The security community got a shock this morning when it emerged that the Alldas.de website defacement mirror was itself defaced last night.
The organisation responsible for upkeep on the site, which runs Apache on a Linux box, admitted that "nothing is 100 per cent secure and today we managed to realise that our security wasn't as good as we thought".
At around 3.44p.m. yesterday a new topic appeared on the Alldas news page stating that "Alldas.de got cracked". The hacker then left a rant about how script kiddies are not really helping the security industry by defacing sites.
"Security is not something funny. Nowadays many companies depend on their digital safety and there really are other ways than defacing to point out that security can be broken," the hacker said.
According to Alldas the hacker managed to fool the scripts which are usually used to accept new defacements.
The site was quick to point out that "no higher access levels were reached and the reason why [the hacker] only added things to the database was probably because higher system access could not be gained".
But despite the fact that the hacker did not get full administration privileges, Alldas did admit that "it was a clever way to exploit it, a way we overlooked". The site also acknowledged that "it's kinda embarrassing to get defaced as a defacement mirror".
BT wants to make the public switched telephone network history within eight years
Personal data being purloined by third parties via Facebook Login API
MacOS and iOS are better off apart, says CEO Tim Cook
Or they'll no longer be entitled to updates and bug patches