They don't sound so bad. Yeah, they broke into those websites by way of SQL injection but they just redirected those URLs rather than fucking shit up.
There's not much else you can do by breaching a DNS server. When one shows overt suspicious activity it, and all changes from it are discarded from the network, meaning only small targeted attacks can be used.
And as stated, all they can do is delete or redirect address records. The webservers hosting the sites themselves aren't even attacked directly, let alone compromised.
The kicker is this was achieved by SQL Injection. That's script kiddie stuff.
[img]http://imgs.xkcd.com/comics/exploits_of_a_mom.png[/img]
My god, who do these companies get to make their websites, SQL injection and how to prevent it was one of the first things I was taught in my course.
[QUOTE=Electrocuter;32125951]My god, who do these companies get to make their websites, SQL injection and how to prevent it was one of the first things I was taught in my course.[/QUOTE]
People who don't expect them or massive clusterfuck sites that are really hard to find SQL injections...or fix them.
These people are sorta helpful in a way because they help promote security on websites that you probably have accounts on.
I bet there is a better way to raise security awareness rather than using SQL injection
Sorry, you need to Log In to post a reply to this thread.
