Last Thursday Silicon.com found out that Apple's
Korean online store was hacked. The hacking was done by a dude going by the name 'Dinam.' He claims to be Turkish, but
there is no way to confirm that. It seems he gained administrative control over the webserver (which was running
Apache) that serves up the Apple store (in Korea) and he went ahead and defaced the website.To get an instant map to any address, just go to your Address Book and right click on the address field of any one of your contacts and select "Map Of." The address will then be revealed in Google Maps on Safari. You can do the same if a data detector determines there is an address in an e-mail in Mail.
![TUAW [Cafepress]](http://www.blogsmithmedia.com/www.tuaw.com/media/tuaw-cafepress-promo.png)
| # | Blogger | Posts | Cmts |
|---|---|---|---|
| 1 | Steven Sande | 45 | 2 |
| 2 | Dave Caolo | 32 | 4 |
| 3 | Mel Martin | 30 | 0 |
| 4 | Mike Schramm | 30 | 0 |
| 5 | Michael Rose | 19 | 26 |
| 6 | Victor Agreda, Jr. | 16 | 6 |
| 7 | Josh Carr | 16 | 24 |
| 8 | Erica Sadun | 15 | 2 |
| 9 | TJ Luoma | 14 | 25 |
| 10 | Joachim Bean | 12 | 3 |
| 11 | Chris Rawson | 12 | 0 |
| 12 | Aron Trimble | 11 | 5 |
| 13 | Ken Ray | 9 | 0 |
| 14 | Sang Tang | 9 | 0 |
| 15 | Megan Lavey | 8 | 9 |
| 16 | David Winograd | 8 | 4 |
| 17 | Brett Terpstra | 6 | 5 |
| 18 | John Burke | 5 | 3 |
| 19 | Mat Lu | 4 | 0 |
| 20 | Lauren Hirsch | 4 | 0 |
facebook iPhone psystar IpodTouch Bluetooth appstore MacOsX deals apple tuaw SnowLeopard verizon hgg tablet itunes wireless gps software Snow-Leopard AppReview audio music app-store AppleTv navigation security mac ATT developer imac Iphone3g dropbox app keynote AppleStore backup video games MagicMouse update giveaway rumors gaming ipod-touch ipod podcast features ItunesLp MacbookPro Microsoft
All contents copyright © 2003-2009, Weblogs, Inc. All rights reserved
The Unofficial Apple Weblog (TUAW) is a member of the Weblogs, Inc. Network. Privacy Policy, Terms of Service, Notify AOL
Reader Comments (Page 1 of 1)
brady said 6:47PM on 5-03-2006
what a jerk!
Reply
Chris said 7:13PM on 5-03-2006
Web-site hacks are common and frequently are simply the result of poorly configured web scripts, rather than a deeper security issue.
Reply
Adu said 7:22PM on 5-03-2006
Maybe he was mad since Turkey doesn't have its own Apple store?
Reply
carl said 7:24PM on 5-03-2006
ok web sites hack common mayb, but on a major web site?
and here is what worries me.. see i forget what the group is called, but basicaly any web site that offers Visa as a way to buy stuff, they have to go through a very rigiorous testing to see if they can be hacked, i would assume apple passed and/or changed it..yet this hacker still got in.....
Reply
Robert said 7:27PM on 5-03-2006
Maybe he just wanted to make a name for himself. Apparently he succeeded thanks to sites such as this one.
Reply
CajunLuke said 8:03PM on 5-03-2006
Carl:
Visa probably only cares about the purchasing stuff on a secure server.
Reply
dimwell said 8:24PM on 5-03-2006
This is not a "hack". It's a break-in by a vandal.
Reply
Daniel D said 9:13PM on 5-03-2006
its a shame their websites arn't as hackproof has their computers
ZING!!
Reply
mattco said 9:33PM on 5-03-2006
no its a hack
Reply
bryan said 1:41AM on 5-04-2006
Does anyone have a screenshot of this?
Reply
Douglas F Shearer said 3:33AM on 5-04-2006
It was only Apple's Korean Mail subdomain that was defaced. Screenshot of it can be seen here....
http://www.zone-h.org/defacements/mirror/id=3738607/
(No idea if we can add links here, sorry for the cut/paste inconvenience)
Dougal.
Reply
Arnoz said 10:22AM on 5-04-2006
Really useful and clever... What a jerk!
Reply
Ryan said 12:55PM on 5-04-2006
carl,
I have gone though that so called "visa compliance" testing for a large retail frim; it's a freaking joke that amounts to not much more than a portscan on the ip address that there site detects you comming from, which is usualy just your corprate firewall, no ports open there, duh. And a 20ish page questionier asking quetions like "do you leave your admin password written down un securely, yes or no".
Don't take faith in these 'tests', a real security audit is nothing like this and costs -tons- of $$ that most companies will not pay for.
Reply
GadgetTV said 2:37PM on 5-04-2006
#12 is right on the visa cert's. I think its called cisp or something like that. Helped a couple of sites with it last year.
Reply