Skip to main content
  1. Home
  2. Computing
  3. News

Malaysia Airlines website hit by Lizard Squad hackers

By

malaysia airlines website hit by lizard squad hackers
Image used with permission by copyright holder
Things don’t get any easier for Malaysia Airlines.

The carrier, which is still reeling from last year’s loss of two passenger planes, has now had its official website hacked apparently by Lizard Squad, a group known for a string of recent denial-of-service attacks on high-profile services.

Recommended Videos

‘404 – Plane Not Found’

The airline’s homepage was hit early Monday ET and at the time of writing continues to show Lizard Squad’s trademark image of a tuxedo-wearing lizard. Above it is the message, “404 – Plane Not Found,” presumably in reference to the airline’s lost MH370 plane which disappeared from radar screens last March as it flew from the Malaysian capital of Kuala Lumpur to Beijing with 239 people on board.

Related

Under the image it reads, “Hacked by LIZARD SQUAD – OFFICIAL CYBER CALIPHATE.” A number of news outlets, the Wall Street Journal among them, reported that some versions of the hacked homepage carried the message, “ISIS will prevail.”

The defaced webpage also includes an auto-playing rap song about the group’s hacking exploits.

Malaysia Airlines: ‘User data remains secured’

Malaysia Airlines has issued a statement confirming it’s aware of the attack, at the same time insisting that its servers have not been compromised and that user data “remains secured.”

“The airline has resolved the issue with its service provider and the system is expected to be fully recovered within 22 hours,” the carrier said on its Facebook page, meaning its official site may not be up and running again until Tuesday at the earliest.

Despite the airline’s assurances, a message posted on Lizard Squad’s Twitter account said it intends to “dump some loot found on malaysiaairlines.com servers soon,” and in another said that the carrier’s claim that its servers had not be infiltrated was untrue.

Lizard Squad last month took credit for hacks that compromised the Sony PlayStation Network and Microsoft’s Xbox Live service. An arrest was made earlier this month in connection with the attack, though no charges have yet been brought.

It’s not clear why Malaysia Airlines has been targeted by Lizard Squad, though as events continue to unfold, the hacking group’s motivation may become clearer.

Editors’ Recommendations

Topics
Trevor Mogg
Trevor Mogg
Contributing Editor
Not so many moons ago, Trevor moved from one tea-loving island nation that drives on the left (Britain) to another (Japan)…
This free service just hit a huge website security milestone
global internet usage one zettabyte computer server room information cloud web net

One of the most important security features that protect your personal data as you browse and interact with various websites is enabled by a free service from a company called Let's Encrypt. As the name implies, this involves encrypting data to make it more difficult for your information to be intercepted in a readable form.
Website encryption is incredibly important on shopping websites since you usually need to fill out a form with your email address, shipping address, and phone number in order to get updates on the order status and receive the items you've ordered. Even more sensitive than your contact information and address, your payment information is needed to pay for that awesome, new tech, kitchen gadget, or toy.

In the early internet, encryption wasn't as common as it is today, and Let's Encrypt has played a huge role in making website security universal across the World Wide Web. Starting in 2015, Let's Encrypt took steps to ease the burden of encryption which came at a significant cost that was prohibitive for small businesses compared to the relative ease of creating a website today. Beyond the expense of ordering a Secure Sockets Layer certificate (SSL), which could cost hundreds of dollars each year, it wasn't easy to install this technology on a website. That meant most small websites were not encrypted.

Read more
Hackers are infiltrating news websites to spread malware
A black fedora rests on top of newspapers infected with spreading green lines..

Some alarming news broke today that hundreds of U.S. news websites are unwittingly playing a big role in a new malware campaign that's disguised as a Chrome browser update. This is quite a devious attack method since it's considered an important security practice to update your browser as soon as possible.

The way hackers are delivering the malware is also clever. It’s coming via an advertising network that also supplies video content to newspaper websites across the nation. It’s difficult to identify and shut down this attack because it is applied intermittently. According to a tweet by the security research team Threat Insight, the JavaScript code is being changed back and forth from the normal harmless ad delivery script to the one that includes the hacker code that shows a false update alert.

Read more
Hackers may be hiding in plain sight on your favorite website
A depiction of a hacked computer sitting in an office full of PCs.

Security researchers have detailed how domain shadowing is becoming increasingly popular for cybercriminals.

As reported by Bleeping Computer, analysts from Palo Alto Networks (Unit 42) revealed how they came across over 12,000 such incidents over just a three-month period (April to June, 2022).

Read more