"Secure" Trump website defaced by hacker claiming to be from Iraq [View all]

Source: Ars Technica

Someone calling themselves "Pro_Mast3r" managed to deface a server associated with President Donald Trump's presidential campaign fundraising on Sunday, The server, secure2.donaldjtrump.com, is behind Cloudflare's content management and security platform, and does not appear to be directly linked from the Trump Pence campaign's home page. But it does appear to be an actual Trump campaign serverits certificate is legitimate, but a reference to an image on another site is insecure, prompting a warning on Chrome and Firefox that the connection is not secure.

The page, now displaying an image of a man in a fedora, displays the following text:

Hacked By Pro_Mast3r
Attacker Gov
Nothing Is Impossible
Peace From Iraq

The source code contains a link to javascript on a now-nonexistent Google Code account, masterendi, previously associated with the hacking of at least three other websites. As Italian IT journalist Paolo Attivissimo pointed out, an archive of the script shows it to be a snow animation script, not malware.

Read more: https://arstechnica.com/security/2017/02/secure-trump-website-defaced-by-hacker-claiming-to-be-from-iraq/

---

Image of the hack:



The server - http://secure2.donaldjtrump.com/ -was still offline at time of posting. Trump's other servers are still operational.

Which all goes to prove that bragging about your yuuuge abilities to counter hackers is just waving a red rag at a bull.


http://www.politico.com/tipsheets/morning-cybersecurity/2017/02/trump-claims-credit-for-rnc-computer-security-218809

Meanwhile, Trump is still using his old, unsecured phone for some communications, possibly the one he was using when his Twitter account was hacked in 2013, his "cyber tsar" Giuliani was one of 14 Trump staffers who had their passwords leaked during 2012-2016, and Giuliani's own commercial website is rumored to be far from secure ...