PracticePeople In PracticeHacker attacks UK government websites

Hacker attacks UK government websites

Several UK government websites have been defaced by a hacker protesting about the dangers of smoking.

A hacker calling himself Herbless claims to have carried out separate attacks, breaching three local authority websites in England and Scotland and five web sites run by four different government agencies on Monday. The affected websites have since been restored.

The sites hit were the Adult Learning Inspectorate, Global Information on Science and Technology , Training Standards Council , Dumfries and Galloway Council , Sheffield City Council , Swindon Borough Council and two websites run by the countryside Agency, (clevelandway.gov.uk and woldsway.gov.uk .

A ninth attack, on a website called binfield.gov.uk , was still carrying the hacker’s message, a rant against smoking and the governments that don’t ban it, at 19.30 Wednesday. However, it is unclear whether this is actually an official government website.

Ukerna, the body responsible for registering web sites with the .gov.uk extension, told vnunet.com this morning that an initial search on its database did not reveal a listing for the domain but said it needed more time to establish whether or not it officially existed.

Herbless told vnunet.com he exploited a weakness in SQL server which allows him to post a spoof page on the websites. He also said: “The vulnerability in this server was found by me – the exploit code is 100 per cent mine,” on the hacked websites.

Security expert Neil Barrett of Information Risk Management confirmed the existence of the vulnerability. Barrett told vnunet.com his team had independently discovered a weakness in SQL server last week that would allow a similar attack.

Herbles told vnunet.com: ‘I have posted my source code on Bugtraq and exploit method to alert the security community to this new way of modifying files on a server.’ BugTraq is a security discussion group.

However, other experts said the attack may have instead exploited Microsoft’s Internet Information Server (IIS) 4.0, using a script known amongst the hacker community.

Matt Tomlinson, a security expert at MIS Corporate Defence Solutions, said: ‘If this was a new script, we would have seen a lot more hacks by now as other hackers jumped on board.’

‘We think he has used an available script that exploits weaknesses in Microsoft’s Internet Information Server 4.0 – which is known about in the industry although Microsoft denies its existence. All of the hacked sites have been using IIS 4.0 and he’s shown up those government administrators [who have been] slow to upgrade.’

This article first appeared on VNUnet.com

Related Articles

Is inefficiency stealing your time and money?

Accounting Firms Is inefficiency stealing your time and money?

6m Emma Smith, Managing Editor
CIMA elects new president

Institutes CIMA elects new president

6m Emma Smith, Managing Editor
Transparent currency trade: How to achieve costs visibility

Governance Transparent currency trade: How to achieve costs visibility

6m Emma Smith, Managing Editor
Introduction to KPMG UK’s new leadership team

Accounting Firms Introduction to KPMG UK’s new leadership team

6m Emma Smith, Managing Editor
EY appoints head of UK Infrastructure Asset Intelligence practice

Accounting Firms EY appoints head of UK Infrastructure Asset Intelligence practice

8m Emma Smith, Managing Editor
FRP Advisory expands operation with new office, partner appointments

Accounting Firms FRP Advisory expands operation with new office, partner appointments

10m Emma Smith, Managing Editor
Magma Group announces merger, partner promotions

Accounting Firms Magma Group announces merger, partner promotions

10m Emma Smith, Managing Editor
MHA MacIntyre Hudson advises on management buy-out

Accounting Firms MHA MacIntyre Hudson advises on management buy-out

10m Emma Smith, Managing Editor