Evidence that a zero day can happen to anyone. The good folks over at Matasano woke this morning to the rather unfortunate realization that their web server had been defaced. In addition to the defacement, which was taken offline in relatively short order, the instigators posted a mirror, of a sort, to the Full Disclosure mailing list.
Thanks to “Z” and everyone who sent in screen caps and supporting material to our “tips SHIFT2 liquidmatrix.org” email.
Will post more as information rolls in.
UPDATE: From a trusted source of Liquidmatrix we hear that it was a tcpwrapped sshd at Matasano.
Hmm. As the tips roll in I’m starting to wonder if this was a hack at all. Disgruntled insider evil or a bad password?