Security researchers say this is another case of DNS hijacking
Rovio representatives have confirmed for Softpedia that someone has defaced the official Angry Birds website (angrybirds.com).The company has clarified that the defacement page was visible only for a few minutes, and only for some users.
“'The defacement was caught in minutes and corrected immediately. The end user data was in no risk at any point. Due to how the internet name resolution works, for most areas it was not visible at all, but some areas take time for the correct information to be updated,” Rovio VP of Marketing Communications Saara Bergström said in an email statement.
“This attack looks to be similar to the New York Times attacks from last year,” Bergström added.
The fact that this has been a case of DNS hijacking and not an actual breach of Rovio’s systems is also confirmed by security researchers from F-Secure.
Antti Tikkanen has highlighted the fact that the IP address shown in the zone-h.org mirror of the defacement, 18.104.22.168, is associated with Lithuania. The expert says that the angrybirds.com domain pointed to this and another IP address, 22.214.171.124, for at least one hour.
Update. Zone-h.com representatives have confirmed for Softpedia that the defacement is valid.