The same group that used a DNS attack to hijack Twitter last month has defaced the home page of Chinese search engine Baidu.

Surfers visiting Baidu site on Monday night were confronted by the message "This site has been hacked by Iranian Cyber Army", together with an image of the Iranian flag. Early speculation suggests the attack involved changing Baidu's DNS records rather than a direct attack on the site itself, but this remains unconfirmed.

The attack might have been used to point the millions of Chinese users who use Baidu every day towards a site that took advantage of browser exploits to infect computer users with malware. So it's perhaps fortunate that the Baidu hack involved only political graffiti.

By Tuesday morning, Baidu's site had been cleaned up. Screenshots of the hack can be found in a blog entry with further commentary on the attack by Sophos here. ®

Related stories

• Iranian activists deface UK genetics website (19 August 2010)
• BP pwned by Twitter pranksters (28 May 2010)
• Register.com argues it can't be sued for negligence (23 March 2010)
• Baidu sues registrar over DNS records hack (20 January 2010)
• Baidu launches (legal) online video company (6 January 2010)
• Mr Bean ousts PM from Spain's official website (5 January 2010)
• Twitter hack linked to internal security breach (21 December 2009)
• DNS attack hijacks Twitter (18 December 2009)
• 'L33T' web defacer blames Durham police for Pakistani conflict (9 November 2009)
• China 'orders Baidu cleanup' (7 September 2009)