PakBugs, a hacker group from Pakistan, claims to have penetrated into PKNIC servers – the entity that manages country level domains (such as .com.pk, .pk, org.pk and others) for Pakistan – and has taken control of several domains including Jang, The News, Express and ProPakistani.
Hackers claims to have account information of 23,000 PKNIC users and their domains. They claim to have complete control over whatever is being managed by PKNIC.
PakBugs is currently in the process of redirecting major domains to their own web URLs by poisoning PKNIC DNS servers. This way — a tick that is called DNS spoofing or DNS Cache Poising — the URLs such as ProPakistani.PK are redirected to hackers’ owned page and user think the website is hacked or defaced.
This is the second time that PKNIC has been hijacked at this massive level in just few months. Earlier a Turkish hacker had redirected 284 .PK domains by penetrating into PKNIC servers and poisoning its DNS servers.
PKNIC hasn’t reacted so far. An email sent out to them is still awaiting response. Earlier they had confessed that PKNIC was hacked and had assured that all measures were taken to secure its web server.
Please note: ProPakistani may not be available to our readers today due to this PKNIC hack. Our NS (Name Servers) were changed as well, but we were able to revert our original NS back. We are taking all measures to make sure that this down time is minimized for everyone.
Following is the screen that is appearing on impacted domains: