The official website of Thai Airways is hacked by Pakistani hacker claiming to be “Hunter butt”. The hacker also managed to upload a deface page on 23 subdomains of the Thai Airways website.
According to the subdomains defaced, Thair Airways SMTP mail server, DNS Nameservers, Payment, and booking systems had been hacked. The breached servers appear to be very sensitive, that may have users data on them.
The hacked uploaded his deface page with the file name “index.html”, with an animated emoji holding a Pakistani flag message stating the following:-
The subdomains that got hacked are:-
- smtp.thaiairways.com/index.html
- www.thaishop.thaiairways.com/index.html
- webmail.thaiairways.com/index.html
- devsip.thaiairways.com/index.html
- www.book.thaiairways.com/index.html
- devmyidtravel.thaiairways.com/index.html
- ww.thaiairways.com/index.html
- mobile.thaiairways.com/index.html
- tgmdmcs.thaiairways.com/index.html
- epayment.thaiairways.com/index.html
- devtgmail.thaiairways.com/index.html
- smpbkk06.thaiairways.com/index.html
- smpbkk04.thaiairways.com/index.html
- smpbkk05.thaiairways.com/index.html
- smpbkk03.thaiairways.com/index.html
- ns.thaiairways.com/index.html
- thaispaces.thaiairways.com/index.html
- login.thaiairways.com/index.html
- imap.thaiairways.com/index.html
- how2.thaiairways.com/index.html
- mail.thaiairways.com/index.html
- thaisphere.thaispace.thaiairways.com/index.html
- ns1.thaiairways.com/index.html
An archived page of the defacement can be found here. The hacker also archived all Thai Airways breached websites on Zone-H.
As the story is still developing, we are to update this news article as soon as new information is received regarding the Thai Airways website getting breached.
Update:- The website is now restored and the hackers page has been removed.
