Metasploit, Rapid7 Sites Hit

Friday, October 11, 2013 @ 04:10 PM gHale


Hackers of the Palestinian KDMS Team have been busy. First they hacked into and defaced the Whatsapp, Avira, AVG, and Alexa sites, and today they have gotten defaced the Metasploit and Rapid7 sites.

Using DNS poisoning, they were able to hijack metasploit.com, the website dedicated to the popular penetration testing software Metasploit. They also got into security provider Rapid7’s website.

RELATED STORIES
Avira Confirms ISP Hack
Adobe Hacked, Source Code Leaked
Too Small for an Attack? Think Again
2 Teens Busted in Separate DDoS Attacks

The opening screen read: “Hello Metasploit. After whatsapp, avira, alexa, avg and other sites we was thinking about quitting hacking and disappear again! But we said: there is some sites must be hacked. You are one of our targets. Therefore we are here,” the hackers wrote on the defaced websites.

“And there is another thing. Do you know Palestine? There is a land called Palestine on the earth. This land has been stolen by Zionist. Do you know it? Palestinian people has the right to live in peace Deserve to liberate their,” they added.

Rapid7’s HD Moore confirmed the websites ended up hijacked through the registrar, Register.com.

“Still having a tug of war with the Rapid7 domains, the attackers have the ability to change ANY Register.com domain, check yours,” Moore warned on Twitter.

Register.com’s owner is Web.com, the same as Network Solutions, the registrar hacked when AVG, Avira and Whatsapp sites ended up attacked.

Rapid7 said: “This morning the DNS settings for Rapid7.com and Metasploit.com were changed by a malicious third-party. We have taken action to address the issue and both sites are now locked down. We are currently investigating the situation, but it looks like the domain was hijacked via a spoofed change request faxed to Register.com.

“We apologize for the service disruption, and do not anticipate any further implications for our users and customers at this time. We will keep everyone posted as we learn more, and let the community know if any action is needed.”



Leave a Reply

You must be logged in to post a comment.