Welcome!

Web 2.0 Authors: Jeremy Geelan, Elizabeth White, Maureen O'Gara, Aditya Banerjee, Peter Silva

Related Topics: GovIT, Web 2.0, Cloud Expo, Security

GovIT: Article

Iranian Cyber Army Hacks Twitter

The attack was accomplished by temporarily compromising the Twitter DNS records via DNS hijacking

Twitter on Ulitzer

Last night Twitter.com was hacked by a group purportedly titled the Iranian Cyber Army, at least that is what people think based on the fact that this group advertised they were responsible by displaying a redirected web page with an Iranian flag and text that takes credit, saying "This website has been hacked by the Iranian Cyber Army". This morning another website (mawjcamp.org), which appears to be a Iranian Reformist website based outside of Iran was also found to have been hacked.

This event comes at a time when the United States Government is saying that cyberspace is the next frontier for "organized" military/terrorist organizations to attack US critical infrastructure. Most probably don't think that Twitter is critical, however this does represent a formidable day in the cyber war as although there have been other organized attacks to date, this is one of the most high profile instance of a politically motivated group attacking a website. Whether it is the so-called Iranian Cyber Army or a random group of mischiefs, this illustrates how vulnerable sites are to attack.

According to Twitter, the attack was accomplished by temporarily compromising the Twitter DNS records via DNS hijacking, to redirect incoming www.twitter.com to another webpage which was likely hosted on a free web hosting server, which hasn't been identified as of yet. DNS hijacking or DNS redirection is the proactive act of redirecting the resolution of Domain Name System (DNS) names to IP addresses from legitimate DNS servers to rogue DNS servers, particularly for the practice of injecting malware into unsuspecting computers, pharming, phising or defacing.

This appears to be ONLY a successful defacing attack, although the attacker could have just as easily created a fake twitter page, and pharmed or phished information from users. Those users would have unknowingly divulged their username and password to the attackers, and potentially their private tweets.

The question is: What is next from the Iranian Cyber Army?

More Stories By Adam Vincent

Mr. Vincent is an entrepreneur and cyber security visionary. Prior to founding Cyber Squared Inc., Mr. Vincent was a founder and Chief Technology Officer (CTO) for the Public Sector Division at Layer 7 Technologies a Cyber Security & Cloud Company. While at Layer 7, Mr. Vincent was responsible for exponential growth of the federal division and was recognized for his strategic leadership & direction to the company across the government sector - Worldwide. Prior to Layer 7, Mr. Vincent was a Sr. Information Security Engineer with The MITRE Corporation. Mr. Vincent holds an MS in computer science with a graduate certificate in computer security & information assurance from George Washington University. Mr. Vincent is an active blogger in the area of cyber security and a sought-after speaker at security industry conferences and events.

Comments (0)

Share your thoughts on this story.

Add your comment
You must be signed in to add a comment. Sign-in | Register

In accordance with our Comment Policy, we encourage comments that are on topic, relevant and to-the-point. We will remove comments that include profanity, personal attacks, racial slurs, threats of violence, or other inappropriate material that violates our Terms and Conditions, and will block users who make repeated violations. We ask all readers to expect diversity of opinion and to treat one another with dignity and respect.