Tag: "Web Site Defacement"

Congressional Web Site Defacements Follow the State of the Union

Congressional Web Site Defacements Follow the State of the Union

Shortly after President Obama’s State of the Union address, constituents visiting the web sites of Congressional representatives like Charles Gonzalez (20th District of Texas), Spencer Bachus (Alabama’s 8th District), and Brian Baird (Washington’s 3rd District) were presented with a defacement message from the Red Eye Crew that as of 4:10 am EST remains up on their web sites. All of the sites affected are in the house.gov domain, but not every congressional site in the domain is defaced.

Umm…TechCrunch? Defacement Two in 24 Hours

Umm…TechCrunch? Defacement Two in 24 Hours

Less than 24 hours from the last web site defacement, TechCrunch has been defaced again early this morning by the same cracker(s) responsible for yesterday’s attack. Whatever preventative measures were taken yesterday (WordPress upgrade, HTTP authentication for wp-admin) have not blocked the attacker’s access to modify TechCrunch’s content, as this morning the attacker left a profane message on top of the homepage for Michael Arrington as well as a few media outlets like Yahoo and the BBC. At this point TechCrunch should perhaps be ensuring that there is no uploaded shell on the server the site is hosted on.

We shall strike if the leader orders: Twitter Struck by Iranian Cyber Army

We shall strike if the leader orders: Twitter Struck by Iranian Cyber Army

At some time around 10pm on Thursday, users going to Twitter.com were served the page below with a banner reading “This site has been hacked by the Iranian Cyber Army”. Also, mowjcamp.org, a site for supporters of Mir-Hossein Mousavi Khameneh a candidate who ran against Mahmoud Ahmadinejad in the 2009 Iranian presidential election, has been serving a similar defacement since at least December 16th and continues to do so. The motive appears to be activism in support of Iran’s current Islamic regime. The attack vector was a bad actor using an id and password assigned to Twitter to log in to the administrative portal of managed DNS service provider Dyn.

NSA Career Fair schedule, correct appearance.

NSA.gov Site Defacement

It appears, according to the site defacement archive hosted at Zone-H, that on or around October 5th an NSA web site application was the victim of an SQL injection exploit resulting in a web site defacement. A web application loading a list of recruitment events at colleges was compromised on the careers section of nsa.gov.

ESPN is cornified.

Now I will believe that there are unicorns…

Anyone who looked at ESPN online today (04/27/09) may find themselves agreeing with Mr. Shakespeare. Starting a little after 4pm EST you may have noticed a spike in chatter on Twitter related to ESPN.com. A high profile web site defacement occurred on the sports news web site where the Cornify script was invoked by a Javascript using keystokes known as the Konami code.