Comments on: The Barack Obama Donations Site was Hacked…err, no it wasn’t.

By: Barack’s donor data may be safe, but site was not properly secured | Naked Security

Fri, 15 Oct 2010 12:46:08 +0000

[...] Brian Krebs called the hack a "hoax". The best analysis I can find on what Unu encountered when he stumbled upon Roosevelt University's calendar database was posted at the Praetorian Prefect [...]

By: Praetorian Prefect | Unu Cracks a Wall Street Journal Conference Site, Not WSJ.com

Fri, 04 Dec 2009 10:41:40 +0000

[...] unsolicited penetration tests on brand name web sites with a concentration in SQL Injection is at it again, this time with a claim that he cracked WSJ Online. Per Unu: “Traffic Rank 88 in U.S., by [...]

By: Symantec Hacked? Full Disk And Database Access? | Business Computing World

Symantec Hacked? Full Disk And Database Access? | Business Computing World — Fri, 27 Nov 2009 15:50:14 +0000

[...] not always agreed on the accuracy of Unu’s claims, as in the recent claimed compromise of the Barack Obama Donations site; as ever, Unu insists that his activities are only done to warn and raise awareness without saving [...]

By: Symantec hacked, full disk and databse access? » CounterMeasures

Symantec hacked, full disk and databse access? » CounterMeasures — Mon, 23 Nov 2009 10:50:57 +0000

[...] commentators have not always agreed on the accuracy of Unu’s claims, as in the recent claimed compromise of the Barack Obama Donations site; as ever, Unu insists that his activities are only done to warn and raise awareness without saving [...]

By: Prefect

Prefect — Tue, 03 Nov 2009 05:01:56 +0000

Its correct to say that the proxy is acting as an intermediary, however many times in written sources the word redirection is also used in describing the actions of a proxy. In this case it is not a redirect in the style of say a meta tag refresh or Javascript location.href where the browser is fully sent to a new web site and thus under that site's domain.

Second while we can only speculate at the proxy's actual function or purpose as an intermediary, it is clear from observation that part of its purpose is to redirect users to resources outside the Obama web site.

Third, saying proxies proxy doesn't help people who don't already know what a proxy is.

The usage above is not really confusing because what's happening is fully explained, not left at a single statement of 'redirect'.

Nice 'gotcha' though...really.

By: Anonymous

Anonymous — Mon, 02 Nov 2009 17:27:56 +0000

I take it the smartproxy isn’t actually “redirecting” the browser to the other site, but is proxying it. If it actually redirected the browser, then the other site would not be able to steal cookies from barackobama.com.

By: Busted! PCMagazine spreads rumors of BarackObama.com hack.

Busted! PCMagazine spreads rumors of BarackObama.com hack. — Sat, 31 Oct 2009 19:46:06 +0000

[...] Praetorian Prefect | The Barack Obama Donations Site was Hac [...]

By: Mike

Mike — Wed, 28 Oct 2009 17:15:45 +0000

Great write up and very thorough. Thanks.

By: Steve R

Steve R — Wed, 28 Oct 2009 03:18:34 +0000

Dan,

You're very welcome. You placed a good deal of effort here, it deserves to be seen. Not to mention, running on my guess alone wasn't enough, this added to the story with research and a clear explanation.

-Steve

By: Barackobama.com Hack Claim Not Standing Up To Scrutiny | WCZone Web Design! | Akron Ohio Website Design - Akron Web Development, Cleveland Web Design, Business Website,Web Programming, Akron, Summit County - Services Cuyahoga Falls Website Design Web Deve

Tue, 27 Oct 2009 20:58:34 +0000

[...] to look deeply into the specifics, the claims were unsubstantiated. According to other critiques, especially this one from Praetorian Prefect, The anonymous hackers may have accidentally intruded on a wholly different site by accident. That [...]

By: Prefect

Prefect — Tue, 27 Oct 2009 19:55:53 +0000

That's fair, and without educated guesses we'd have no where to start from. That section of the article just explains that I looked at that scenario after your article suggested it.

I don't want anything read out of context, so I've added to the quote where you mention that it was speculation.

Thanks for the link back to us.

By: Steve R

Steve R — Tue, 27 Oct 2009 17:22:53 +0000

Dan,

Great work. I'm going to cite it in my update.

To be fair though, in the original article, the same server comments were only speculation, as I wrote.

Likewise, where you quoted me in the update, I mentioned it was an assumption.

I made those remarks, because of the original story where Unu mentioned, "...access to the databases on his server. "

Were they bad guesses? Yes, and thanks to this article I can prove that they were.

Again, great work.

-Steve

By: Stiennon

Stiennon — Tue, 27 Oct 2009 14:15:48 +0000

Thanks for this careful analysis. Very helpful.

-Stiennon

By: Posts about Barack Obama as of October 26, 2009 » The Daily Parr

Posts about Barack Obama as of October 26, 2009 » The Daily Parr — Tue, 27 Oct 2009 03:43:40 +0000

[...] “pie, Admits, Energy, Obama, Plan, Sky” The Barack Obama Donations Site was Hacked…err, no it wasn’t. – praetorianprefect.com 10/27/2009 This morning a security researcher identified that he was [...]