Advertisement
Home
Saturday, 22 November 2008
  
 
Last week attacks
O.S.  Defs.  %
Linux  8778  71.58%
Win 2003  1950  15.90%
Win 2000  722  5.89%
Solaris 9/10  402  3.28%
FreeBSD  226  1.84%
Other  185  1.51%

Total attacks: 12263 of which 4619 single ip and 7644 mass defacements

Polls
Should Zone-H continue mirroring defacements? (floods will be purged)
 
Main Menu
Home
Digital Warfare
Geopolitics
ITsec News
ITsec Advisories
Test Drive
360°
Digital Attacks Archive
Zone-H events
Publications
Zone-H Friends/Partners
Contact Us
Search
Download Area
Zone-H forum
About this website
Login Form





Lost Password?
No account yet? Register
ZONE-H In Numbers
 News: 14559
 Advisories: 11
 Managers: 1
 Administrators: 1
 Operators: 3
 Super Administrators: 3
 Registered Users: 38262
 Downloadable Files: 3888
 Digital Attacks: 2981160
 Attacks On Hold: 881
 Online Users: 51
Syndicate
Visitors' Map
Highlight on most recent attacks
jiefanglu.gov.cn/zkn.txt by ZoRRoKiN       ytjj.gov.cn/zkn.txt by ZoRRoKiN       bislig.gov.ph by Ashiyane Digital Security Team       prefeiturajoseraydan.com.br by Fatal Error       semag.taquarussu.ms.gov.br by Fatal Error       pmsaltodolontra.com.br by Fatal Error       cmirituia.com.br by Fatal Error       pmriobrancodoivai.com.br by Fatal Error       prefeituraborrazopolis.com.br by Fatal Error       pmcurionopolis.com.br by Fatal Error       
Latest advisories
Latest on Digital Warfare
Latest on Geopolitics
Playing the three monkeys game: GoDaddy denies the hacking incident PDF Print E-mail
User Rating: / 12
PoorBest 
Written by Roberto Preatoni (SyS64738)   
Friday, 02 June 2006

If you ever asked yourself what was the reason for having a defacement archive like Zone-H,  web hosting giant GoDaddy is finally giving you a good one. Ops sorry, 38,500 good ones...

ZDNet's reporter George Ou who is also a GoDaddy customer, being concerned about hosting his personal page on GoDaddy decided to dig into the incident we reported a few days ago when Turkish cracker Iskorpitx hacked and defaced 38,500 websites in a single shot, most of them hosted by GoDaddy.

The cracker apparently took advantage of a weakness present in an ASP script GoDaddy automatically uploads in all his customers directories. George decided to see more clear in the issue and digging in Zone-H archives he discovered that a similar incident happened in April 2005, always having Iskorpitx playing the role of the butcher and GoDaddy of the hamburger.

It appears that George found evidences that the incident was technically very similar to the one happened a few days ago, being able to trace back in a support forum a question one of the GoDaddy user placed at that time in which it is evident that GoDaddy got hacked a year ago by the same vulnerability used by the same cracker to deface them last time.


The hilarious thing is that when contacted by George, GoDaddy not only stated that eventually the vulnerability "couldn't be patched as it is embedded in IIS 6.0" (which is not) but also blatantly denied that the last incident ever happened and no customer's website have been compromised.

Well, we don't want to spoil the atmoshpere so we invite you all guys to have a look of George Ou's article at ZDNet: http://blogs.zdnet.com/Ou/?p=239

After reading that, you can still find the 38,500 mirrors of the websites defaced by Iskorpitx here, but please remember... we didin't see anything, we didn't hear anything, we didn't say anything... especially to GoDaddy's customers.

Roberto Preatoni (SyS64738)


Comments Index (Total Messages: 2)
stupidity Written by Nazca on 2006-06-02 19:31:22
Re: stupidity Written by Vic on 2006-06-02 20:34:05

Powered by a Zone-H(ified) version of AkoComment 3.0!


DISCLAIMER: Forum postings are the opinion of the posting author alone, and should not be taken as the opinion of Zone-h. The   author is entirely and solely responsible for all content that he/she uploads, posts, or otherwise transmits via the website. Zone-h is not responsible for such content. However, Zone-h shall have the right, but not the obligation, to delete, move, or edit any content that violates this agreement or is otherwise objectionable as determined by Zone-h in its sole discretion and without notice.
 
< Prev   Next >
[ Back ]
Advertisement
 
Top!
© 2008 Zone-H.org - Unrestricted Information
Joomla! is Free Software released under the GNU/GPL License.
 Top!