It is not just Google Pakistan that has been under attack these days, Romania has also made its place among the list when earlier today, Google, Microsoft, Yahoo, Kaspersky, & PayPal’s Romania domains were hacked and defaced by an “Algerian Hacker” MCA-CRB.
The attack could be a DNS hijacking attack” as Google denied and said it was not hacked but that someone had managed to redirect visitors to another site for Google.ro and Microsoft, Yahoo, Kaspersky & PayPal domains for Romania were also redirected by MCA-CRB hacker using same DNS Hijacking tool.
The list of hacked websites along with their mirrors:
google.ro yahoo.ro microsoft.ro paypal.ro kaspersky.ro windows.ro hotmail.ro
Meanwhile, according to the Securelist,the incident may be due to a “DNS hijacking” attack. He notes that “both domains resolve to an IP address located in the Netherlands,” at 184.108.40.206 (server1.joomlapartner.nl), “so it rather looks like a DNS poisoning attack.”
Google meanwhile says that it was not hacked.
“Google services in Romania were not hacked. For a short period, some users visiting www.google.ro and a few other web addresses were redirected to a different website. We are in contact with the organization responsible for managing domain names in Romania, according to TechChurch.
At the time of writing this article, Google.ro, Kaspersky.ro, Microsoft.ro & Yahoo.ro were resotred and working back online, while hotmail.ro and Paypal.ro were still down and showing ”Page not found” message.