Friday, June 22, 2007

Zone-H DDoS'd, AOL and Intel Defaced

Marcelo dos Santos de Almeida writes on Zone-H News:

Three different dDoS attacks temporarily took Zone-H offline for some days, preventing Zone-H team to publish news and to update our Attacks Archive. Now that all Zone-H activities have been restored we point out some important digital events that affected both companies and governmental websites during last weeks.

One of the most worth noticing attack was carried out by a Turkish defacer against Intel and AOL’s website, based in Puerto Rico.

There is still no documented clue about how the attacker managed in penetrating the web server, but he is likely to have used a recent flaw in Solaris where a correct exploitation results in a remote code execution.

More here.

1 Comments:

At Tue Jun 26, 06:41:00 PM PDT, Anonymous Anonymous said...

I should probably contact ZoneH and ask them to source it, but in the meantime I don't believe it was a Turkish attacker. If you look at Zone_H's "screenshot" of the defacement (lousiest screenshot ever, but it's all they've got, I guess) you see the phrase "c-wings was here" over and over again running down what's *supposed to be* AOL.com/pr's page (but you can't tell from the screenshot if that's AOL Puerto Rico or not).

If you take this story at face value and do a Google search for "c-wings", you find he's a somewhat infamous hacker who blackmailed another webmaster within the last few years by spoofing his IP to make him look like he committed c-wing's crimes.

That webmaster purported to know the name of c-wings website and the owner's name under the Whois info is not Turkish to say the least, it's completely Anglo-Saxonified.

None of it is adding up. I've had an article up about the defacement for a few days, but I'm ready, without more details, to edit it to say that it's unsourced--that this is more unconfirmed rumor than anything else.

 

Post a Comment

<< Home