Security organisation's Web site hacked
Summary: The Information Systems Security Association's UK Web site was defaced earlier this month after a server upgrade
The organisation's Web site, which has the logo "the global voice of the information security profession", was hacked after its server was upgraded.
"In mid-December we switched to a different server and upgraded the software," said Richard Starnes, president of the ISSA UK. "In the patching process, some of the patches were missed. The Web site was subsequently hacked. We took the Web site down, removed the vulnerability, audited the Web site and reported it to the proper authorities."
The ISSA UK Web site, which is sponsored by security companies Sophos, (ISC)2 and Websense, was hacked on January 7th, Starnes confirmed.
According to a report on a hacking Web site, a hacker dubbed iskorpitx penetrated and defaced the ISSA Web site on January 7th at 19:39. The mirror image of the defacement hack showed large pictures of the Turkish flag and a message saying "HACKED By iSKORPiTX (Turkish Hacker)". The browser is then diverted to another Web site, which displays a large photo of dolphins.
The ISSA board in the US includes representatives from Dell, Forrester Research and Symantec. The ISSA says it is the largest international not-for-profit association specifically for information security professionals.
Kick off your day with ZDNet's daily email newsletter. It's the freshest tech news and opinion, served hot. Get it.
Talkback
This greatly proves, neither the ISSA, Microsoft, US Government or any others, that may have the time and resources can ever be fully immune from dedicated saboteurs!
I hope by your article it will set security priorty even higher-up in corporate agendas.
With regards
George Mathanool
International Vice President - ISSA