The Channel logo


By | John Leyden 2nd July 2007 15:53

Saudi hackers scalp MS UK

Defacement video tutorial pulled after attack

Saudi hackers manged to deface a page on Microsoft's UK web site last week, recording the techniques they used in an online video.

The software giant's sites are periodically hit by acts of digital graffiti. In this case, however, the defacement gang unusually decided to document its attack.

A video illustrating SQL Injection flaws affecting, used to insert extra HTML code that formed the basis of the attack, was posted online. Details of how this might be done would be useful fodder for hackers so it shouldn't come as any particular surprise to learn that the video (posted on was pulled over the weekend.

The defaced page ( is also currently unavailable but defacement archive Zone-h has recorded the attack for posterity here.

Saudi hackers spray digital graffiti

According to Zone-h,'s externally hosted website remains potentially vulnerable to Cross Site Scripting and SQL injection attacks. It bases this conclusion on debug errors generated by scripts on the site. is run using IIS6 on a series on Windows 2003 servers, according to Netcraft. ®

comment icon Read 12 comments on this article alert Send corrections


Frank Jennings

What do you do? Use manual typwriters or live in a Scottish croft? Our man advises
A rusty petrol pump at an abandoned gas station. Pic by Silvia B. Jakiello via shutterstock

Trevor Pott

Among other things, Active Directory needs an overhaul
Baby looks taken aback/shocked/affronted. Photo by Shutterstock

Kat Hall

Plans for 2 million FTTP connections in next four years 'not enough'
Microsoft CEO Satya Nadella


League of gentlemen poster - Tubbs and Edward at the local shop. Copyright BBC
One reselling man tells his tale of woe