Contributors
Jeremiah Grossman
(WhiteHat Security)

Ofer Shezaf
(Breach Security) [Project Leader]

The Web Hacking Incidents Database
Last update:17 February 2008

List of Incidents for a Classification

Please note that classifications are a new feature and not all entries in WHID are already classified, so when you get a certain number of entries for a classification, WHID might have more records matching that classification that we did not classify yet. We hope to complete the classification process soon.

Select classification:
Attack Method, Country, Location, Origin, Outcome, Software, Vertical

Select criteria for classification "Country":
?, Australia, Belgium, Brazil, Canada, China, Ecuador, France, Germany, Global, Greece, India, Israel, Italy, Jamaica, Japan, Korea, Libya, Mexico, New Zealand, Peru, Spain, Sweden, Thailand, Turkey, UK, United Nations, USA

List of incidents for which Country is New Zealand
3 incidents listed
WHID 2007-57: New Zealand's Government Web Sites Attacked And Information Stolen
Reported: 07 November 2007
Occurred: 11 September 2007

Classifications:

  • Attack Method: Unknown
  • Country: New Zealand
  • Outcome: Information Warfare
  • Outcome: Leakage of Information
  • Vertical: Government

An attack on New Zealand government web sites required New Zealand Prime Minister, Helen Clark to comment and ensure the public that no confidential information was stolen. However official sources in New Zealand confirm attacks were carried out by unnamed, but known, foreign governments on New Zealand government web site that resulted in stealing of information.

References:

WHID 2007-41: Hackers hit New Zealand Herald website
Reported: 02 September 2007
Occurred: 29 August 2007

Classifications:

  • Attack Method: Cross Site Scripting (XSS)
  • Country: New Zealand
  • Country: New Zealand
  • Outcome: Defacement
  • Vertical: Media

Still defacement but this time with a twist. This was a genuine XSS rewriting attack, and was carried out by well known people as a stunt. No information is provided on how the XSS vector found its way to the victim computers.

References:

WHID 2007-41: Hackers hit New Zealand Herald website
Reported: 02 September 2007
Occurred: 29 August 2007

Classifications:

  • Attack Method: Cross Site Scripting (XSS)
  • Country: New Zealand
  • Country: New Zealand
  • Outcome: Defacement
  • Vertical: Media

Still defacement but this time with a twist. This was a genuine XSS rewriting attack, and was carried out by well known people as a stunt. No information is provided on how the XSS vector found its way to the victim computers.

References:


This work is licensed under the Creative Commons Attribution License. To view a copy of this license, visit http://creativecommons.org/licenses/by/2.5/ or send a letter to Creative Commons, 559 Nathan Abbott Way, Stanford, California 94305, USA.
 
© Copyright 2005, Web Application Security Consortium. All rights reserved.