ISS “X-Force Internet Watch” Web Site Compromised

[Free CISSP Exam Study Guide] Get expert advice that will help you pass the CISSP exam: sample questions, summaries of all 8 CISSP domains and more!

Well known defacement archive Zone-H reported that one of the Internet Security Systems’ servers has been compromised. According to the Google’s cache, the server, residing on http://xfiw.iss.net, hosted information on the “X-Force Internet Watch (XFIW)” program.

The server was compromised through a Microsoft Windows 2000 vulnerability announced in MS03-007 security bulletin in mid March 2003. The anti-war themed defacement is archived over here.