|
More Defacements
11/2/99
Mike Hudack
Editor-in-Chief
Between Flipz and Fuqrag defacements of *.gov and *.mil have gone up quite a bit. ULG has made the defacements of high profile sites rise and everyone else have kept the status quo -- and then some. As one Attrition staffer said, "*.* - defaced." The public, the media and the law arenīt ignoring these trends.
As a general rule, followed until the last week, OSAll tries not to cover Web defacements. At this point though the sheer numbers are becoming news.
Attrition Statistics
Figure 1.1 - Attrition statistics for October:
Total Defacements: 459
Win-NT 283 62.75%
Linux 67 14.86%
Solaris 48 10.64%
FreeBSD 23 5.10%
BSDI 17 3.77%
IRIX 8 1.77%
SCO 3 0.67%
OpenBSD 1 0.22%
HPUX 1 0.22%
Figure 1.2 - Attrition statistics for September:
Total Defacements: 260
Win-NT 82 32.54%|
Linux 72 28.57%|
Solaris 62 24.60%|
BSDI 13 5.16%|
FreeBSD 12 4.76%|
IRIX 7 2.78%|
HPUX 2 0.79%|
MacOSX 1 0.40%|
DGUNIX 1 0.40%|
*.gov and *.mil
Fuqrag and Flipz told OSAll that they were going after anything belonging to the government or military. Everything from NASA to the Commerce Department to the DISA have fallen victim to this duo and their exploit(s). Itīs important to note, though, that Flipz tells OSAll heīs retiring from site defacement.
The FBI doesnīt appreciate that. "The FBI takes any government or military defacement rather personally," said Special Agent Ken Gray in regard to the Flipz and Fuqrag defacements. With that in mind, Agent Gray suggests that they turn themselves in and prevent "doors from being broken in the middle of the night."
High Profile
ABC.com, the Associated Press, the NAACP and four more from ULG. Even more from other groups. These are high profile sites that garner attention from everyone from Wired News to MSNBC -- and sometimes OSAll. These defacements are going up, not down according to statistics from Attrition.orgīs mirror.
Even Ask Jeeves, the popular search site fell victim to defacement. So did George W. Bushīs campaign site and FOXīs Mad TV site (albeit a subdirectory). And who can forget that Microsoft was defaced!
Whatīs behind the rash of high profile defacements? The answer should be pretty obvious, although itīs not entirely simple. First of all, high profile defacements are virtually guarenteed to garner some press coverage even though the mainstream press is gradually getting sick of them. Furthermore, itīs "lame to crack lame sites," as one cracker so eloquently put it.
The Letters N & T
The most attention garnering trend in operating systems lately isnīt support for FireWire or Dvorak keyboards. Rather itīs that Windows New Technology is getting defaced so much more frequently than any other operating system.
One contributing factor to the spate of NT defacements (which, according to Attrition, has always tied with Solaris up until this month) is the exploit being used by Flipz and Fuqrag lately. This exploit targets most IIS4 servers which havenīt received a patch (patches are currently available from Microsoft, and [believe it or not] ULG).
And, of course, we canīt forget that "there is no Microsoft security," as everyone seems to reiterate.
Related Links:
Strong Exploit
Strong Exploit Source
Flipz
Fuqrag
ULG Speaks |
