Two More Sites Hijacked

Monday, October 14, 2013 @ 05:10 PM gHale


After coming off a couple of weeks of hijacks, pro-Palestinian hackers of KDMS Team hit two more domains via DNS poisoning.

Their latest targets are the websites of ESET (eset.com) and Bitdefender (bitdefender.com). Over the past few weeks, the hackers defaced the Whatsapp, Avira, AVG, and Alexa sites, along with the Metasploit and Rapid7 sites.

RELATED STORIES
Metasploit, Rapid7 Sites Hit
Avira Confirms ISP Hack
Adobe Hacked, Source Code Leaked
Too Small for an Attack? Think Again

The message was similar as the past hits: “We was thinking about quitting hacking and disappear again! But we said: there is some sites must be hacked. You are one of our targets. Therefore we are here,” the hackers wrote on the defaced sites.

“And there is another thing. Do you know Palestine? There is a land called Palestine on the earth. This land has been stolen by Zionist. Do you know it? Palestinian people has the right to live in peace. Deserve to liberate their land and release all prisoners from Israeli jails. We want peace,” they said.

Bitdefender and ESET said their systems have not suffered a hack attack.

“A group of pro-Palestinian activists were able to spoof a request to change the DNS settings for the ESET.com domain name servers, resulting in a defacement where visitors to the ESET.com website were redirected to one set up by the activist group,” ESET officials said.

“ESET responded immediately and the name server records were corrected minutes after the incident. The defacement site may have been visible for slightly longer due to the time taken for DNS changes to propagate. At the same time, we requested our registrar to bolster domain transfer security to ensure no similar incident will happen again,” they said.

“At no time was any ESET infrastructure component compromised, and no data or sensitive materials have been breached. ESET operations were not affected except for the visibility of the ESET.com website for a short period of time.”

Bitdefender confirmed their DNS records changed via an attack aimed at Register.com.



Leave a Reply

You must be logged in to post a comment.