15 comments

[ 2.7 ms ] story [ 44.2 ms ] thread
(comment deleted)
(comment deleted)
I don't see anything. Screen shot?
http://i.imgur.com/pudwFWT.png

I'm guessing some people are getting a cached version.

Seems normal for me, can click around, seems entirely functional. Adding a query parameter to the URL changes nothing. This suggests it's not a cache.

Perhaps there is a server rotation (by client IP) and only one such server was hacked.

Still hacked for me, even checked with wget.
There are so many different kinds of hacks that I feel the title should say "defaced" rather than "hacked".
This was inevitable, they made themselves the enemy of every single corrupt state.
This looks like a typical DNS cache poisoning attack[1], which takes advantage of insecure DNS caching servers. Users of those caching servers will be sent to the wrong IP, so it is a successful attack of sorts. But there isn't much the target website can do to prevent it.

[1] https://en.wikipedia.org/wiki/DNS_spoofing