Photobucket, the popular photo sharing website, became the target of a DNS hack on Tuesday. As a result of the attack some (but not all) surfers hoping to check out pictures were involuntarily redirected to a greeting from hacker NetDeliz and a message in Turkish. A post to Photobucket's user forum blamed the problem on "an …

COMMENTS

House rules Send corrections

This topic is closed for new posts.

Wednesday 18th June 2008 16:01 GMT Ron

No personal information?

If they stole the domain name, that means the users' browsers would be submitting their cookies to the attacker's server. That means that anything stored in the user's cookie (for example, session IDs) could be compromised, just not their stored data.

0 0
Wednesday 18th June 2008 21:06 GMT cmantito

@Ron

Exactly what I was thinking. Some sites go so far as to simply hash the username and password (I like to think a big site like Photobucket's smarter than this) into a cookie and just compare the hash every so often..

The fun part of that is that there's not really a way to tell for sure if cookiedata was taken until you get a copy of the source for the replacement page or what have you..

0 0
Wednesday 18th June 2008 23:52 GMT Anonymous Coward

@Ron

"No personal information? "

You beat me to the punch there,

And i thought i was a n00b,

who employs these people?

0 0
Thursday 19th June 2008 10:25 GMT Patrick O'Reilly

@All

You do realise El Reg includes such comments about "No personal information being stolen etc" are only included for our amusement.

0 0
Thursday 19th June 2008 10:25 GMT Kevin Gurney

How long.........

Before our Turkish friend is extridited to the USA to face criminal charges ?

0 0
Thursday 19th June 2008 14:23 GMT Richard Carroll

Photobucket problem

I have been getting atspace.com when I request photobucket.com since Wed. June 18 about 4 a.m. PDT. It's now Thurs, 7 a.m. Before that, the same thing occurred from Tues. 2 p.m. to Wed. 2 a.m. Whatever they're doing is taking far longer than a few hours. My ISP is Comcast; I'm in Oakland, California.

0 0
Thursday 19th June 2008 14:48 GMT Sam

What's the betting..

..that the phrase "Pushti pezevenk" was in the message somewhere?

0 0

This topic is closed for new posts.

Topics

Special Features

Vendor Voice

Resources

User topics

Article topics

User topics

Article topics

Photobucket tipped over by Turkish hacker

COMMENTS

No personal information?

@Ron

@Ron

@All

How long.........

Photobucket problem

What's the betting..

Other stories you might like

Row breaks out over true severity of two DNSSEC flaws

Nominet to restructure, slash jobs after losing 'major deal'

Just one bad packet can bring down a vulnerable DNS server thanks to DNSSEC

Square blames last week's outage on DNS screw-up

Microsoft DNS boo-boo breaks Hotmail for users around the globe

If your DNS queries LoOk liKE tHIs, it's not a ransom note, it's a security improvement

Microsoft opens up Defender threat intel library with file hash, URL search

Microsoft squashes Windows 11, Server 2022 bugs with preview patches

Two thirds of DNS queries for IPv6 hosts sent to Chinese resolvers fail, researchers find

He's only gone and done it. Ex-Register vulture elected to board of .uk registry

Apple network traffic takes mysterious detour through Russia

About Us

Our Websites

Your Privacy