Syrian Army hacked Twitter and NYTimes.com on 8/27

sao123 · Aug 28, 2013

Just got this in an email sent out to our entire enterprise...

http://abcnews.go.com/Technology/york-times-website-suspects-malicious-hack/story?id=20087043

Twitter and NYTimes.com were both hacked by the Syrian Army (SEA) on 8/27. If you logged into either of those sites on 8/27-8/28, youi should probably consider changing your passwords.

seepy83 · Aug 28, 2013

A couple of clarifications...
It was the "Syrian Electronic Army" that performed the attack. They may or may not be related to any actual Syrians, Armies, or Rebel groups at all. Brian Krebs made a post to twitter earlier tonight that hinted that he had uncovered a whole lot of info about the group. You can keep an eye on his blog at krebsonsecurity.com...I'm guessing his story will post in the next couple of days.

Also, the attack was performed against a domain registrar in Australia. SEA changed DNS records. There is no reason to believe that any systems at Twitter or the NYTimes were breached or passwords compromised as a result of this particular attack. I'm not saying that changing your passwords is a bad idea, but I just don't think it's really necessitated by this sitation.

As a side note-
If you use twitter, you should definitely turn on login verification (their form of 2 factor authentication) so that a breach of your password alone would not be enough to access your account. The same goes for other services (like gmail and facebook) that have implemented a 2 factor auth system...always turn it on.

sao123 · Aug 29, 2013

seepy83 said:
A couple of clarifications...
It was the "Syrian Electronic Army" that performed the attack. They may or may not be related to any actual Syrians, Armies, or Rebel groups at all. Brian Krebs made a post to twitter earlier tonight that hinted that he had uncovered a whole lot of info about the group. You can keep an eye on his blog at krebsonsecurity.com...I'm guessing his story will post in the next couple of days.

Also, the attack was performed against a domain registrar in Australia. SEA changed DNS records. There is no reason to believe that any systems at Twitter or the NYTimes were breached or passwords compromised as a result of this particular attack. I'm not saying that changing your passwords is a bad idea, but I just don't think it's really necessitated by this sitation.

As a side note-
If you use twitter, you should definitely turn on login verification (their form of 2 factor authentication) so that a breach of your password alone would not be enough to access your account. The same goes for other services (like gmail and facebook) that have implemented a 2 factor auth system...always turn it on.

What you said is true... they did not access any stores id/password database tables... however:

if the DNS was changed, and anyone who access the site (forewarded by the DNS to the attackers imitation site) would have attempted to authenticate with a ID/PAssword, which would have then been harvested by the attacker.

Ben90 · Aug 30, 2013

OMG, I can't even begin to imagine the repercussions if an unauthorized person got access to someone's twitter account.

THEY COULD SEND TWEETS THAT WEREN'T TRUE!!!!!! The humanity.

sao123 · Aug 30, 2013

Ben90 said:
OMG, I can't even begin to imagine the repercussions if an unauthorized person got access to someone's twitter account.

THEY COULD SEND TWEETS THAT WEREN'T TRUE!!!!!! The humanity.

OMG... If you are stupid enough to use twitter... you are probably also stupid enough to use the same password for your Bank as you did for Twitter... and think about how many dollars you can get from how many passwordz...

DERP!

PrincessFrosty · Sep 3, 2013

sao123 said:
What you said is true... they did not access any stores id/password database tables... however:

if the DNS was changed, and anyone who access the site (forewarded by the DNS to the attackers imitation site) would have attempted to authenticate with a ID/PAssword, which would have then been harvested by the attacker.

This.

seepy83 · Sep 3, 2013

Out of an abundance of caution, I would absolutely agree that changing your password is a good idea.

However, there has been no indication that the attack on Twitter's DNS records was done to harvest passwords. When the SEA had control of the DNS records, they were not redirecting twitter users to a fake/imitation twitter site where unknowing twitter users would have attempted to authenticate.

geekali · Sep 4, 2013

Aug. 27, 2013 - "Syrian Electronic Army hacked Twitter and NYTimes.com"
Aug. 31, 2013 - "Obama has decided US should attack Syria"

Maybe changing password to https://twitter.com/BarackObama would have been enough?

John Connor · Sep 5, 2013

www.theregister.co.uk/2013/09/03/sea_hits_marines/

sao123 · Sep 16, 2013

John Connor said:
www.theregister.co.uk/2013/09/03/sea_hits_marines/

obviously somebody didnt change their password...

Lucas Prassas · Sep 22, 2013

sao123 said:
OMG... If you are stupid enough to use twitter... you are probably also stupid enough to use the same password for your Bank as you did for Twitter... and think about how many dollars you can get from how many passwordz...

DERP!

You're forgetting the people that use Facebook and Twitter to troll average users of Facebook and Twitter, sometimes for legitimate, rhetorical reasons, irrespective of the general, non-pecuniary ramifications.

Search

Syrian Army hacked Twitter and NYTimes.com on 8/27

sao123

Lifer

seepy83

Platinum Member

sao123

Lifer

Ben90

Platinum Member

sao123

Lifer

PrincessFrosty

Platinum Member

seepy83

Platinum Member

geekali

Junior Member

John Connor

Lifer

sao123

Lifer

Lucas Prassas

Junior Member

TRENDING THREADS