Al Arabiya Hacked. Two big groups have worked together to break the servers of one of the biggest news agencies Middle East.
Al Arabiya's servers have been hacked and a large list of its email servers is freely circulating on the internet companys as well as a root file with the vulnerability used to infiltrate the system. All posted on Pastebin as ZDNet's Violet Blue reports.
Al Arabiya is the second-largest media company in the Middle East, and an Al Jazeera rival.
The attack and leakage of data of Al Arabiya was made by the NullCrew which continues to bash multinational media monopolies.
Recall that on February 9, the NullCrew team hacked its servers Comcast.
This time, the team NullCrew FTS worked with them The Horsemen Of Lulz to hack the system and obtain access in a file that appears to contain the login credentials to all accounts present on Al Arabyia's mail server.
NullCrew FTS and Horsemen Of Lulz report on Pastebin
"We obtained important passwords from users through localconfig.xml."
NullCrew hacked Al Arabia
The successful attack was made possible through a vulnerability of the Zimbra email server which apparently has remained unpatched by Al Arabyia. Zimbra's specific vulnerability became known and can be corrected with a patch from December of 2013.
As readers of iGuRu.gr you may know that the email addresses leaked by Al Arabiya can be used for resetς κωδικού πρόσβασης σε κάποια άλλη υπηρεσία ή σύστημα. Έτσι οι επιτιθέμενοι μπορούν με έναν μόνο λογαριασμό να παραβιάσουν και άλλα συστήματα, ή διαδικτυακές υπηρεσίες.
Al Arabiya has from 500 to 1000 employees, a global network of correspondents and offices in more than 40 major cities.
Zimbra vuln's unpatched vulnerability is the same one reported in December 2013, with the hack on Comcast - the latest victim of the NullCrew team.