The United Nations website came under attack by hacktivists over the weekend.

Unidentified peace activists turned hackers replaced speeches by secretary-general Ban Ki-Moon with pacifist messages. The attack on UN.org was more subtle than a straightforward front page defacement.

Hackers reportedly used a SQL injection vulnerability to alter content on the site, powered by Apache servers running on a Unix platform.

As security blog Hackademix, which captured the attack, notes it's surprising for such a high-profile site to leave itself exposed to such a well understood class of flaw.

The site was restored, and the offending content purged, on Sunday afternoon. UN techies patched the main vulnerability involved in the attack, but Hackademix reckons the site is yet to be fully protected against similar attacks in future. ®

Related stories

Blair spam hack attack hits UK (9 May 2005)
Playgirl virus attacks Chechen rebel sites (9 December 2004)
Hacktivists DDoS 10 Downing St site (24 March 2003)
Waging peace on the Internet (19 April 2002)
Hacktivists claim coup against global leaders site (4 February 2002)
Activists target bank's Web site in animal rights protest (28 February 2001)
World Economic Forum hacked (7 February 2001)
Solar Sunrise hacker joins Mid-East cyber-war (21 November 2000)
Hacktivists crash Korea govt home page (28 August 2000)