We've been informed by an anonymous tipster that the main UiTM ( short for Universiti Teknologi MARA) website has been defaced over the weekend. Yes, you might say its not that big an issue as thousands of websites get defaced everyday.

But if you're a "World Class University", defacements like this should not happen, and should they happen, someone should at least look into it before some future graduate accidentally stumbles on the page and gets brain washed (pun intended).

Name: MMU	Comment: Dear Lucky, I'm sad when i read your comment. the problem here is with uitm dns server it self. open dns is not good. do some reading first before comment.
Rated Article: Posted: 2008-05-07 06:44:05

Name: bad boi	Comment: unlucky..mates
Rated Article: Posted: 2008-04-19 16:14:38

Name: giantKPTM	Comment: i dont know what to say,,but i think uitm dont have a good security...this matter cause uitm student a lot of problems like pre registration which will be close on 26th of this month...if this web cant be access,how could the students do the registration before the date..i hope uitm solve this problem quickly...by the way,i'm qurious why this matter dont heard on public media......
Rated Article: Posted: 2008-04-19 13:12:26

Name: xylon del	Comment: The problems r adi fixed.
Rated Article: Posted: 2008-04-18 15:53:42

Name: Eer	Comment: Any announcement from UITM about this incident? They look silence...
Rated Article: Posted: 2008-04-17 14:45:17

Name: lelynx	Comment: It's not the fault of their IT staffs there... As my current work allow me to hv the privilege to work with those whom are in charge of their web pages... They hv a quite decent of security measurement for hacking prevention... The problem is their DNS which was hosted by a company in Cyberjaya. Most likely the problem of dns poisoning is there with this company
Rated Article: Posted: 2008-04-16 23:42:44

Name: ATOBE

Comment: dear "Ed" or who ever u are, my comment was not referring to your article, i'm referring to the comment from other guest. why suddenly you try to defend your article? do you actually meant what you said you didn't meant? Like the malays alwez said, "saper makan cili dialah yang terasa pedasnya" Ed By specifically mentioning the initials of the author "Screw you guys who believed that UiTM server actually got hacked... including you VR", its easy to conclude your statement included the entire article and not just the comments. Don't twist what you've already said.

Rated Article: Posted: 2008-04-16 22:45:57

Name: we	Comment: pity UiTM sick ard... hope get well soon...
Rated Article: Posted: 2008-04-16 16:18:09

Name: Lucky

Comment: Deface can be done without hacking into ones server??? that something new... referring to http://en.wikipedia.org/wiki/Website_defacement... defacement happen when someone "breaks into a web server and alters the hosted website creating one of his own". i agree with jojo that this type of incident is beyond uitm's responsibilities... if the poisoning happen at MyNIC... then its MyNIC responsibilities to ensure they have more secure service... Even if uitm respond quickly by alerting MyNIC... it will take time to cure as the DNS update to other site won't be effective immediately but the way the comments goes... But if you're a "World Class University", defacements like this should not happen, and should they happen, someone should at least look into it before some future graduate accidentally stumbles on the page and gets brain washed (pun intended). i would say the writer have some nasty intention... u might say u didn't mean it... but ppl who read it might got a wrong perspective... just refer to the most of the earlier comments... you might see what i mean... ED We're not blaming anybody, but there obviously is something wrong somewhere for this to have happened. I do believe MYNIC have nothing to do with this, because if there was a flaw in MYNIC's DNS systems, there is a lot of more high profile websites which would have been compromised. Which leaves two other possible scenarios. The attacker managed to change the DNS servers for the domain via the MYNIC control panel. This is a rather complicated option as even with the necessary credentials, MYNIC requires a few levels of authentication to completely change nameservers to nameservers that are not already pre-registered with their servers. The second more likely reason is that the nameservers resolving the domain were poisoned. These nameservers are handled by UiTM. We did a quick check and all three of their DNS servers response to queries - making them open recursive DNS servers. This alone makes it possible for the DNS to be poisoned and it is what we believe was used to redirect users to a different site. So now, who's fault is it again? Noted we might have been harsh, but we decided not to publish the details earlier as it would have just caused more havoc. However since we're getting a lot of stick for it, we will be updating the article with more details

Rated Article: Posted: 2008-04-16 13:01:24

Name: ATOBE

Comment: some ppl just got overexcited seeing some well known organization website got defaced. I'm also excited to have a look when my friend told me abt it. However, when i try to access from my pc, everything was ok. After making few checking, i realised it actually caused by dns poisoning. Screw you guys who believed that UiTM server actually got hacked... including you VR... muahahaha Ed Could you kindly point out the part where we said the UiTM server was "hacked"? The site was redirected to a site that is not the actual site which constitutes a defacement. Its a problem that requires attention irrespective of who the fault lies with.

Rated Article: Posted: 2008-04-16 03:22:15

Name: kita	Comment: wowwwww...interesting
Rated Article: Posted: 2008-04-15 12:55:28

Name: noxes	Comment: yeah.. MALAYSIA boleh... i think this is from uitm student or from the uitm hackers tournament contestant... maybe they deface it.. coz not winning in uitm hackers tournament.. to revenge it.. huhu
Rated Article: Posted: 2008-04-14 21:25:20

Name: jojo	Comment: this is dns poisoning... if u r develop web system that is very powerfull security.. u still can got dns poisoning... u cant do nothing about dns poisoning... dun talk like shit.. no knowledge... suck ppl like this... know to blame ppl.. but dun know the fact,,
Rated Article: Posted: 2008-04-14 18:56:26

Name: shidi	Comment: too bad
Rated Article: Posted: 2008-04-14 17:24:31

Name: Yuen-Chi Lian	Comment: He definitely needs to brush up his English a bit. It's "hijacked". - yc
Rated Article: Posted: 2008-04-14 16:40:43

Name: intelli7	Comment: how could this be possible? it was dns poisoning... the web server is secure.. only dns poisoning pls refer to this url http://www.f-secure.com/weblog/archives/00001405.html
Rated Article: Posted: 2008-04-14 16:29:05

Name: benjamin lee meng chuin	Comment: malaysia boleh... alright lah babe!
Rated Article: Posted: 2008-04-14 14:52:09

Name: Caedus	Comment: That is so classic! If the hacker really wanted to prove a point though, he should have listed down the weakness in their security. This'll be waved off as an inside job most likely.
Rated Article: Posted: 2008-04-14 14:41:15

Name: man	Comment: People really like u know to hentam sahaja, people like cuciotak always no otak..... Cuci otak hijack mynic server (beyond uitm control). an change the ip redirect to their server. Nothing else with the server UiTM. Please dont support people like cuciotak... support dia cuci otak sendiri.
Rated Article: Posted: 2008-04-14 14:25:55

Name: goodyear	Comment: good job!!! uitm server sux bydaway~ LOL!!XD
Rated Article: Posted: 2008-04-14 10:13:47

Name: cuciotak	Comment: smart job.. proving that uitm only develope nothin except rubbish... long live MMU!!!!
Rated Article: Posted: 2008-04-14 03:20:09

Name: goldfries

Comment: It's funny, I browsed earlier when I saw the news and the UITM site was looking fine. now (about 5 hours later, just after I read the article and comments) I loaded it again and there it was - defaced again. It's funny, how they a University of it's class that have so quite many security systems and a rather huge server room (yes, I've been there and seen the stuff) would face this.......... and for quite some time.

Rated Article: Posted: 2008-04-14 01:59:22

Name: hmm

Comment: I hate those dinosaurs at the top in UITM. They don't know how critical to have a good and secure ICT infrastructure with a logical budget. What can you expect of a government-funded institutions? So, if you don't allocate budget that much, you will see this. Human resource is another matter. It's too political, I guess. This is a shame because FTMSK faculty should be great in this aspect.

Rated Article: Posted: 2008-04-14 01:34:17

Name: Ashrufzz	Comment: I hope it has nothing to do with i-Hack Competition UiTM is organizing every year.
Rated Article: Posted: 2008-04-14 01:15:47

Name: Your Name !	Comment: Could have been an inside job. For all we know the webmaster could have done it. Point is though they should have fixed it already, how can you have it up for that long ?
Rated Article: Posted: 2008-04-14 00:42:58

Name: det_po	Comment: i bet the h@ck3r from UITM itself h@ck the website...
Rated Article: Posted: 2008-04-13 23:49:04

Name: fx_53_xt	Comment: there's a weird situation. i tested the website on 4 pc(s), two of it showing the hacked site, another two of them redirected to http://www.uitm.edu.my/uitm and ended up in the correct page. how could this be possible? i cleared all caches before loading
Rated Article: Posted: 2008-04-13 23:48:33

Name: Jayce	Comment: Oh no... It is still down. :P
Rated Article: Posted: 2008-04-13 23:40:05

Your Name:

Your Email Address:

Your Homepage:

Rate this article:
Poor Great

Comment:

BOLD

"QUOTE"

UNDERLINE