A hacker who recently took over Chinese search engine Baidu apparently did so simply by pretending to be Baidu in an online chat with tech support at Baidu's registrar Register.com.

"The attacker asked a support representative to change Baidu's e-mail address on file," write Computerworld's Owen Fletcher and Robert McMillan. "The representative then sent a confirmation code to Baidu's e-mail account even though the hacker answered a security question incorrectly, the complaint alleges."

"The attacker could not access Baidu's e-mail account, so instead made up a confirmation code and sent it to the support representative when asked, the complaint alleges," Fletcher and McMillan write. "Without comparing the two codes, the support representative took the bogus answer to be correct and agreed to the attacker's request to change Baidu's e-mail address on file to 'antiwahabi2008@gmail.com,' the complaint alleges."

Click here to read the Computerworld article.