Hackers Storm U.S. National Weather Service Website, Makes Sensitive Data Rain
A group identifying itself as Kosova's Hacker's Security is taking credit for the attack via a pastebin.com data dump. The organization pulled off the heist by exploiting a "local file inclusion vulnerability" on the weather.gov servers, supposedly in retaliation for American aggression against Muslim nations, including the release of Flame and Stuxnet malware.
"They hack our nuclear plants using Stuxnet and Flame like malware, they are bombing us 24/7. We can't sit silent -- hack to pay them pack," the hacking group supposedly disclosed to The Hacker News.
Included in the leaked information is a list of administrative account names, which security firm Sophos says can be used to open the hacked servers to brute force attacks against the accounts. The hacking group says more attacks are to come.