October 8, 2011

Turkish government Web sites compromised by an attack from Margent

Lei Li

A Margent attack is a popular mode of inbreak where even an ordinary hacker can take advantage of it to attack Web sites. This week, Websense Security Labs discovered that several Turkish government Web sites were compromised by this kind of attack. 

In a Margent attack, the attacker gets control permission of a vulnerable Web site, in this case a site that is hosted on the IP address Once the attacker gains control of the site, they can access the server's file system. The attacker then modified the homepage of the Turkish government's Web site that is also hosted on the same server. 

Screenshot of some compromised domains:


Defaced screenshot of a compromised Turkish government domain: 


Websense Email Security and Websense Web Security protect against this kind of blended threat with ACE, our Advanced Classification Engine.

About Forcepoint

Forcepoint is the leading user and data protection cybersecurity company, entrusted to safeguard organizations while driving digital transformation and growth. Our solutions adapt in real-time to how people interact with data, providing secure access while enabling employees to create value.