Iss.net webdavized... where is the security?
G00db0y www.zone-h.org admin
Where is the security if also a site of a big security company is hacked?
Today a very well known security company was defaced using the last webdav vulnerability. You can find more about this vulnerability here:
Internet Security System (www.iss.net) was not hacked in the main server but in a secondary site. Everywhere USG hacked them.
The USG team replaced the main page with these words: "ISS Hacked By ShellCode And rD of USG! FUCK BUSH, BLAIR And SHARON AND FUCK ALL WHO SUPPORT THE WAR... greetz: DKD, FBH, S4t4n1c_S0uls and all who support us".
You can see by yourself here:
© 1999, 2000, 2001 Copyright Brian Martin
Permission is granted to quote, reprint or redistribute provided the text is not altered, and the author and attrition.org is credited. The opinions expressed in this text are not necessarily the opinion of all Attrition staff members.
To subscribe to this list, send mail to firstname.lastname@example.org with subscribe defaced-commentary in the BODY of the mail.