Independent websites dedicated to high profile Indian political figures have been compromised in a targeted attack.
The websites manmohansingh.org and soniagandhi.org have both been compromised by the same group who have injected defamatory and inflammatory content into many of the pages. Although these sites are not official, they are returned in the first page of an internet search on the politicians names and as such are noteworthy sites.
The groups claiming responsibility for both compromises are Ksecurity – Team Azad Kashmir & Anti-Security Pakistan.
Both of these pages are hosted by a company called WorldViewer, whose own site also appears to have been compromised by Kosovan hacktivists.
I have already contacted the telephone number listed for worldviewer to alert them of the compromises.
This story comes shortly after the Royal Australian Air Force site compromise and once again reinforces the need for effective web application security, perhaps especially when your business is hosting sites for other people. It should also serve as an object lesson regarding taking control of your online identity, whether a high profile individual or a brand. If for no other reason than to avoid unfortunate security lapses such as these.