Feeds

MailOnline pulls recipe site after innocent young cookbook DEFILED

Hackers terrorise readers with, er, mildly annoying song. They're foreign, you know

Beginner's guide to SSL certificates

The Mail Online has pulled its recipes website after it was vandalised by Libyan cyber-hijackers.

The UK mid-market tabloid's content partner MyDish was defaced by "The Great Team" hacking crew on Monday in a hack recorded by defacement archive Zone-h here (warning: link auto plays mildly annoying music). The defacement is also recorded by the Wayback Machine at archive.org here.

The compromised site might easily have been used as a platform to serve up malicious code but it appears the hackers involved confined themselves to bragging about their conquest. The defacement message omits any political message and is characterised by a screen-cap of the benign Professor Dumbledore from the Harry Potter movies with the caption "I own this shit". The Great Team are a prolific defacement crew who have claimed the scalps of more than 2,100 websites over the last two years.

The MailOnline responded by updating the DNS so that recipes.dailymail.co.uk pointed to its own server rather than that of MyDish, through use of a server that handles redirects. The papers also removed the link to the recipe subdomain from its Health news tab - it was there earlier in December, but has since vanished. The recipe site had been previously advertised as “powered by MyDish”.

El Reg was unable to find any evidence of the other subdomains being attacked. It appears that the compromise was restricted to recipes.dailymail.co.uk.

At the time of the hack, recipes.dailymail.co.uk resolved to the IP address 78.143.240.61, which is owned by web-hosting company Dark Group (dg.co.uk) and is also the same IP used to serve mydish.co.uk.

The site was run from IIS 6.0 web server software from servers running Windows 2003, according to Zone-h.

We invited both MyDish and the Daily Mail Group to comment on the security snafu on Friday morning but are yet to hear back from either party.

This isn’t the first time recipes.dailymail.co.uk has been hacked. Last year, when it appears to have been a MyDish site served from Dark Group, it was defaced by the notorious Team Poison crew with a more political message (recorded by Zone-h here) criticising the Mail's stance on issues such as immigration. ®

Bootnotes

Thanks to Reg reader Wyn for the tip.

We did hear back from Dark Group, however, who had this to say:

Dark Group provides this client with unmanaged dedicated and virtual servers, where we just look after the hardware, power and network. Our client has their own in-house technical team who manage the operating system and software.

Protecting users from Firesheep and other Sidejacking attacks with SSL

More from The Register

next story
Spies would need SUPER POWERS to tap undersea cables
Why mess with armoured 10kV cables when land-based, and legal, snoop tools are easier?
Early result from Scots indyref vote? NAW, Jimmy - it's a SCAM
Anyone claiming to know before tomorrow is telling porkies
Israeli spies rebel over mass-snooping on innocent Palestinians
'Disciplinary treatment will be sharp and clear' vow spy-chiefs
Hackers pop Brazil newspaper to root home routers
Step One: try default passwords. Step Two: Repeat Step One until success
China hacked US Army transport orgs TWENTY TIMES in ONE YEAR
FBI et al knew of nine hacks - but didn't tell TRANSCOM
Microsoft to patch ASP.NET mess even if you don't
We know what's good for you, because we made the mess says Redmond
NORKS ban Wi-Fi and satellite internet at embassies
Crackdown on tardy diplomatic sysadmins providing accidental unfiltered internet access
UK.gov lobs another fistful of change at SME infosec nightmares
Senior Lib Dem in 'trying to be relevant' shocker. It's only taxpayers' money, after all
prev story

Whitepapers

Providing a secure and efficient Helpdesk
A single remote control platform for user support is be key to providing an efficient helpdesk. Retain full control over the way in which screen and keystroke data is transmitted.
WIN a very cool portable ZX Spectrum
Win a one-off portable Spectrum built by legendary hardware hacker Ben Heck
Saudi Petroleum chooses Tegile storage solution
A storage solution that addresses company growth and performance for business-critical applications of caseware archive and search along with other key operational systems.
Protecting users from Firesheep and other Sidejacking attacks with SSL
Discussing the vulnerabilities inherent in Wi-Fi networks, and how using TLS/SSL for your entire site will assure security.
Security for virtualized datacentres
Legacy security solutions are inefficient due to the architectural differences between physical and virtual environments.