The Media Centre for National Security (MCNS) was established for the specific purpose of disseminating all national security and defence-related information and data to the Media and the public from one co-coordinated centre.
The hack was announced in Twitter . As per the mirror of the defacement page, the security breach was occurred on 14th Jan.
The hacker defaced main page(nationalsecurity.lk) as well as uploaded a defacement page in uploads directory
At the time of writing, the defacement page has been removed from the main page, visitors are being presented with a message that says "We are currently performing site maintenance. we'll be back 100% in a bit. "
But We are still able to see the uploaded defacement page here : www.nationalsecurity.lk/MCNS/defence-security/news/plugins/spaw/uploads/index.html
The hacker also leaked the compromised database. The dump contains Sensitive information including admin username, password(plain-text format), MySQL username and password.
It also includes email address, username and plain-text format password of users