SELaplana >> Security >> United Nation’s Website, Hacked

United Nation’s Website, Hacked

Posted by Sustines Laplana, 13 August 2007 at Category/ies: Security
4 Comments »

Hackademix reported that the United Nation’s official website was hacked and defaced. The hacker gained access to the said highly profiled website by simply using the technique called, “SQL injection”.

What is SQL injection?

According to the wikipedia, “SQL injection is a security vulnerability that occurs in the database layer of an application. Its source is the incorrect escaping of variables embedded in SQL statements. It is in fact an instance of a more general class of vulnerabilities that can occur whenever one programming or scripting language is embedded inside another”. E-Government has the clearer definition of it which means, that it is the “name for a general class of attacks that can allow nefarious users to retrieve data, alter server settings, or even take over your server if you’re not careful. SQL injection is not a SQL Server problem, but a problem with improperly written applications”.

It’s a kind of attack which my Ka Webspy’s Guestbook experienced last June 2005 and similar attacked used to hack the Pinoy Bloggers Directory on December 2005.

The United Nation website’s Hacker

According to the BBC, the said attack was called “cyberprotest” and hackers using this name are said to be coming from Turkey and called themselves, “Turkish Defacer”.

As of writing this post, these hackers have attacked many websites already.

What’s the lesson?

Well. This simply tells us that we need to be vigilant. Since most of us bloggers are using the WordPress blogging engine in running our blogs, so we must upgrade immediately our WordPress installation soon as the new version is released in order to avoid such attack.

Automatically receive updates via email...
Enter your email address:
Tweet This
Bookmark and Share
Tweet This!

Post Your Comment...

«
»

Pinay Scandal

Actually, this terms refer to the photos, videos or any stories that reveal shameful, sxeperience, and secrets of some individuals or celebrities.

Hacked by Own Host?

I don't if it's real. A hosting solution client is complaining and accused his own host of hacking his own site and offer him $2,000

My Photo Gallery was Hacked

The hacker left a message at my Photo Gallery blog which goes: "Hey All , i was hacked your site because i like ^_^" and

Twitter Was Hacked by Cyber Army

It was believed that Twitter.com was hacked and defaced by Hackers connected to Iran because if you'll access twitter.com, instead of seeing the normal twitter

Upgraded WordPress, Avoided Access of Hackers

Finally upgraded my Wordpress engine to the latest version which is the Wordpress v2.0.7 released recently by the Wordpress developers. This is the best way

The Hacker Is Who?

When I visited the website of the Ang Dating Daan that features their 2006 Pasalamat, it was stated that the writer interviewed Rovhick Balunsay. If you

Facebook Founder’s Page Hacked

Is my Facebook profile and pages safe from hackers? This is the question raised in my head after learning from TechCrunch that the Facebook page of Mark

Cross: Used in Religion by Pagans

Did you know that before the Catholic-Christians used the symbol of cross to their religion, it was already used by pagans? This is what we will

How to Hack Yahoo, GMail, and HotMail Account?

Visitor's Question through His Email Sir Sel pwede mo po ba akong turuan mag-hack ng Yahoo! Email? Kasi duda ako na may kabit ang asawa ko

Someone’s Making Money in Your Twitter Account

Last month, I published a post telling you that my email account (selaplanadotcom[at]yahoo[dot]com) was hacked by someone and used it to spam, sending all the

Yahoo! eMail Scam, Beware!

I receive an email from customerdata_service@yahoo.com asking me to verify my email account or else it will be terminated. Dear Account User, This Email is from Yahoo!

Blog of Matt Cutts “The Google Guy”, Hacked

I was reading the blog of Matt Cutts yesterday and he said that he's upgrading his Wordpress engine to the latest Wordpress version. He's even

What is Black History Month?

The Black History Month is a celebration that commemorates and honors the contribution of the black American or those with African descent to the nation

Directory

Directory of Pinoy Websites and Blogs. All the links here is manually added by me. However, you can suggest any sites or blogs by sending us

nimoyf.com Hacked My Yahoo Email Account

Yesterday, I was about to reply an email from a feed-email subscriber of this blog who was asking my advice regarding his blog. But I

Download Free PSP Games

Most people who are pond of PSP games are aware that they already can download free PSP games from the internet. Just like me, I

www.sss.gov.ph static information

sss gov.ph SSS Online Inquiry

Comments

4 Responses to “United Nation’s Website, Hacked”

  1. Elizar says:
    August 13, 2007 at 8:07 pm

    whoever that hackers are, they are good!

    It’s The UN we’re talking about here, I assume they have the most tight security there is… apparently they need to do better.

  2. SELaplana says:
    August 13, 2007 at 9:23 pm

    that’s what really I was thinking. and it reminds me of my 1999 life…. playing other websites by hacking them….

  3. Jan from thrusites design says:
    August 30, 2007 at 6:26 pm

    Hm, I do not think that WP is vulnerable. You can avoid SQL injection when using few php functions properly (and yes, WP do use them).

    Simple htmlspecialchars(), addslashes() – for input, strip_slashes() – for output make it very easy.

    BTW, modify your php.ini so it won’t show any error and use @ before every potentially vulnerable function so that the output (returned error or so) won’t be shown on user’s display. This is helpful for mysql_query functions especially.

  4. st3chk0v says:
    December 13, 2008 at 1:10 pm

    well,, why they dont try to hack NSA xD… they will be on the headlines im sure…

Bookmark and Share

Search the Site

Recent Posts

Updates


    Categories
      Recent Entries
      Making Money Online
      Board Examination Results
      Naruto Related
      Anime Episodes Guide
      Our Products
      My Other Posts
      User
      Tag Cloud
      Search Lyrics by Artists: 0-9 - A - B - C - D - E - F - G - H - I - J - K - L - M - N - O - P - Q - R - S - T - U - V - W - X - Y - Z