Group behind Twitter hack takes down Baidu search engine

Tuesday, January 12, 2010 11:16
Posted in category Uncategorized
2 Comments

The group that took down Twitter.com last month has apparently claimed another victim: China’s largest search engine Baidu.com.

Baidu.com was offline late Monday, but at one point it displayed an image saying “This site has been hacked by Iranian Cyber Army,” according to a report in the official newspaper of the Chinese Communist Party and other Web sites.

[ Learn how to secure your systems with Roger Grimes' Security Adviser blog and newsletter, both from InfoWorld. ]

A Baidu representative confirmed services on the site had been interrupted by “external manipulation” of its domain name server in the U.S. The company has restored the majority of services, the representative said half a day after the disruption. With more than half of China’s Internet search market, Baidu is by far China’s most-used search engine.

Not much is known about the Iranian Cyber Army, which first gained notoriety with its December 18 Twitter attack. Hacking groups such as this are constantly defacing Web sites, but it is extremely rare for them to take down a site as widely used as Twitter or Baidu.com.

Security experts were quick to point to Baidu’s domain name records as the focus of the hack. On Monday, the company was using domain name servers belonging to HostGator, a Florida ISP, instead of the Baidu.com nameservers the company normally uses. “It looks like their domain account credentials may have been snagged,” said Paul Ferguson, a researcher with the antivirus vendor Trend Micro.

That’s the same technique that was used to hijack Twitter, when Iranian Cyber Army hackers were apparently able to log in to the account used to manage Twitter’s DNS records and redirect visitors to another Web server that posted a message similar to the one spotted on Baidu.com. That attack knocked Twitter offline for more than an hour.

Baidu’s domain name registrar, Register.com, could not be reached immediately for comment.

Owen Fletcher in Beijing contributed to this story.

Share This:
  • Facebook
  • Twitter
  • StumbleUpon
  • Reddit
  • Digg
  • LinkedIn
  • MySpace
  • del.icio.us

Related Posts

  1. China’s Baidu sues U.S. domain registrar after hack
  2. Baidu claims Register.com withheld support after hack
  3. Twitter brought down by hackers
  4. Baidu hacker lawsuit can proceed in US court
  5. TwitVid gets a real-time search engine, analytics
You can leave a response, or trackback from your own site.
Tags: , ,

2 Responses to “Group behind Twitter hack takes down Baidu search engine”

  1. #iwouldhatetobeyou says:

    January 23rd, 2010 at 2:40 am

    I thought this was going to be another long boring blog post, but I was pleasantly suprised. I will be posting a backlink on my blog, as I am quite sure my readers will find this more than interesting.

  2. Froth says:

    February 2nd, 2010 at 4:22 pm

    A similar story, http://www.twitter.com got passwords stolen just 2 days ago. I guess nothing is safe.

Leave a Reply

«
»