[SingCERT] Defacements of .sg Websites

Published on Wednesday, 18 November 2015 14:53

[ Background ]

Recently, many .sg websites have been defaced. All of the websites are hosted on Windows 2000 Server and Windows Server 2003.

Initial investigations suggest that unpatched WebDAV vulnerability may be the cause of defacement.

[ Solution/Workaround ]

  • Review and upgrade the operating system regularly before the operating system reaches end-of-life
  • Download and install all security patches for the operating system
  • Disable WebDAV on the server if it is not required
[ Reference ]

http://unixwiz.net/techtips/ms971492-webdav-vuln.html