Core Security (coresecurity.com) defaced via DNS hijacking

September 22, 2011


The Core Security (coresecurity.com) website was defaced via DNS hijacking. This is done by redirecting a DNS entry that normally points to the legitimate site, to point to an alternate site. Despite the wording used, this does not mean that Core Security was compromised themselves. The defacer's claim of using a "private" exploit may be true, but if so, was used against their DNS provider or in a manner to hijack DNS w/o compromising the server.


main page ATTRITION feedback