Want media attention? Don't use Twitter: security expert

Social media platforms are failing users as a way to express dissent to a wider audience

A security expert has warned that organisations should prepare for more politically motivated Web site attacks, as hackers seek more effective vehicles for gaining large-scale media attention.

Security analyst and author Nigel Phair, says that in the wake of the hack this week of the Royal Australian Air Force's (RAAF) Web site by Indian hacker Atul Dwivedi - aimed at gaining awareness of attacks on Indian students in Australia - organisations needed to look to their Web site security.

“If you want to get your message out to the media what better way to do it than deface the RAAF Web site,” Phair said. “It’s better than going on Twitter and Facebook. Out of all the other mechanisms to get your message out there this is one good way of doing it.”

Phair says that most organisations were unlikely to consider that their Web site could be used as a platform for political comment and dissent.

“What's interesting about this hack is not the criminality, but the vehicle. [Hackers] might use [an organisation's] Web site as a defacer, not as a hack against them or any beef against that organisation but as just a vector for getting their message out there.”

The RAAF's site, believed to have been hacked yesterday, said: "This is a warning message to Australian Government. Immediately take all measures to stop racist attacks against Indian students in Australia else I will pawn all your cyber properties like this one."

Australia has recently come under fire from Indian students as being a racist and unsafe country to study in following a spate of violent attacks against them.

Despite an Australian delegation being sent to India earlier this month to reassure Indians that Australia is a safe place to live and study, it seems that not everyone is satisfied with the outcomes of this.

The RAAF Web site was shut down for around eight hours as a result of the defacement, however the Department of Defence said no sensitive information was compromised and the security breach is under investigation.

More about: Department of Defence, Facebook
References show all

Comments

1

Anonymous

Fri 17/07/2009 - 13:48

I wonder when our government will learn that simple is better, with just the required functionality and no more.

The latest and greatest (or at least latest) web server and layers upon layers of garbage - I include web applications here - add needless complexity and much more opportunity for attack.

If I were sitting there sweating about break-ins, even those that are not especially serious and can be tracked to the attacker, I would use minimal software on the host just for the job, and ask our security people to use fuzzing tools and anything else they can as well as source code audits to make it much harder to break in a system or deface a web page. I wouldn't stop there either.

There is no need for fancy stuff and endless eye candy. It just opens the doors for attackers who are undoubtedly keeping track of software bugs and their own databases of zero day exploits.

2

Anonymous

Mon 20/07/2009 - 02:56

How has getting a site hacked got anything to do with twitter? Really odd article... seems to be alluding to some security flaw in twitter but only saying a website was hacked and only has a passing mention of twitter.

<A HREF='http://www.cloaknrotate.com/'>Affiliate Link Cloaker</A>

Post new comment

The content of this field is kept private and will not be shown publicly.
Users posting comments agree to the Computerworld comments policy.
Login or register to link comments to your user profile, or you may also post a comment without being logged in.
Related Coverage
Related Whitepapers
Latest Stories
Community Comments
Tags: cybercrime, Facebook, hacking, india, politics, raaf, security, social networking, twitter
Whitepapers
All whitepapers
Sign up now to get free exclusive access to reports, research and invitation only events.
Featured Download
/downloads/product/149/dropbox/

Dropbox

Dropbox is a sharing tool that allows you to synchronize your documents, as well share files with others. It automatically uploads the files to the ...

Computerworld newsletter

Join the most dedicated community for IT managers, leaders and professionals in Australia