All the latest UK technology news, reviews and analysis


Syrian Electronic Army hackers target Facebook

06 Feb 2014
Security padlock image

The Syrian Electronic Army (SEA) has come to blows with Facebook, following claims it successfully managed to compromise some of the social network's systems.

In a post on Twitter, the SEA claimed to have broken into a Facebook administrative panel at domain name system (DNS) provider MarkMonitor.

The attackers claimed that while in they had managed to tweak details in Facebook's WHOIS records.

WHOIS is a query response protocol used by many businesses. Information available using WHOIS includes everything from the registration dates, the name servers, domain names and administrative and technical contact information. This means the SEA could theoretically have made further changes in Facebook's systems if they managed to compromise the records.

A source familiar with the matter, however, confirmed to V3 that Facebook was never hacked by the SEA and at no point was any user traffic compromised. They also confirmed none of Facebook's servers or IP addresses were changed and that there was no redirection to another site.

At the time of publishing MarkMonitor had not responded to V3's request for comment.

The SEA has a track record of breaching media and tech companies' systems to deface their homepages or redirect users to a site displaying a political statement from the hackers. In the past big-name publications, including The New York Times have fallen victim to the SEA.

Security experts have said evidence suggests the SEA did not manage to breach Facebook's systems in any serious way, though Sophos senior security advisor Chester Wisniewski confirmed that they definitely came close.

"I was watching this in real time and there appeared to be a struggle for control around 11.49pm UTC, with MarkMonitor winning the war at 11.56pm UTC," he said in a blog post.

The SEA also claimed to breach Yahoo, Google and Amazon using a similar tactic, though at the time of publishing none of the companies had responded to V3's request for comment.

Dealing with hacktivist groups such as the SEA has been an ongoing headache for law enforcement.

Documents leaked by whistleblower Edward Snowden earlier this week showed that the GCHQ targeted members of the Anonymous collective with denial of service (DoS) and phishing attacks during its 2011 operations.

  • Comment  
  • Tweet  
  • Google plus  
  • Facebook  
  • LinkedIn  
  • Stumble Upon  
Alastair Stevenson
About

Alastair has worked as a reporter covering security and mobile issues at V3 since March 2012. Before entering the field of journalism Alastair had worked in numerous industries as both a freelance copy writer and artist.

View Alastair's Google+ profile

More on Security
What do you think?
blog comments powered by Disqus
Poll

Windows 10 poll

What are your first impressions of Windows 10?
14%
3%
10%
4%
23%
4%
42%

Popular Threads

Powered by Disqus
V3 Sungard roundtable event - Cloud computing security reliability and scalability discussion

CIOs debate how to overhaul businesses for the digital era

V3 hosts roundtable with Sungard Availability Services

Updating your subscription status Loading
Newsletters

Get the latest news (daily or weekly) direct to your inbox with V3 newsletters.

newsletter sign-up button
hpv3may

Getting started with virtualisation

Virtualisation can help you reduce costs, improve application availability, and simplify IT
management. However, getting started can be challenging

ibmv3may

Converting big data and analytics insights into results

Successful leaders are infusing analytics throughout their organisations to drive smarter decisions, enable faster actions and optimise outcomes

Transformation Programme Architect

Transformation Programme Architect required to provide...

Solutions Architect

Solution Architect Harvey Nash are recruiting for...

Digital Solutions Architect

Digital Solutions Architect Harvey Nash are working...

Front-End UI/UX Developer (HTML5, CSS, JavaScript, jQuery, Ang

Front-End UI/UX Developer (HTML5, CSS, JavaScript, jQuery...
To send to more than one email address, simply separate each address with a comma.