The notorious hacker group Syrian Electronic Army (SEA) is stirring up trouble again, this time with Facebook. Overnight, the group claimed to pwn the Facebook.com domain, posting a screenshot of the WHOIS info on its Twitter. ‘Happy Birthday Mark,’ the tweet taunted, referring to Facebook’s recent 10th birthday. The registrant data indeed reflected that the email address had been changed to a Syrian Gmail account.
A follow up tweet said that they had tried to overtake Facebook’s servers but had to abandon because it was ‘taking too much time.’ At no time was Facebook.com or its business operations affected. . The SEA also tweeted a screenshot in which it appeared to show MarkMonitor’s portal interface was overtaken.
The attack appears to have been originated using MarkMonitor, which took down its management portal after realizing it had been hacked, thereby stopping SEA from doing any more damage on its site or Facebook’s. In the end, the SEA failed in its mission to hack into Facebook, but it was a close call. You can be sure both MarkMonitor and Facebook will be tying the loose ends that allowed this attack to happen.
The domain and registrar data was returned to its original owner a few hours later, but it’s worth noting that the group could get so close to hacking such a massive site, which does so much to secure its own components. Giants are still vulnerable, and this kind of attempt reflects that.
The SEA has been relentless in its hacking attacks, which usually target US media and social sites. Hacking in the name of Syrian president Bashar al –Assad’s regime, the group uses a wide array of techniques including denial of service attacks, defacement and phishing campaigns to steal passwords to social media and email accounts, get into secured servers, and take down sites.
They use the attacks to take down content perceived to be hostile towards the Syrian government as well as sending out anti-US or pro-Syrian messages via hacked social media accounts. The New York Times, Huffington Post, BBC News, The Associated Press, and Twitter are just a few of SEA’s past victims. Wikipedia has a timeline of notable attacks by the Syrian Electronic Army if you’re interested in reading more.
Neither Facebook nor MarkMonitor has commented on the alleged attack as of yet.
Read more on The Next Web here.
Latest posts by Sarah Vonnegut (see all)
- How Secure is Your Online Banking App? - February 26, 2018
- Top 5 OWASP Resources No Developer Should Be Without - January 9, 2018
- Smart Cities: Can My City be Hacked? - December 11, 2017