Help
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.
Posted 21 May 2004 - 08:28 AM
I thought this was interesting, informative, and even a little funny 
An ALLIANCE OF HACKERS dubbed the Hackers Against America (HAA) has had its website defaced by a Hacker named Marcos. HAA was hacked because they did not follow two key best practices:
1. They did not keep the Operating System patched up
2. They used the same Password for their network as they did for sites they accessed on the Internet.
Hackers hacked by hacker
http://www.theinquirer.net/?article=16050
How they did it
HAA were running a version of BIND which was so old that it had a certain vulnerability which all hackers knew about. Being the sort of network experts they are, the Pirates had failed to install the patches. Marcos modified the DNS so that when the site webmaster tried an FTP connection to update the site, he would be sent to Marcos's own FTP server. When HA's webmaster logged in, Marcos nicked his FTP username and password which he promptly used to deface the website after deleting all the other content, it transpires.
In another security twist, it appears that the hackers had used the same password on their yahoo email sites… so Marcos closed them. Well if you don’t take the most basic security precautions, it is clear you will get hacked. Maybe HAA should get some security experts in.
An ALLIANCE OF HACKERS dubbed the Hackers Against America (HAA) has had its website defaced by a Hacker named Marcos. HAA was hacked because they did not follow two key best practices:
1. They did not keep the Operating System patched up
2. They used the same Password for their network as they did for sites they accessed on the Internet.
Hackers hacked by hacker
http://www.theinquirer.net/?article=16050
How they did it
HAA were running a version of BIND which was so old that it had a certain vulnerability which all hackers knew about. Being the sort of network experts they are, the Pirates had failed to install the patches. Marcos modified the DNS so that when the site webmaster tried an FTP connection to update the site, he would be sent to Marcos's own FTP server. When HA's webmaster logged in, Marcos nicked his FTP username and password which he promptly used to deface the website after deleting all the other content, it transpires.
In another security twist, it appears that the hackers had used the same password on their yahoo email sites… so Marcos closed them. Well if you don’t take the most basic security precautions, it is clear you will get hacked. Maybe HAA should get some security experts in.
This post has been edited by harrywaldron: 21 May 2004 - 08:30 AM
Back to top
I'm glad you posted that Harry. It does my heart good to see the bad guys get a little of their own back.
