Weekend “fun” with the vulnerable RIAA web site
Over the weekend many Internet surfers had the chance to witness an online “play” with Recording Industry Association of America (RIAA) web site. It looks like the situation started when someone found an SQL injection vulnerability that generated a very slow query. The link was placed on a popular Reddit service, so people started massively visiting the “slow-down” link which caused the web site practically to stop responding.
As it turns out, when it started working once again, new vulnerabilities were found, so RIAA web site started linking The Pirate Bay (as pictured below) and at one moment all of the database data on their web site just went “offline”.
For more ifnormation on the vulnerable URls used, do visit Reddit’s search result page for RIAA.