The Pakistani hackers have most likely leveraged DNS poisoning

Oct 14, 2013 07:40 GMT  ·  By

Pakistani hackers of Team Xploiters have defaced several high-profile domains from Costa Rica, most likely via DNS poisoning. 

The list of targeted domains includes Amazon.co.cr, Google.cr, Ebay.co.cr, Yahoo.cr, YouTube.co.cr, Flickr.co.cr and MSN.co.cr.

According to The News Informer, the hackers posted the following message on the defaced sites:

“You Madleets [expletive] can't even come close to our level! What are you? Self-proclaimed 1337 (n00bs in reality)? We are the [expletive] 1337 makers! Your biggest achievement is defacing some popular domains via DNS? Here we are defacing them with our left hand's middle finger.”

The attackers most likely defaced the domains via an attack on the .cr domain registrar. I’m trying to get in touch with the organization to see if they can comment on the incident. This post will be updated in case they provide a statement.

Just a couple of days ago, the same hackers breached the systems of the domain name registrar for French Guiana, Guadeloupe and Martinique.

Update. NIC Costa Rica representatives say they're investigating the incident. No additional information has been provided so far.