Friday, April 24, 2009

belimantil.info hacked

About 2 days ago, I saw this on belimantil.info:




Astounded my first thought was "What the hell?!". I was looking for a revision text one of my colleagues wrote, and fortunately it was available on another site. medforum2 (a forum created by medical students for general talk, exams and medicine-related discussion) was hosted on that domain, I thought of visiting and saw one of my colleagues complaining about the same thing.

Today I re-visited the site, only to find that it wasn't working! Naturally, my techie side kicked in several minutes afterwards, and I started looking into whether it was their fault (probably) or the web administration (why not?). So the whois command revealed the nameserver, I decided to visit oklopsrbija.com, their hosting provider.

Poštovani klijenti,

Prekjuce je izvrsen napad velike grupe palestinskih hakera koji su "u borbi protiv Izraelaca" uspeli da zaobidju sve zastite na serveru i ishakuju sve naloge. Juce je ceo dan bila rekonstrukcija fajlova i pojacanje zastite.
Nocas je uglavnom proradilo sve. Otezan je jos pristup cPanelu. Klijenti kojima je hakovanjem ostecena indeks stranica a nemaju backup tog fajla, neka ostave ticket sa subjectiom: "backup index fajla" i uradice se parcijalni restore podataka za te klijente, pocevsi od petka ujutru, i samo za klijente koji zatraze restore indeks fajla. U nemogucnosti smo da uradimo full restore svih podataka posto je vecina sajtova, pogotovu foruma, vec online i pregazili bi tim full restore njihove sveze podatke.Probijanje zastite nije nista novo na internetu, postala je nazalost svakodnevnica, igrom slucaja smo prekjuce odabrani mi.
Ako hakeri mogu da provale u NASA ili Pentagon servere, sto ne bi i kod nas. I nismo prvi a na zalost ni poslednji domaci provajder koji je imao komplet ishakovan server.Takodje vas molimo da pratite dalja obavestenja logovanjem na vas oklopov nalog i pregledanje sekcije "Obavestenja".
S poštovanjem,
Vojin Petrović
direktor Oklop Srbija

In short, they are claiming that "Security breaking is nothing new on the internet, it has become an everyday event unfortunately, by chance we were chosen the day before yesterday" and "If hackers can break into NASA or Pentagon servers, why wouldn't they break into ours?". If understood them correctly, they're claiming it's not their fault they're not secure. Not even a single "We are sorry for not being careful" or "We'll take extra security steps to provide you with a safer hosting in the future" sentence. What an arrogance! I guess they should scratch the word on their website title, "Pouzdan" (=Reliable).

P.S. I hope this doesn't happen to me :)

No comments: