The official website of the EC-Council, a controversial organization that provides information security training and certification, has been defaced. The defacement appears to be the result of DNS hijacking, but the attacker also claims to have gained access to sensitive information.
The website of the EC-Council has been hacked several times over the past years. This time, experts noted that the hacker, calling himself Eugene Belford (the name of a character from the movie “Hackers”), defaced the site by redirecting its visitors to an arbitrary domain via DNS poisoning.
However, in a message posted on the defacement page, the attacker said he had gained access to “thousands of passports belonging to LE (and .mil) officials.”
He also published a copy of Edward Snowden’s passport on the defacement page. It’s worth noting that Snowden reportedly obtained EC-Council certifications after taking some classes in New Delhi, India.
The hacker has also suggested that the administrators of the EC-Council website are reusing their passwords.
At the time of writing, the website of the EC-Council is offline.