I'm trying to figure out how the websites of big companies are still getting compromised and defaced. Many of the attacks don't seem that sophisticated. . . thought this community might be able to help clarify. Thanks
In general, you only need to make 1 mistake for your website to be vulnerable to what looks like a trivial hack.<p>The mistake could be anything from an insecure form input parser, through to not updating your web server to the latest update.<p>Once one hacker finds that vulnerability, it looks like it's an easy thing to do to take down or modify the side, but the finding of it can be extremely time consuming.<p>On the other side, look at who didn't go down in the recent Anonymous attacks - CBS and Universal Music went down, but Sony, EMI, Warner, etc, remained up.<p>Anonymous only had to find a couple of major relevant corporations that were vulnerable to make a big impact, it doesn't matter that the other dozens (100s?) of suitable targets were more secure.
CBS and other companies are what we call "old money".
And when it comes to things like Websites and social networks, they just don't have the mindset that they should have when it comes to it.
That said, their servers are greatly under managed, and the people working in those areas are unable to keep up because when they first started, they where still writing "the book". Also, Anon is made up of more than just bored 18 year olds (As the media greatly dramatizes.)but rather "disgruntled" and "fed up" masters who want to retaliate in any way possible.