Attacks/Breaches
1/20/2010
06:23 PM
Connect Directly
LinkedIn
Twitter
Google+
RSS
E-Mail
50%
50%

Network Solutions Customers Hit By Web Defacement

Cyber attacks on Web sites are on the rise, the company says.

A small number of Network Solutions Web hosting customers over the weekend found that their Web sites had been defaced, the company acknowledged on Tuesday.

In a blog post, Shashi Bellamkonda, director of social media for Networks Solution, explained that the attack was limited in scope and that it involved the inclusion of remote files atop legitimate Web sites.

"This was an issue on multiple servers and unknown intruders were able to get through by using a file inclusion technique," he said. "There was no danger to any personally identifiable or secure information."

The attack was limited to the company's Unix servers, the company said.

A company spokesperson provided essentially the same information that Bellamkonda included in his blog post and did not immediately respond to a request to clarify the number of customers affected.

According to Bellamkonda, Network Solutions has enhanced its security measures and has reached out to law enforcement regarding the attack.

Bellamkonda says that authorities have reported an increase in the number of attacks of this sort in recent days.

As examples, the company's spokesperson pointed to recent attacks on Twitter and on China's Baidu search engine by a group calling itself the Iranian Cyber Army.

And over the weekend, the Jewish Chronicle's Web site was temporarily unavailable following anti-Semitic defacement.

In a move that may encourage Network Solutions to give extra thought to its network security, Baidu on Wednesday filed a lawsuit against domain name service provider Register.com for failing to adequately defend against the Iranian hackers that disrupted its site.

Baidu said it is seeking damages in the millions for the four hours during which its site was inaccessible due to the attack.

Comment  | 
Print  | 
More Insights
Register for Dark Reading Newsletters
White Papers
Flash Poll
Current Issue
Cartoon
Video
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2014-2227
Published: 2014-07-25
The default Flash cross-domain policy (crossdomain.xml) in Ubiquiti Networks UniFi Video (formerly AirVision aka AirVision Controller) before 3.0.1 does not restrict access to the application, which allows remote attackers to bypass the Same Origin Policy via a crafted SWF file.

CVE-2014-5027
Published: 2014-07-25
Cross-site scripting (XSS) vulnerability in Review Board 1.7.x before 1.7.27 and 2.0.x before 2.0.4 allows remote attackers to inject arbitrary web script or HTML via a query parameter to a diff fragment page.

CVE-2014-5100
Published: 2014-07-25
Multiple cross-site request forgery (CSRF) vulnerabilities in Omeka before 2.2.1 allow remote attackers to hijack the authentication of administrators for requests that (1) add a new super user account via a request to admin/users/add, (2) insert cross-site scripting (XSS) sequences via the api_key_...

CVE-2014-5101
Published: 2014-07-25
Multiple cross-site scripting (XSS) vulnerabilities in WeBid 1.1.1 allow remote attackers to inject arbitrary web script or HTML via the (1) TPL_name, (2) TPL_nick, (3) TPL_email, (4) TPL_year, (5) TPL_address, (6) TPL_city, (7) TPL_prov, (8) TPL_zip, (9) TPL_phone, (10) TPL_pp_email, (11) TPL_authn...

CVE-2014-5102
Published: 2014-07-25
SQL injection vulnerability in vBulletin 5.0.4 through 5.1.3 Alpha 5 allows remote attackers to execute arbitrary SQL commands via the criteria[startswith] parameter to ajax/render/memberlist_items.

Best of the Web
Dark Reading Radio
Archived Dark Reading Radio
Sara Peters hosts a conversation on Botnets and those who fight them.