Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Vulnerabilities / Threats

02:11 PM
Connect Directly

Hackers Deface CERN's 'Big Bang' Particle Accelerator Site

As scientists began testing CERN's Large Hadron Collider last week, hackers made a mockery of the European lab's network security.

Just as scientists began testing CERN's Large Hadron Collider in Switzerland last week, hackers made a mockery of the European lab's network security.

The collider is a massive underground particle accelerator designed to conduct particle physics experiments. It lies beneath the border between France and Switzerland.

On Wednesday, just as the collider was about to be tested for the first time, a group calling itself the "Greek Security Team" hacked into a computer connected to the collider and defaced a CERN Web page with a message in Greek.

According to the Daily Telegraph, the hackers derided CERN's IT security staff as "a bunch of schoolkids." They professed to have no plan to disrupt collider experiments; they said they wanted to highlight the lab's security problems.

"We're pulling your pants down because we don't want to see you running around naked looking to hide yourselves when the panic comes," the hackers wrote, according to the Daily Telegraph's translation of the Greek defacement.

CERN didn't immediately respond to a request for comment.

A CERN spokesman told the BBC that no damage was done, but that the incident revealed the need for stronger security.

Though the hacked page has since been removed, the Daily Telegraph has preserved a screenshot.

An unnamed CERN scientist told the Daily Telegraph that the hackers were "one step away" from a computer than controlled one of the 12,500-ton magnets in the collider. Had they managed to get into that machine, they could have turned parts of the collider off.

Comment  | 
Print  | 
More Insights
Newest First  |  Oldest First  |  Threaded View
Data Leak Week: Billions of Sensitive Files Exposed Online
Kelly Jackson Higgins, Executive Editor at Dark Reading,  12/10/2019
Intel Issues Fix for 'Plundervolt' SGX Flaw
Kelly Jackson Higgins, Executive Editor at Dark Reading,  12/11/2019
Register for Dark Reading Newsletters
White Papers
Current Issue
The Year in Security: 2019
This Tech Digest provides a wrap up and overview of the year's top cybersecurity news stories. It was a year of new twists on old threats, with fears of another WannaCry-type worm and of a possible botnet army of Wi-Fi routers. But 2019 also underscored the risk of firmware and trusted security tools harboring dangerous holes that cybercriminals and nation-state hackers could readily abuse. Read more.
Flash Poll
Rethinking Enterprise Data Defense
Rethinking Enterprise Data Defense
Frustrated with recurring intrusions and breaches, cybersecurity professionals are questioning some of the industrys conventional wisdom. Heres a look at what theyre thinking about.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
PUBLISHED: 2019-12-13
The eGain Web Email API 11+ allows spoofed messages because the fromName and message fields (to /system/ws/v11/ss/email) are mishandled, as demonstrated by fromName header injection with a %0a or %0d character. (Also, the message parameter can have initial HTML comment characters.)
PUBLISHED: 2019-12-13
An issue was discovered in Zoho ManageEngine EventLog Analyzer 10.0 SP1 before Build 12110. By running "select hostdetails from hostdetails" at the /event/runquery.do endpoint, it is possible to bypass the security restrictions that prevent even administrative users from viewing credential...
PUBLISHED: 2019-12-13
Path traversal in RadChart in Telerik UI for ASP.NET AJAX allows a remote attacker to read and delete an image with extension .BMP, .EXIF, .GIF, .ICON, .JPEG, .PNG, .TIFF, or .WMF on the server through a specially crafted request. NOTE: RadChart was discontinued in 2014 in favor of RadHtmlChart. All...
PUBLISHED: 2019-12-13
In Cyxtera AppGate SDP Client 4.1.x through 4.3.x before 4.3.2 on Windows, a local or remote user from the same domain can gain privileges.
PUBLISHED: 2019-12-13
In Dovecot before, an attacker can crash a push-notification driver with a crafted email when push notifications are used, because of a NULL Pointer Dereference. The email must use a group address as either the sender or the recipient.