The fact that
every local Conservative site seems to be down at the moment suggests that this is more than a hoax. As I understand it, accessing the main Tory CMS allows access to all the local sites too.
Hackers claim to have pwned the official website belonging to the UK Conservative Party. Details on the 4chan website, where they discussed the supposed attack, were sketchy, but they claimed the site was vulnerable to a SQL injection exploit. An email to The Reg claimed the site had been defaced, but at time of writing, there …
Saw it happening after getting linked to it from another forum. It seemed to be the regional Tory sites that were getting hammered. A bit like the US public library CMS incident last year.
The other archived threads and screen shots show that it was a pretty bog standard SQL injection attack. The defacement seemed to be limited to what the /b/tards could do through the CMS interface.
This post has been deleted by its author
img163.imageshack.us/i/1287179322305.jpg/
img121.imageshack.us/i/1287179501145.png/
img691.imageshack.us/i/1287179531454.jpg/
img816.imageshack.us/f/1287179566798.jpg/
img197.imageshack.us/i/1287179697961.png/
img833.imageshack.us/i/1287179767880.png/
img412.imageshack.us/f/1287181722205.jpg/
Was on /links on B3ta when it was happening, and someone posted a link to the thread as it started
It was a trivial SQL vulnerability, from (rough) memory, typing
') OR ('1' = '1
(quotes may be in the wrong place, don't know any SQL) into the password field was said to allow access (didn't try it myself)
Various defacements, from the subtle (a couple words added in to completely change the meaning of a paragraph) to the.... less so (putting nazi logos up everywhere and having a large bit of text saying **** you). Mainly the latter once someone posted the vuln on /b/.
Unfortunately, this being the internet, where things are easy to fake, and the Conservatives unlikely to be forthcoming on this (would have been more public if 4Chan had done it middle of the UK day), posts like this and the screen caps above are likely to be the best you'll get.
not conservatives.com, there must be thousands of similar basic local websites that can be hacked through the process of
Scan site for basic weakness and older versions of software, if they aren't faking them
Google for vulnerabilities
Copy paste example and see if it works
Hack the internets