network, including the SQL server for the electronic tax filing system, containing the entire country's tax information.