Feeds

Dancing Sepp Blatter on 'World Cup site' creates security flap

Footy kingpin spotted throwing electronically doctored shapes

The Essential Guide to IT Transformation

The appearance of an animated Sepp Blatter dancing on what appeared to be a World Cup website caused confusion in anti-virus circles on Tuesday.

Tweets such as "Brazil 2014 website hacked to show a dancing Sepp Blatter on the home page http://www.fifa-brazil-2014.com" were forwarded to El Reg's security desk, sports subsection early on Tuesday.

The dancing Blatter "trick" is the one commonly used by phishing/clickjacking and could be perhaps seen as a skewed tribute to the Fifa president.

"Looking at the source code I wouldn't be surprised if it flagged some heuristics-based scanners," Martijn Grooten, anti-spam test director at Virus Bulletin, told El Reg.

Independent security researcher Darrel Rendell noted concerns about the WHOIS and hosting provider of the dancing Sepp site.

However Rik Ferguson, VP of security research at Trend Micro, was able to rule out foul play. "It's not a hack but a clever viral marketing campaign using a typo-squatted domain," Ferguson explained.

The official site is: http://www.fifa.com/worldcup/index.html and the campaign site is: http://www.fifa-brazil-2014.com (beware: there's a cheesy soundtrack and Blatter boogies to the sound of kettle drums).

"It was done through a private domain registration through DomainsbyProxy, though it's pretty clear who registered it," Ferguson added.

The launch of the viral marketing campaign coincides with street protests across Brazil against the amount of funds poured into building World Cup facilities, while basic public services remain rudimentary. The dancing Blatter merchants appears to be linked to people running an online campaign for a "fair" World Cup in Brazil next year. ®

Build a business case: developing custom apps

More from The Register

next story
14 antivirus apps found to have security problems
Vendors just don't care, says researcher, after finding basic boo-boos in security software
'Things' on the Internet-of-things have 25 vulnerabilities apiece
Leaking sprinklers, overheated thermostats and picked locks all online
iWallet: No BONKING PLEASE, we're Apple
BLE-ding iPhones, not NFC bonkers, will drive trend - marketeers
Only '3% of web servers in top corps' fully fixed after Heartbleed snafu
Just slapping a patched OpenSSL on a machine ain't going to cut it, we're told
How long is too long to wait for a security fix?
Synology finally patches OpenSSL bugs in Trevor's NAS
Secure microkernel that uses maths to be 'bug free' goes open source
Hacker-repelling, drone-protecting code will soon be yours to tweak as you see fit
Israel's Iron Dome missile tech stolen by Chinese hackers
Corporate raiders Comment Crew fingered for attacks
Roll out the welcome mat to hackers and crackers
Security chap pens guide to bug bounty programs that won't fail like Yahoo!'s
HIDDEN packet sniffer spy tech in MILLIONS of iPhones, iPads – expert
Don't panic though – Apple's backdoor is not wide open to all, guru tells us
prev story

Whitepapers

Implementing global e-invoicing with guaranteed legal certainty
Explaining the role local tax compliance plays in successful supply chain management and e-business and how leading global brands are addressing this.
Consolidation: The Foundation for IT Business Transformation
In this whitepaper learn how effective consolidation of IT and business resources can enable multiple, meaningful business benefits.
Backing up Big Data
Solving backup challenges and “protect everything from everywhere,” as we move into the era of big data management and the adoption of BYOD.
Boost IT visibility and business value
How building a great service catalog relieves pressure points and demonstrates the value of IT service management.
Why and how to choose the right cloud vendor
The benefits of cloud-based storage in your processes. Eliminate onsite, disk-based backup and archiving in favor of cloud-based data protection.