Yesterday using an 18-month old exploit a script kiddie group known as "Turkhackerler" defaced the home page of reddawn.org and a few other sites I host. My software was patched well, but the exploit came from a file that should have been deleted (e107's patch process of just unzipping the new version into the directory is bad).
The defacement was pretty harmless and they didn't do any damage to the data besides defacing the index pages of my sites. Now you can add the [sarcasm] hugely popular [/sarcasm] reddawn.org to the list of sites that have been famously defaced: riaa.com, fbi.gov, microsoft.com to name a few.
The attacks apparently are coming as a response to the Mohammed cartoons that made big news a while back, condemning our defense of "free speech". I never saw the cartoons nor have I had the chance to read or think about the topic, but I can tell you that "free speech" is a very good thing, and when done legally and properly can be very effective.
To read more about the hundreds of Islamic protest defacements:
[link]Some tips for my upset n00bish friends in Turkey and Islamic nations around the world:
- Don't use FrontPage to make your 1337 protest web site, Microsoft stands for all you're against.
- Don't use an old version of IE when you're pwning sites, or you might get pwned yourself. And, see above tip about using Microsoft products.
- Green-on-black color schemes only work for terminal sessions (you gained points on the 1337ne3$$ factor, but lost them all on aesthetics)
- Maybe if you wanted to spread your ideas and views on how the world sucks you should do it on *your own* web space and stop hijacking other legitimate sites
They probably won't read this but this post was mostly self-serving anyway.
