Establishing Digital Trust: Don't Sacrifice Security for Convenience
Members of NullCrew recently breached and defaced UNESCO's Basque Country Web site.
"'Welcome to the new front page of unescoetxea. You have been targeted by NullCrew, as part of the [Expletive]TheSystem movement. We have began the war, once again; but this time, good-luck even coming close to winning,' the hackers wrote," writes Softpedia's Eduard Kovacs. "'The United Nations, just a bunch of corrupt nations; united by one source of power. And for that reason, we have came back; to repeat the process. Enjoy the candy,' they added. Besides this statement, the defacement page also contains some server details and other information stolen from the organization's systems. In addition, a YouTube video of Ice Cube has also been posted on the site’s main page."
"[The hackers] published some data compromised from the server in the defacement page itself," writes E Hacking News' Sabari Selvan. "The data includes directory and file names, WordPress configuration and blog user credentials. The data provided in the 'wordpress config' section contains the database name, username and the database password [as well as] the DB Host address. In the 'blog user credentials' section, there [are] only two entries that [contain] the username, password and email address."