Symantec Security Response is tracking any unusual activities through its Security Operation Centres and DeepSight Threat Management System, in response to a Web defacement challenge issued by a hackers` group.
The rumoured attack is loosely coordinated to take place on Sunday. The challenge aims to award the first individual or group to deface 6 000 Web sites within a six-hour period.
"Symantec is not seeing any unusual activities, but we will continue to monitor over the holiday weekend," the company said in a statement. "Regardless of the challenge, the threat is no bigger today than it was yesterday.
"To stay protected against the latest threats, Symantec strongly encourages enterprises to protect themselves by deploying multi-tier protection at the gateway, server and desktop. Enterprises and consumers should incorporate integrated security that includes anti-virus, firewall and intrusion detection."
Earlier warnings
Symantec`s action comes after US government and private sector security experts warned about the challenge. The contest could produce widespread Web site defacements worldwide and is said to offer prizes such as free hosting services, Web mail, unlimited e-mail forwarding, and a domain name of choice for the winners.
Web site defacement points will be awarded based on the type of operating system running the site. Those running Windows will only win one point, while those running Linux, Unix and BSD are worth three points. Sites running HP-UX and Macintosh are reportedly worth up to five points.
The New York Office of Cyber Security and Critical Infrastructure Coordination has issued an advisory, asking Web site administrators to take the following steps:
- Make sure default passwords are changed;
- Remove sample applications that aren`t being used from Web servers;
- Lock down Microsoft Front Page Extensions;
- Turn Web server logging on;
- Have a current backup of Web servers; and
- Apply the latest security patches to Web servers and operating system after testing.
The US Information Technology Information Sharing and Analysis Centre, through spokesman Pete Allor, director of operations, says the Web site issuing the challenge was taken off the Internet by Wednesday afternoon.
"Participants were asked not to deface more than 6 000 Web sites, according to the contest rules posted online," he says, adding that this was one indication of the extent of the threat.
The FBI was not immediately available to comment on how seriously it viewed the threat, Reuters reports.
Allor warns that it may already be too late for some companies, since hackers often install stealth back-door programs that allow them to easily get in at a later date.
"If you are waiting for the hacking to take place on Sunday, you`ve probably missed the boat," he says. Potential participants "are at the reconnaissance stage now and some of the active hacking may have already taken place".
Share
