Hacker took over BBC server, tried to ‘sell’ access on Christmas Day

A BBC logo is seen on the side of a British Broadcasting Corporation (BBC) building on March 2, 2005 in London, England. Credit: Getty Images
A BBC logo is seen on the side of a British Broadcasting Corporation (BBC) building on March 2, 2005 in London, England. Credit: Getty Images

A hacker secretly took over a computer server at the BBC, Britain’s public broadcaster, and then launched a Christmas Day campaign to convince other cyber criminals to pay him for access to the system.

While it is not known if the hacker found any buyers, the BBC’s security team responded to the issue on Saturday and believes it has secured the site, according to a person familiar with the cleanup effort.

A BBC spokesman declined to discuss the incident. “We do not comment on security issues,” he said.

Reuters could not determine whether the hackers stole data or caused any damage in the attack, which compromised a server that manages an obscure password-protected website.

It was not clear how the BBC, the world’s oldest and largest broadcaster, uses that site, ftp.bbc.co.uk, though ftp systems are typically used to manage the transfer of large data files over the Internet.

The attack was first identified by Hold Security LLC, a cybersecurity firm in Milwaukee that monitors underground cyber-crime forums in search of stolen information.

The firm’s researchers observed a notorious Russian hacker known by the monikers “HASH” and “Rev0lver,” attempting to sell access to the BBC server on December 25, the company’s founder and chief information security officer, Alex Holden, told Reuters.

“HASH” sought to convince high-profile hackers that he had infiltrated the site by showing them files that could only be accessed by somebody who really controlled it, Holden said.

So far Hold Security researchers have found no evidence the conversations led to a deal or that data was stolen from the BBC, Holden said.

It is common for hackers to buy and sell access to compromised servers on underground forums.

Buyers view the access as a commodity that grants them the chance to further penetrate the victim organization. They can also use compromised servers to set up command-and-control centers for cyber-crime operations known as botnets, run spam campaigns or launch denial of service attacks to knock websites off line.

The BBC offer stands out because the media company is such a high-profile organization, Holden said. “It’s definitely a notch in someone’s belt.”

BBC has some 23,000 staff and is funded largely by license fees paid by every British household with a television.

Justin Clarke, a principal consultant for the cybersecurity firm Cylance Inc, said that while “HASH” was only offering access to an obscure ftp server, some buyers might see it as a stepping stone to more prized assets within the BBC.

“Accessing that server establishes a foothold within BBC’s network which may allow an attacker to pivot and gain further access to internal BBC resources,” he said.

Media companies, including the BBC, have repeatedly been targeted by the Syrian Electronic Army, which supports Syrian President Bashar al-Assad, and other hacker activist groups that deface websites and take over Twitter accounts.

Last January the New York Times reported that it had been repeatedly attacked over four months by Chinese hackers who obtained employees’ passwords.

 



News
Entertainment
Sports
Lifestyle
National

Actor Tracy Morgan wasn't wearing seatbelt in June…

By Jonathan Stempel(Reuters) - Actor and comedian Tracy Morgan and others in his limousine were not wearing seat belts when their vehicle was struck by…

National

Connected cars: Is AT&T leaving Verizon in its…

By Marina Lopes and Bernie WoodallWASHINGTON/DETROIT (Reuters) - Verizon Communications, the No.1 U.S. wireless carrier known for its widespread coverage, is falling behind its biggest…

Local

Grand jury begins hearing evidence in Eric Garner…

A grand jury began hearing evidence Monday relating to the death of Eric Garner while in police custody in July. Garner, 43, of Staten Island,…

Local

Mayor announces plan for solar panels at city…

Mayor Bill de Blasio announced the planned installation of 24 new solar panels at city schools on Monday morning. The panels, a $28 million investment,…

Going Out

Taste what Lower Manhattan is cooking at today's…

The Lower Manhattan food scene has changed a lot in three years, which you can taste first hand when the neighborhood's food festival returns. On…

Television

Review: 'Selfie' tries to coast on the charm…

"Selfie" offers cute leads and some good jokes, but focuses too much on a vague distaste for social media.

Movies

Review: Jason Reitman's 'Men, Women & Children' is…

Jason Reitman's "Men, Women & Children" takes a hysterical and melodramatic look at disconnection in the digital age, turning strong actors into zombies.

Television

TV watch list, Monday, Sept. 29: 'Castle,' 'Mom'…

Tune in for the season premieres of "Castle," "Mom" and "NCIS: Los Angeles."

NFL

Ryan Quigley making a big impact for Jets…

Ryan Quigley, now in his second year as the Jets punter, had an exceptional afternoon with six punts for an average of 51.7 yards per punt.

NFL

3 positives to take from Jets loss to…

The Jets suffered another loss Sunday — 24-17 to the Lions — but the reason why it hurts so much for Jets fans is that…

MLB

Joe Girardi not confident David Robertson will return…

David Robertson was as seamless as anyone could be replacing Mariano Rivera as he converted 39 saves, with a 3.08 ERA and 96 strikeouts in 64 1/3 innings.

NBA

Carmelo Anthony preaches patience with new coach, offense

While star forward Carmelo Anthony said he’s “enthusiastic” and “optimistic” for the upcoming season, he still wants everyone — from within the locker room and…

Education

How to ace your private school interview

Getting ready for a private school interview can be daunting for many, most of whom might never have been in an interview situation before. We’ve…

Education

5 questions parents should ask while visiting private…

It can be hard to know what to look for when searching for a new school for your child. Parents considering several different schools can…

Education

3 ways to save money on college application…

With the average high school student applying to 5 or 6 schools, hefty application and test score fees can add up quickly. We’ve compiled some…

Education

Nap rooms: The latest college campus trend

College is a time filled with new experiences (and lots of schoolwork), leaving little time for students to get a good night’s rest. University of…