http://www.swalif.net/swalifsite/wp-content/uploads/2009/12/twitter-hacked-450x447.jpg

تمكن مجموعة من الهاكرز الإيرانيين من السيطرة على اسم النطاق الخاص بموقع تويتر - الخدمة الأشهر من نوعها عالميا - لمدة قدرت بساعة أو أكثر من الزمن قبل أن يتمكن فريق عمل تويتر من استعادة الأمور من جديد. تسلسل الأمور بدأ بظهور الصفحة المبينة بالأعلى و التي تحمل رسالة معادية للولايات المتحدة الأمريكية كبديل لصفحة تويتر الرئيسية مع توقف جميع خدمات تويتر المعتمدة على الAPI, استمرت هذة الصفحة في الظهور لفترة قصيرة من الزمن قبل أن يتوقف الموقع كليا عن العمل في الوقت الذي بدأت بعض الإضافات و البرامج المعتمدة على الAPI في العودة الى العمل, و منذ قليل و بعد مضي ساعة أو أكثر قليلا على بدأ هذا الهجوم عادت خدمة تويتر بالكامل الى العمل مع قيام فريق عمل تويتر بنشر ملاحظة مختصرة عبر مدونتهم (http://status.twitter.com/post/288586541/working-on-site-outage)يقولون فيها أن الموقع قد تعرض “لتوقف عن العمل” دون إيضاح للأسباب و لكن مع تأكيدهم على أن الخلل - في إشارة الى هذا الإختراق - قد تم عبر نطاقات الDNS دون اختراق حقيقي للمعلومات المشفرة التي يحتويها تويتر في محاولة فيما يبدو لطمأنة المستخدمين على سرية كلمات السر و اسماء المستخدمين الخاصة بهم.

قمنا بمراجعة معلومات تسجيل نطاق تويتر و ما يشير اليه النطاق حاليا و فيما يبدو فإنه قد عاد الى طبيعته و لكن مع وجود إشارة الى أنه تم تغيير معلومات التسجيل أو التوجيه خلال الساعات الماضية بالفعل.

فيديو تويتر أثناء الاختراق
http://www.youtube.com/watch?v=V7BcDbxY2Wk

Twitter Hacked, Defaced By “Iranian Cyber Army”


http://cache0.techcrunch.com/wp-content/uploads/2009/12/Twitterhacked.jpg
We’ve received multiple tips right around 10 pm that Twitterhttp://i.ixnp.com/images/v6.18/t.gif was hacked and defaced with the message below. The site was offline for a while.
We’re looking into this and awaiting on a response from Twitter.
The message read:
Iranian Cyber Army THIS SITE HAS BEEN HACKED BY IRANIAN CYBER ARMY
iRANiAN.CYBER.ARMY@GMAIL.COM
U.S.A. Think They Controlling And Managing Internet By Their Access, But THey Don’t, We Control And Manage Internet By Our Power, So Do Not Try To Stimulation Iranian Peoples To….
NOW WHICH COUNTRY IN EMBARGO LIST? IRAN? USA?
WE PUSH THEM IN EMBARGO LIST ;)
Take Care.
Update: – We have just found out that the same defacement is appearing at at least one other site, mawjcamp.orghttp://i.ixnp.com/images/v6.18/t.gif. We are not able to see what was at this domain before, but it is now displaying the same defacement that Twitter was only a few minutes ago.
Twitter does not have the best record with security issues. We have previously covered a number of incidents, and as recently as two months ago their web servers were misconfigured to reveal detailed internal network information. We also previously wrote about their admin interface having a password of ‘password’ on one account, and the well-known Twitter doc incident. It was hoped that with the hiring of a new COO, Dick Costolo, as well as a number of other high-level engineers, including security experts, that Twitter had grown out of the phase of being vulnerable to security incidents on such a large scale.
We do not know a lot about the group claiming responsibility for the attack as we haven’t heard their name before and they do not show up in any defacement mirrors or security sites. Similar Iranian groups were active during the election campaign in that country. We have emailed the group (they were kind enough to leave an address on the defacement) for a comment (also added them on Gchat – worth a shot).
Update 2.: Twitter.com is down, status.twitter.com is down. Some tweets are getting through at the moment because parts of the API are up. Search also seems to be working. The Firehose is up – Tweets are coming in from FriendFeed (all those tweets about ‘is twitter down’ are from third-party sites)
Update 3.: It is suggested that if you use the same password on your Twitter account with other accounts, now would be a good time to change your password on those other accounts.
Update 4.: There is a history between Iran and Twitter. It was well noted and covered in the media that Twitter was used as a tool during the Iranian election protests. The US government actually intervenedhttp://i.ixnp.com/images/v6.18/t.gif to assure that Twitter was available to the protestors in Tehran and around the country. This attack may be an act of reprisal from groups who were not happy with the role that Twitter played during the protests.
Update 5.: There is speculation at the moment that this may be a DNS redirect, which means that the Twitter.com domain has been redirected to the defacement page. This doesn’t explain why some sub-domains are down, while others are currently still alive (such as search)
Update 6.: Twitter.com is back. The company updated its status bloghttp://i.ixnp.com/images/v6.18/t.gif saying: “Twitter’s DNS records were temporarily compromised but have now been fixed. We are looking into the underlying cause and will update with more information soon.”
Update 7.: Twitter’s Platform Lead engineer Alex Payne has a funnier updatehttp://i.ixnp.com/images/v6.18/t.gif on the current statushttp://i.ixnp.com/images/v6.18/t.gif
http://cache0.techcrunch.com/wp-content/uploads/2009/12/fuck.jpg
Update 8.: Google was showing the below briefly when doing a search for Twitter (thanks Chrishttp://i.ixnp.com/images/v6.18/t.gif). The translation from Farsi/Persian reads:

“In the name of God, As an Iranian this is a reaction to Twitter’s interference sly which was U.S. authorities ordered in the internal affairs of my country…”
http://cache0.techcrunch.com/wp-content/uploads/2009/12/google-twitter.png
Update 9.: Biz Stone bloggedhttp://i.ixnp.com/images/v6.18/t.gif:

As we tweeted a bit ago, Twitter’s DNS records were temporarily compromised tonight but have now been fixed. As some noticed, Twitter.com was redirected for a while but API and platform applications were working. We will update with more information and details once we’ve investigated more fully.
As will we.

thanks for getting us latest news :)