New Zealand Herald falls victim to XSS prank
- 15 November, 2012 23:41
The New Zealand Herald's website had spinning photos and backwards text on Friday morning after it evidently was the victim of an amusing cross-site scripting attack.
The New Zealand Herald's website had spinning photos and backward text on Friday morning after it evidently was the victim of an amusing cross-site scripting attack.
Lynch describes himself on his LinkedIn profile as working for deviantART, a social network for artists. He couldn't immediately be reached for comment, but it appears the batch of code, named "eyewonder.js," wasn't specifically intended to target the newspaper website, but rather is a general script designed to manipulate elements on a Web page.
Cross-site scripting, abbreviated as XSS, is one of the most common coding flaws in Web pages but can also have much more dangerous impacts than what visibly affected the New Zealand Herald. An XSS vulnerability can be used to steal data from a website or cause other malicious code to run.
The newspaper, which is owned by APN Holdings NZ Limited, could not immediately be reached for comment.
It may be coincidental, but a hacking conference called Kiwicon is due to kick off tomorrow in Wellington. Kiwicon's blog mentioned the New Zealand Herald's hack on Friday morning, along with two other security-related incidents: a Wi-Fi outage on an airport bus and payment system problems in Wellington.
It's not unheard of for hackers to show off their skills during conferences by attacking infrastructure or even the computers of other conference attendees. Kiwicon runs through Sunday.
Send news tips and comments to firstname.lastname@example.org. Follow me on Twitter: @jeremy_kirk
- How do you measure up against top IT service provider benchmarks?
- Provide clients with more powerful, cost-effective cloud hosted services
- Simple, Proven, Tranformative
- Rebranded Quadmark revamps its IT solutions with Google Apps
- Switching to Google Apps brings many cost savings and productivity benefits, says commissioned study by Forrester Consulting
AMD's Sempron lives on with new desktop chips
Gold Coast-based Icon expands into US
Optus hits 2.3Gbps throughput in real-world test
Australia lags in e-signature adoption: Adobe
Users refuse to chuck XP as Windows 8 uptake flattens