Feeds.Feedburner
U.S. Army Websites Defaced in 404 Hijacking Campaign
Ask AI about this cluster
Analyzing cluster data...
Referenced clusters:
Something went wrong. Please try again.
Cluster AI
Ask questions about this threat cluster with AI-powered analysis.
Get Researcher $29.99/moArticle Content
Multiple U.S. Army subdomains, specifically oil.army.mil and ai2c.army.mil, were defaced in a 404 hijacking campaign that displayed pro-Kurdish messages and insults towards President Trump. The attack method exploited the error-handling system of the websites, allowing unauthorized content to be shown on error pages. Cybersecurity researcher Ronald Lovelace discovered the defacements, which are believed to have originated from vulnerabilities in WordPress and Microsoft cloud infrastructure. The affected websites belong to the Army's Open Innovation Lab and Artificial Intelligence Integration Center. The Army has taken the compromised pages offline and is currently investigating the incident. While the defacement suggests a broader potential impact, it has not affected all Army websites. The Army spokesperson confirmed that the pages were hosted on a legacy third-party platform, and incident response teams are actively working on the situation.
Key Points: • U.S. Army websites oil.army.mil and ai2c.army.mil were defaced in a 404 hijacking attack. • The attack displayed messages denouncing President Trump and promoting Kurdish independence. • The Army is investigating the incident and has taken the affected pages offline.