Yesterday, several companies had their websites hijacked by pro-Palestinian hackers. We can confirm that there was also a hacker attempt against the AVAST site – we assume from the same group – but we took immediate steps and therefore were able to contain it.
According to published reports, the hacked companies’ accounts, used to manage their DNS records at their vendor, Network Solutions, have been reset. This allowed the hackers to take control of the websites in question. It’s unlikely that any of the sites that were attacked lost control of any of their own servers, so customer data most likely was not compromised.
“We ourselves received a notification from Network Solutions saying our email had been changed. We knew we had not requested that so we immediately took action and changed our passwords, which protected us,” said Vincent Steckler, AVAST CEO
Stay cyber aware when company accounts get hacked
Hackers have been busy recently– Adobe announced on Thursday that it has been the target of a major security breach in which sensitive and personal data about millions of its customers have been put at risk.
If you get a notification from an online provider that your email address or a password was changed – no matter if it’s from your bank, an online shop, or any other online site – and you didn’t request these changes, you need to take steps to protect yourself by immediately changing your passwords for these sites.
When we attempted to open the URL, it was redirected to dumb.cn.mn which triggered the blocking action. The only content on dumb.cn.mm is one word – GOTCHA!
Senior Virus analyst, Jan Sirmer confirmed the attack when we couldn’t repeat the block. “The site, smcitizens.com, was hacked for sure, and redirects to a black hole site,” he said. “Malicious script on the site is checking visitor’s cookies, which is the reason why you don’t see the warning more than once.” Read more…