Hackers in Pakistan have reportedly hacked the organisation managing domain name servers to redirect users to their own site, disrupting access to major services such as Gmail and eBay.
Rather than serving malware to users, the hackers said they simply wanted to highlight weak security at PKNIC, which manages part of the Domain Name System (DNS) for a variety of the country’s top level domains, including .com.pk and .pk.
Almost 300 sites were affected by the DNS hack in total, including Google, Yahoo, eBay, Apple, Microsoft, HP, HSBC and PayPal, reports claimed. When users tried to access those sites they were greeted with a page featuring two penguins walking across a bridge, with a message reading: “Pakistan Downed.”
It’s unclear who was behind the DNS hack, as two separate groups have taken credit. One, called ‘eboz’, took credit for the hit on the actual defacement, as listed on the Zone-H website (see image below).
But a trade site called Pro Pakistani said it had received information from a hacking group, which did not appear to be directly affiliated with eboz, which claimed to have exposed a variety of flaws in the PKNIC system.
DNS can be hit in a variety of ways. Earlier today, TechWeekEurope reported that a number of sites hosted by Go Daddy had their DNS records changed, with certain subdomains created to point to malicious web pages.
This technique allows attackers to use “legitimate-looking URLs in their attacks, which can help to evade security filtering and trick users into thinking the content must be safe”, said security company Sophos.
Update: It emerged that the group Eboz was apparently Turkish, and appears to have hit on Pakistan.
Think you’re a security pro? Try our quiz!
Fourth quarter results beat Wall Street expectations, as overall sales rise 6 percent, but EU…
Hate speech non-profit that defeated Elon Musk's lawsuit, warns X's Community Notes is failing to…
Good luck. Russia demands Google pay a fine worth more than the world's total GDP,…
Google Cloud signs up Spotify, Paramount Global as early customers of its first ARM-based cloud…
Facebook parent Meta warns of 'significant acceleration' in expenditures on AI infrastructure as revenue, profits…
Microsoft says Azure cloud revenues up 33 percent for September quarter as capital expenditures surge…
View Comments
The text written on the webpage shown above is in Turkish. Google Translate shows a weird translation so not sure if it were the hackers in Pakistan who did this.
Many thqanks. It did emergesubsequently that Eboz was apparently Turkish. The language should indeed have been a clue.
Peter Judge
Mr editor , dog farted in your neighborhood last night also involed pakistan isnt it, its a word of mouth now pak pak pak everything is being done by pakistan, the image you posted is turkish lanaguage.