RIAA Gets Comeuppance Via Hacker

As a general rule, the perpetrators of website hacking wouldn't be classified as custodians of the greater good, however, on occasion they may well do a public service. Such appears to have been the case over the weekend, when a series of attacks brought the RIAA's website to its virtual knees.

According to reports, sometime over the weekend it was discovered that the RIAA's site utilized an outdated content management system with serious vulnerability to attack. Enterprising users of online social news networks passed the news along — including the revelation that the site was vulnerable to SQL-injection attacks — prompting a series of attacks that eventually wiped the entire database. At the high point of the "festivities," the site sported links to The Pirate Bay — one of the most popular file sharing sites online — as well as other "amusements."

Reportedly, the RIAA managed to regain control of the site, but observers have noted that the vulnerabilities that resulted in the attacks have yet to be patched, meaning that — much like the greater RIAA vs. MP3 wars — only time will tell if the Association can maintain control.

Read more.

______________________

Justin Ryan is the News Editor for Linux Journal.

Comments

Comment viewing options

Select your preferred way to display the comments and click "Save settings" to activate your changes.

interesting

Kennon's picture

Anyone else find it mildly ironic that the RIAA hosts their site from a Linux server? ;)

Some PHB there will probably assume that the attack was made possible by that fact (Wha?!? our website is on one of those freedom loving hippy operating systems?!?!) and shortly we will see them switch to an IIS server...then the real fun will begin.

Webinar
One Click, Universal Protection: Implementing Centralized Security Policies on Linux Systems

As Linux continues to play an ever increasing role in corporate data centers and institutions, ensuring the integrity and protection of these systems must be a priority. With 60% of the world's websites and an increasing share of organization's mission-critical workloads running on Linux, failing to stop malware and other advanced threats on Linux can increasingly impact an organization's reputation and bottom line.

Learn More

Sponsored by Bit9

Webinar
Linux Backup and Recovery Webinar

Most companies incorporate backup procedures for critical data, which can be restored quickly if a loss occurs. However, fewer companies are prepared for catastrophic system failures, in which they lose all data, the entire operating system, applications, settings, patches and more, reducing their system(s) to “bare metal.” After all, before data can be restored to a system, there must be a system to restore it to.

In this one hour webinar, learn how to enhance your existing backup strategies for better disaster recovery preparedness using Storix System Backup Administrator (SBAdmin), a highly flexible bare-metal recovery solution for UNIX and Linux systems.

Learn More

Sponsored by Storix