Al Arabiya Hacked. Two major hacktivist groups have teamed up to hack them servers of one of its largest news agencies Middle East.
Al Arabiya's servers are also hacked on Internet κυκλοφορεί ελεύθερα μια μεγάλη λίστα με τους διακομιστές ηλεκτρονικού ταχυδρομείου της εταιρείας καθώς και ένα archive root με την ευπάθεια που χρησιμοποιήθηκε για να διεισδύσουν στο system. All posted on Pastebin as ZDNet's Violet Blue reports.
Al Arabiya is the second-largest media company in the Middle East, and an Al Jazeera rival.
The attack and leakage of Al Arabiya data has been made by NullCrew, which continues to hit multinational media monopolies.
Let's remind you that on February 9, the NullCrew team violated Comcast servers.
This time, the team NullCrew FTS worked with them The Horsemen Of Lulz to violate the system and access a file that appears to contain the credentials on all accounts on the Al Arabyia mail server.
NullCrew FTS and Horsemen Of Lulz report on Pastebin
"We obtained important passwords from users through localconfig.xml."
NullCrew hacked Al Arabia
The successful attack was made possible through a vulnerability of the Zimbra email server which apparently has remained unpatched by Al Arabyia. Zimbra's specific vulnerability became known and can be corrected with a patch from December of 2013.
As readers of iGuRu.gr you may know that the e-mail addresses that they leaked from Al Arabiya may be used for password reset purposes on some other service or system. Thus, attackers can with a single account also breach other systems or online services.
Al Arabiya has from 500 to 1000 employees, a global network of correspondents and offices in more than 40 major cities.
Zimbra vuln's unpatched vulnerability is the same one reported in December 2013, with the hack on Comcast - the latest victim of the NullCrew team.