Slashdot Mirror

← Back to Stories (view on slashdot.org)

RIAA Website Hacked

Posted by CmdrTaco on from the maybe-someone-just-typed-rm--rf dept.

gattaca writes "A lack of security controls allowed hackers to "wipe" the Recording Industry Association of America's (RIAA) website on Sunday. The existence of an SQL injection attack on the RIAA's site came to light via social network news site Reddit. Soon after hackers were making merry, turning the site into a blank slate, among other things. The RIAA has restored RIAA.org, although whether it's any more secure than before remains open to question, TorrentFreak reports."

35 of 247 comments (clear)

  1. Well by Chas · · Score: 5, Funny

    Normally I don't advocate cracking someone's site. It's childish and petty. Kinda like the RIAA itself.

    But, for some reason, I'm having a really hard time working up any real sense of moral outrage over it.

    This probably makes me a bad, biased person.

    C'est la vie!

    --


    Chas - The one, the only.
    THANK GOD!!!
    1. Re:Well by notmyusualnickname · · Score: 3, Funny

      Same here. *Rubs hands and indulges in a meglomaniacal chuckle*

    2. Re:Well by slarrg · · Score: 2, Funny

      Next time, hire a Web developer who isn't a stupid fscktard.... Real programmers wouldn't work for the RIAA.
  2. Why wipe it? by Loibisch · · Score: 5, Funny

    It would have been so much better to make it a temporary mirror for thepiratebay.org :D

    Wonder if they would have started a lawsuit against themselves...

  3. Re:Let me be the first to cry by gnick · · Score: 5, Funny

    No, this falls far short of justice. Justice would have been posting a bunch of copywritten songs and announcing to the world where to find them. Even better:
    * Record an original piece
    * Post it
    * Sue the RIAA for hosting it

    Just blanking a site is lazy.

    --
    He's getting rather old, but he's a good mouse.
  4. I wouldn't have wiped... by blake1 · · Score: 5, Funny

    instead I would have used my cunning to download the latest Britney album to their server in DRM-free MP3 format. And then promptly reported them to themselves.

    1. Re:I wouldn't have wiped... by calebt3 · · Score: 2, Funny

      Britney album Post something that people want, for crying out loud!
    2. Re:I wouldn't have wiped... by blake1 · · Score: 2, Funny

      Never! This would definitely be a double-blow.

  5. Re:Let me be the first to cry by phillymjs · · Score: 5, Funny

    Just blanking a site is lazy.
    --
    This space intentionally left blank.

    Irony, thy name is gnick.

  6. What should have been hosted by IndustrialComplex · · Score: 3, Funny

    If you are going to break into a website, then you need some sort of plan for when/if you succeed.

    How about a statement like this:

    "The protections applied to this website were more robust than the Digital Rights Management that is applied to CDs DVDs and other forms of digital media. Yet even that didn't stop a determined individual. If this website were a CD, it would be leaked all over the internet, and once cracked, DRM simply becomes an impediment to the legitimate users."

    At least they could have tried to make it relevant. However, it is quite possible that they didn't have all that much time or total access to the site. (though if you can erase something, I'm pretty sure that is as close to total access as you need) I'm not too familiar with databases and websites so I don't know how far they could go with it.

    --
    Out of modpoints but really liked a post? 1BDkF6TtmmeZ3yqXbz9yhdYVqRYnwFoXDj
  7. Re:It would've been funnier by webmaster404 · · Score: 4, Funny

    No the RIAA gets LOTS of visitors... they are just part of a DDOS though.

    --
    There is no "disagree" moderation, and troll, flamebait and overrated are not valid substitutes
  8. Re:This gives reddit a bad name by Anonymous Coward · · Score: 3, Funny

    C'mon man - it's not like they hacked in to COPY the site, god dammit.

  9. Obligatory Nelson quote by ndtechnologies · · Score: 4, Funny

    "HA HA!"

    --
    I have nothing clever to put here...
  10. Slashdotting by megazork · · Score: 5, Funny

    The OP should have posted a link to RIAA.org so that it could have been slashdotted. =)

  11. Re:You would think that by Pingmaster · · Score: 3, Funny

    And we ALL know how effective their copy protection schemes are...

  12. Re:wow by Osurak · · Score: 5, Funny

    So you're the most hated site on the internet essentially, especially by people who proudly go by the name "pirates". And you don't protect your site??? Who exactly is running this operation?
    Ninjas.
  13. I would prefer by Anonymous Coward · · Score: 1, Funny

    that someone report them for using unlicensed software.

  14. Re:Well-It's all relative. by sponglish · · Score: 5, Funny

    If someone punches you in the face, do you beat them to death with a crowbar? No, you punch them back. If someone pulls a knife on you, do you pull out your grenade launcher?

    Yeah, well... You're not from Chicago.

    They pull a knife, you pull a gun. He sends one of yours to the hospital, you send one of his to the morgue. That's the Chicago way... Now do you want to do that? Are you ready to do that? I'm offering you a deal. Do you want this deal?

    --
    "I improvise. It's my greatest talent. I prefer situations to plans..." --Wintermute, William Gibson's "Neuromancer"
  15. Oops... by Hanners1979 · · Score: 2, Funny

    Looks like someone was using the RIAA web server's CD-ROM drive to listen to their Sony album collection again...

  16. Re:Well-It's all relative. by soarkalm · · Score: 3, Funny

    If someone punches you in the face, do you beat them to death with a crowbar? No, you punch them back. If someone pulls a knife on you, do you pull out your grenade launcher?
    Once the knife comes out, you basically have to assume life and death. In this case, you make your opponent take up the unwise position of bringing a knife to a gunfight.
  17. Re:Well-It's all relative. by Captain+Splendid · · Score: 5, Funny

    If someone pulls a knife on you, do you pull out your grenade launcher?

    Sounds like the annual Cheney family reunion to me.

    --
    Linux, you magnificent bastard, I read the fucking manual!
  18. Re:Well-It's all relative. by derfy · · Score: 5, Funny

    Hell, I say nuke them from orbit.

    It's the only way to be sure.

  19. Nuke them from orbit. by Chas · · Score: 4, Funny

    Actually, the only way to be "sure" is to nuke them in person.

    Otherwise there's always the real possibility that they were able to take cover.

    --


    Chas - The one, the only.
    THANK GOD!!!
    1. Re:Nuke them from orbit. by budgenator · · Score: 2, Funny

      We vote to give you the privilege of pushing the button up close and personal and as a reward, when you get to the promised land, you can download 72 songs from Itunes free of charge.

      --
      Apocalypse Cancelled, Sorry, No Ticket Refunds
    2. Re:Nuke them from orbit. by Fieryphoenix · · Score: 2, Funny

      But you'll have to finish listening to them within 24 hours.

    3. Re:Nuke them from orbit. by orgelspieler · · Score: 4, Funny

      when you get to the promised land, you can download 72 songs from Itunes free of charge.
      Yeah, but they can only be from the Virgin label.
  20. Murder by Fractions by Dr_Barnowl · · Score: 3, Funny

    Given that socio-economic status has a strong correlation to both absolute and "healthy" life expectancy, each successful "life-ruining" lawsuit which results in a corresponding drop in socio-economic status could be interpreted as being some fraction of a murder.

    I'm sure they have accumulated enough fractions by now to cover the members of the board, and maybe a few tiers of upper management too. Since they are the most compensated, they must be the most responsible, right?

    NB. Tongue is firmly in cheek.

  21. Re:Well-It's all relative. by Mercano · · Score: 4, Funny

    If someone pulls a knife on you, do you pull out your grenade launcher?

    No, that's just not a good idea. I mean, if someone is coming at you with a knife, he's probably at very close range, so if you tried using a grenade launcher, you'd probably taking yourself out with him. (The range for splash damage is probably understated in most video games.) A shotgun or a submachinegun would be a far better choice.

    --
    #include <signature.h>
  22. Re:Let me be the first to cry by smittyoneeach · · Score: 5, Funny

    Irongnick?

    --
    Get thee glass eyes, and, like a scurvy politician, seem to see things thou dost not.--King Lear
  23. Re:Let me be the first to cry by smittyoneeach · · Score: 5, Funny

    If they just restore the site from backup, without patching the SQL injection vulnerability, then the RIAA is RIAAlly st00p3d.
    Now, parking a whole bunch of Scientology materials on their server would be quite funny.

    --
    Get thee glass eyes, and, like a scurvy politician, seem to see things thou dost not.--King Lear
  24. Archive.org by RAMMS+EIN · · Score: 4, Funny

    Fortunately for the RIAA, the old content of the site has been archived by the Internet Archive.

    Although that poses a rather uncomfortable dilemma for the RIAA: should they thank archive.org for saving their content...or sue them for copyright infringement?

    --
    Please correct me if I got my facts wrong.
  25. Re:Pics or GTFO by nizo · · Score: 2, Funny
    Soon after hackers were making merry, turning the site into a blank slate....


    Here is the screen capture:

    --
    I Am My Own Worst Enemy
  26. Re:Well-It's all relative. by ozbird · · Score: 2, Funny

    They pull a knife, you pull a gun.

    That's not a knife; this is a knife.

  27. Re:Let me be the first to cry by SoulRider · · Score: 5, Funny

    I heard the scientology site got hacked this weekend and so did the RIAA website. Someone...PLEASE!...someone do it again only this time post negaive scientology propoganda on the the RIAA website and RIAA properties on the scientology website. They would have to sue each other, and considering the tactics both sides like to use the resulting trial could take 100 years or more.

  28. Re:Let me be the first to cry by MacWiz · · Score: 2, Funny

    Their web guy wanted to make a backup, but when he produced a spindle of CD-Rs, someone yelled, "Pirate! He's stealing our stuff!" He was lucky to make it out of there alive, but they did jam two subpoenas up his ass before they threw him out the door.