Malaysia Government Sites Under Attack From Anonymous

The New Acunetix V12 Engine


The big news in Asia this week is that Anonymous has found a new target – the Malaysian government. Recently the Internet regulator in Malaysia (SKMM) issued a notice to all the ISPs in the South-East Asian country to block 10 domains associated with copyright infringement.

Following that, Anonymous released a manifesto against the Malaysian government to protest against the Internet censorship and to educate the Malaysian users how to circumvent the blocking measures.

Malaysia’s Communications and Multimedia Commission said that 51 websites in the .gov.my domain were attacked beginning late Wednesday, and that 41 of the sites suffered various levels of disruption.

The MCMC, the country’s Internet and telecommunications regulator, did not however provide information on the nature of the attacks, or the people behind it, describing them only as “unknown hackers”.

However, it made references to some of the websites recovering quickly, suggesting that these sites faced a DDoS or distributed denial-of-service attack rather than a hack.

DDoS attacks can make a website inaccessible to users by swamping the website with traffic from hundreds or thousands of computers.

Such attacks are a known tactic of Anonymous, a hacker group that had threatened to attack Malaysia.

Apparently 51 sites have seen hacking attempts and 41 have been effected and/or disrupted in some way. Some sites went down way before the promised ‘deadline’ and there has been a lot of data posted online (user-names, e-mails, account details, hashed passwords and so on).

The news is flying around the globe with all the big players reporting on it. There are various accounts of what has happened, the motivations behind and of course all kinds of conspiracy theories are flying around.

We’ll have to wait for more ‘official’ news to come out from the Malaysian Government (not that we can really trust that either).


The MCMC had noticed a reduction in the levels of attack by 4 a.m. local time Thursday, it said. The attacks had little effect on Malaysian users, and most of the websites have already recovered, it said.

“We do not expect the overall recovery to these websites to take long,” it said.

“The public is advised to report any information they may have regarding the identity of these hackers as the act to disrupt network services is a serious offence,” it said.

Anonymous has used various online forums to threaten Malaysia with an attack in protest against the government’s decision to block 10 websites that reportedly allowed the download of pirated content. Earlier this week, Anonymous invited people to join Operation Malaysia, targeting a government website from 7.30 p.m. GMT on Wednesday (3.30 a.m. Thursday, local time).

Interestingly enough the ‘official’ Anonymous Twitter and Blog accounts have seen no mentions of Malaysia – only Turkey, Spain and the Federal reserve.

Other reports on this:

Hopefully this will force the Malaysian Government to buck up their cyber security initiative and make sure all the government agencies have secure and up to date web software.

A lot of them are running woefully outdated versions of CMS platforms like Joomla and Drupal.

Source: Network World

Posted in: Legal Issues, Privacy

, ,


Latest Posts:


Eraser - Windows Secure Erase Hard Drive Wiper Eraser – Windows Secure Erase Hard Drive Wiper
Eraser is a hard drive wiper for Windows which allows you to run a secure erase and completely remove sensitive data from your hard drive by overwriting it several times with carefully selected patterns.
Insecure software versions are a problem Web Security Stats Show XSS & Outdated Software Are Major Problems
Netsparker just published some anonymized Web Security Stats about the security vulnerabilities their online solution identified on their users’ web applications and web services during the last 3 years.
CTFR - Abuse Certificate Transparency Logs For HTTPS Subdomains CTFR – Abuse Certificate Transparency Logs For HTTPS Subdomains
CTFR is a Python-based tool to Abuse Certificate Transparency Logs to get subdomains from a HTTPS website in a few seconds.
testssl.sh - Test SSL Security Including Ciphers, Protocols & Detect Flaws testssl.sh – Test SSL Security Including Ciphers, Protocols & Detect Flaws
testssl.sh is a free command line tool to test SSL security, it checks a server's service on any port for the support of TLS/SSL ciphers, protocols as well as recent cryptographic flaws and more.
Four Year Old libSSH Bug Leaves Servers Wide Open Four Year Old libssh Bug Leaves Servers Wide Open
A fairly serious 4-year old libssh bug has left servers vulnerable to remote compromise, fortunately, the attack surface isn't that big as neither OpenSSH or the GitHub implementation are affected.
CHIPSEC - Platform Security Assessment Framework CHIPSEC – Platform Security Assessment Framework For Firmware Hacking
CHIPSEC is a platform security assessment framework for PCs including hardware, system firmware (BIOS/UEFI), and platform components for firmware hacking.


One Response to Malaysia Government Sites Under Attack From Anonymous

  1. jack ryan July 4, 2011 at 6:02 am #

    i hope otherwise.. fuck those goverments who keep nagging the freedom of downloading..