Hackers placed the defacement page in the "nic.mw/r00t.htm". They also managed to upload their defacement page in registrar.mw, biz.mw, co.mw, com.mw, www.coop.mw,www.dot.mw, www.edu.mw/, www.gov.mw, www.int.mw, www.net.mw.
At the time of writing, the hacked websites still displays the defacement page. You can also check the mirror of the defacement here: http://zone-h.net/archive/notifier=BD%20GREY%20HAT%20HACKERS
Of course, this is not the first time the site is under the radar of the hackers. Earlier this year, Bangladeshi hackers hijacked the NIC.mw and left the Google Malawi , Kaspersky, MSN, Yahoo defaced.
We are not sure whether the nic fails to patch the previous vulnerability that leads to the security breach or BGHH found a new vulnerability. It is always better to take care of your web-app security once you find yourself victim of hackers.
No comments:
Post a Comment