Barack Obama site hacked

Hackers recently used a cross-site scripting flaw to get into Barack Obama’s website, changing the code so visitors were redirected to Hillary Clinton’s, says Netcraft. Then, “A user named Mox, from Liverpool, IL, posted an apparent confession in the Community Blogs section on the Barack Obama website,” says the story, going:

“Mox plays down the matter by saying that all he did was exploit some poorly written HTML code before suggesting that it was a cross-site scripting vulnerability that had been exploited.

“By allowing users to enter characters such as > and ” into their blog URLs, JavaScript could be injected into pages in the Community Blogs section and would be executed by subsequent visitors.”

A YouTube clip from zennie62 demonstrates the attack, says Netcraft.

He clicks on ‘Community Blogs,’ launching the browser to hillaryclinton.com.

“The author speculates that ‘Senator Clinton’s staffers possibly hired someone to hack into the Barack Obama website system’,” says the story, adding:

“No evidence is offered to back up this statement.”

The Mox ‘confession’ had been deleted from the Obama site when we went for a look at 10:03 am Pacific.