QLD senator's site defaced in hack attack

Website defaced, home page crippled
The defaced site.

The defaced site.

  • The defaced site.
  • McLucas' homepage
  • The forgey warning (mozilla firefox)
View all images

The online presence of Queensland Labor Senator, Jan McLucas, has been defaced after a hacker broke into her website.

The attack occurred last week and replaced the home page, currently under construction, with an image displaying the hacker’s moniker and a link to a forum warez page.

At the time of writing, parts of McLucas’ site, janmclucas.com.au, were operational, while others triggered a web browser forgery notification. The home page link redirected to an alternative site, janmclucas.net, which was displayed normally as the page has not yet gone live.

The defacement included a series of pop-up windows, which greeted visitors with:

“Hellow! You Going To be Surprised To See This,Because (sic) You G0t Hacked by --==TH3_Z@K==-- Site Fu**eD Up Welc0me t0 --==TH3_Z@K==-- Property !!!”

The hacker noted that “nothing is deleted” and the defacement is “just for show off! [sic]”. The page even left visitors a farewell message popup: “Have A nice Day ! G00d Bye”.

Another hacker, who was not involved in defacing McLucas' site, told Computerworld such attacks are relatively simple.

“Everyday, dozens of security flaws are discovered using techniques widely publicised,” the hacker said. “Many administrators also do not care a bit with security issues.”

The hacker has breached websites using a range of flaws discovered as early as the 1990s.

The hacker said breaching a server requires “technical knowledge and a bit of malice”, using techniques including attacking web applications with SQL injections in MySQL; Access; MSSQL; Local File Inclusion, and Remote File Inclusion. The hacker also uses brute force attacks through FTP and SSH, and exploit server software flaws.

It follows a string of attacks against Kellogg’s, Nutri-Grain, Vogel’s, and Specialty Cereals on Sunday, and the mass defacement of more than 70 Australian websites, the bulk originating from a single hacking entity.

McLucas’ office did not respond to questions by the time of publication.

More about: MySQL, SSH
References show all

Comments

1

Daniel

Thu 29/04/2010 - 12:55

perhaps the hosting provider should have patched their Apache!

2

sure...if it was apache

Fri 30/04/2010 - 16:22

There's a ton of local government websites running fingerprint-able & vulnerable technologies, but nobody cares about securing them...cheapskates.

3

Trevor Clarke

Mon 03/05/2010 - 12:11

Editor's note - The senator currently has a redirect running from the janmclucas.com.au site to janmclucas.net.au (the existing home page). However, after Computerworld pointed out to a spokesperson of the senator that as of 11am, 3 May, 2010 the entire janmclucas.com.au site - minus the landing page which is redirected - was still online and accessible the site has been taken offline.

Post new comment

The content of this field is kept private and will not be shown publicly.
Users posting comments agree to the Computerworld comments policy.
Login or register to link comments to your user profile, or you may also post a comment without being logged in.
Related Coverage
Related Whitepapers
Latest Stories
Community Comments
Tags: hacking, security
Whitepapers
All whitepapers
Sign up now to get free exclusive access to reports, research and invitation only events.
Featured Download
/downloads/product/160/ultraiso/

UltraISO

UltraISO is an ISO CD/DVD image file tool that creates, edits and converts. It is also a bootable CD/DVD maker that has the ability to ...

Computerworld newsletter

Join the most dedicated community for IT managers, leaders and professionals in Australia