Tencent CDN Server Compromised by Hacker
Beijing Times, 2/10/11
Chinese online entertainment firm Tencent (0700.HK) has confirmed that one of its servers was compromised and vandalized yesterday by a hacker. The hacker exploited a Linux security hole to create a new webpage on the server that announced "This system has been seriously compromised. Administrator, please contact me to secure the security hole." The hacker claimed that his or her goal was only to provoke a discussion about the company's security, not to cause damage, but emphasized that the leak could be exploited by less scrupulous individuals to threaten users security. The hacker also claimed to have purposely selected a page with low traffic volume to avoid unnecessary attention, and added that the same method could be used to penetrate QQ.com but did not due to legal and security considerations.
A Tencent spokesperson confirmed that a webpage on a recently added server for QQ PC Manager's content distribution network (CDN) was compromised, but had no affect on users.