Website hacked: Informações

xxxx

http://www.zone-h.org/news/id/4741

  • Mirror saved on: 2012-05-30 21:22:08
  • This is a CACHE (mirror) page of the site when it was saved by our robot on 2012-05-30 21:22:08

xxxx

DISCLAIMER: all the information contained in Zone-H’s cybercrime archive were either collected online from public sources or directly notifiedanonymously to us. Zone-H is neither responsible for the reported computer crimes nor it is directly or indirectly involved with them. You might find some offensive contents in the mirrored defacements. Zone-H didn’t produce them so we cannot be responsible for such contents.

If you are the administrator of an hacked site which is mirrored in Zone-H, please note that Zone-H is not related at all with the defacements itself.

Don’t ask us to remove the mirror of your defaced website, as a cybercrime archive Zone-H’s mission is to keep the entries in the database.

All the self-produced material belongs to Zone-H. You are free to use it as long as proper credits to Zone-H are reported as by the CC license reported below.

Zone-H is not responsible for the use/misuse of the published information, you can use it at your own risk

xxx

Turkish hacking group defaces UPS, TheRegister, Acer, Telegraph, Vodafone

04/09/2011 Written by Kevin Fernandez (Siegfried)

At the time of writ­ing these web­sites are still defaced, with a black page writ­ten “Turkgu­ven­Ligi” and “4 Sept. We TurkGu­ven­ligi declare this day as World Hack­ers Day – Have fun 😉 h4ck y0u”.

What do ups​.com, voda​fone​.com, thereg​is​ter​.co​.uk, acer​.com, bet​fair​.com, nation​al​geo​graphic​.com and tele​graph​.co​.uk have in com­mon? They all use Net­Names as their reg­is­trar. It appears that the turk­ish attack­ers man­aged to hack into the DNS panel of Net­Names using an SQL injec­tion and mod­ify the con­fig­u­ra­tion of arbi­trary sites, to use their own DNS (ns1​.yumur​tak​abugu​.com and ns2​.yumur​tak​abugu​.com) and redi­rect those web­sites to a defaced page.
In the past, Turkgu​ven​Ligi​.info defaced secu​nia​.com, HSBC Korea and the reg­istry Directi with this method.
You can browse the list of their attacks here:
http://​www​.zone​-​h​.org/​a​r​c​h​i​v​e​/​n​o​t​i​f​i​e​r​=​t​u​r​k​g​u​v​e​n​l​i​g​i​.info