RIAA website hit by concerted attack

A seemingly harmless link posted on Social News Website Reddit is to blame for a manoeuvre that caused the website of RIAA (Recording Industry Association of America), the pirates' nemesis, to go berserk.

According to TorrentFreak, someone posted a masked URL which linked to a really slow SQL Query and "discouraged" viewers to click on it, saying "Don't click it; that would be wrong."

This generated a torrent of clicks which caused the RIAA site to come to a halt, especially as thousands Digg users also joined Reddit.

However, a Reddit user pushed things even further and deleted and modified content on RIAA's website before the original content was restored shortly afterwards.

RIAA's vulnerability was apparently caused by the fact that the site is not protected against SQL injections which exploit security vulnerability occurring in the database layer of an application.

Last year, Nokia, Microsoft and the United Nations websites had their front page defaced by SQL injection.