Cyber Incident Victim: West Bengal Public Health Engineering Department
Date:
Feb 2014
Location:
India
Summary
The West Bengal Public Health Engineering Department's website was compromised by the Pakistan Haxors Crew, who defaced its applications section with a political message demanding territorial sovereignty and cessation of alleged espionage and violence against Muslims, while claiming possession of the organization's data. The attackers maintained persistent access to the defaced page, which was mirrored on an external platform, and concurrently targeted other government entities including Nepal's Community Irrigation Program as part of a broader campaign against regional infrastructure.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 1 motive | 1 technique |
| Threat Actor | Type | Location |
|---|---|---|
| 1 actor | Available to members | Available to members |
Description
On February 4, 2014, the website of West Bengal’s Public Health Engineering Department (wbphed.gov.in) was compromised by hackers identifying themselves as the Pakistan Haxors Crew. The attackers successfully uploaded a defacement page to the "applications" section of the government website, replacing legitimate content with a political message. The defacement declared "Free Kashmir. Free Syria. Stop Spying On Us. Stop Killing Muslims. We Have All Your Data. Don't Try To Catch Us," indicating both geopolitical motivations and a claim of unauthorized data access. At the time of reporting, the altered page remained publicly accessible, demonstrating the persistence of the compromise. A mirror of the defaced content was documented on the cybersecurity monitoring platform zone-hc.com, preserving evidence of the intrusion. The attack specifically targeted a subdirectory of the state government's public-facing web infrastructure rather than the main homepage. No technical details about the exploitation method were disclosed in available reporting.
The incident formed part of a broader campaign by the Pakistan Haxors Crew against South Asian government targets during this period. On the same day as the West Bengal breach disclosure, the group claimed responsibility for defacing Nepal’s Community Irrigation Program website (cip.gov.np), demonstrating a pattern of regional attacks against public sector digital assets. Historical context indicated prior targeting of multiple Indian websites by this actor group, though specific previous targets were not enumerated in the source material. The defacement message's content explicitly referenced international conflicts involving Muslim populations, framing the attack within a larger ideological context. No information was provided regarding detection methods, containment efforts, or restoration activities undertaken by the Public Health Engineering Department. The operational impact appeared limited to reputational damage and temporary service disruption to the compromised "applications" subsection, with no evidence of secondary attacks or data exfiltration beyond the hackers' unverified claims of possessing sensitive information.