Secunia hacked!

Gary · Nov 25, 2010, 01:02:48

Secunia has been hacked by TurkGuvenligi, I believe its a defacing hack but just so people know I though I would post this know, I'm sure this will be sorted by morning. I believe its a redirection but not sure. This defacement of sites by the peace crew has happened before.

DorsetBoy · Nov 25, 2010, 07:06:39

Still down at 07.00AM today, says a lot about Secunia and "security" that they have not even taken their site off line after all these hours.

Gary · Nov 25, 2010, 07:32:39

Quote from: DorsetBoy on Nov 25, 2010, 07:06:39
Still down at 07.00AM today, says a lot about Secunia and "security" that they have not even taken their site off line after all these hours.

Thats bad Dorset

Sorry about the Typos in that message I was very tired

Secunia was hacked at least 8 hours ago, or the DNS was redirected, I am surprised no one did anything

Rik · Nov 25, 2010, 08:51:32

That is worrying when it happens to a security firm.

DorsetBoy · Nov 25, 2010, 09:28:21

http://isc.sans.edu/diary.html?storyid=9994&rss

Rik · Nov 25, 2010, 09:32:46

After the YouTube problems of the weekend it makes you think the whole 'net is becoming vulnerable, doesn't it.

Gary · Nov 25, 2010, 09:33:32

Quote from: DorsetBoy on Nov 25, 2010, 09:28:21
http://isc.sans.edu/diary.html?storyid=9994&rss

They have done this before, I think the same Turkish movement did it to msn in New Zealand by redirecting DNS searches to New Zealands msn new pages.

Gary · Nov 25, 2010, 09:34:01

Quote from: Rik on Nov 25, 2010, 09:32:46
After the YouTube problems of the weekend it makes you think the whole 'net is becoming vulnerable, doesn't it.

It is, Rik.

pctech · Nov 25, 2010, 09:35:14

If the DNS was fiddled with it may well have been corrected but the changes can take 24-48 to filter through the root servers.

Gary · Nov 25, 2010, 09:38:01

Quote from: pctech on Nov 25, 2010, 09:35:14
If the DNS was fiddled with it may well have been corrected but the changes can take 24-48 to filter through the root servers.

Could be, Mitch.

pctech · Nov 25, 2010, 09:40:35

I know when I registered my .com which I use for mail in 2005 it took about 48 hours for the changes to be visible across the net.

armadillo · Nov 25, 2010, 14:09:12

Well, these things will keep happening and they have been happening for years. There must be a lot of kudos for hackers to break a security site's security. I posted this one about Kaspersky just under two weeks ago, though Rik was the only one who noticed

Quote
Kaspersky download site hacked to spread fake AV

UPDATE: According to a report in ITPro by Jennifer Scott, Kaspersky have been in touch to confirm that their servers were in fact compromised and the redirection was very real. The breach was made by exploiting "a third party app used for site admin". The malicious redirection was in place for three and a half hours.

More here

The most powerful tool against these things taking hold is vigilance. The Kaspersky hack was malicious. This Secunia one is merely embarrassing.

Rik · Nov 25, 2010, 15:46:58

Quote from: armadillo on Nov 25, 2010, 14:09:12
I posted this one about Kaspersky just under two weeks ago, though Rik was the only one who noticed

I try.

But then note the name of the author.

pctech · Nov 25, 2010, 15:48:45

Wasn't the idea of DNSSEC to prevent this?