NEWS FROM THE LAB - Friday, December 14, 2007

Turkish Defacement Posted by Mikko @ 07:53 GMT

It's somewhat surprising that still, in late 2007, there are hobbyist Web defacement gangs that compete in how many Websites they can deface. Most of these gangs originate from Turkey or Brazil and they keep score on the numbers of their defacements through special defacement archive servers.

Why am I bringing this up? Because last night our Web discussion forum server (forum.f-secure.com) got defaced by a Turkish gang. See this screen shot:


Quite embarrassing. So how did this happen? The server itself is quite well hardened, but the web forum software had an unannounced security patch silently released by the vendor nine days ago. The defacement gang learned of the vulnerability and went through the net searching for vulnerable forums and changed the front page of such forums to their "greeting".

Most of you probably didn't even know that we have a web forum. It has never been advertised much. We'll let you know when it's back online.

Editor's Note: The forum is once again online.