Defacement

Exploiting a vulnerability to deface or change the content of one or more webpages.

The defacement of one or more websites is achieved through security vulnerabilities in the websites concerned, which enable attackers to change the website content and design. Sometimes, such attacks are politically motivated, carried out by so-called "hacktivists" as a form of political protest.

Specific measures

In the case of a defacement, usually only the entry page is changed. Nevertheless, such an attack showns that the entire website has vulnerabilities. These can be exploited by other attackers and possibly cause far greater damage.
Identify the vulnerabilities used by the attackers. Remove the vulnerabilities and update your systems.

Preventive measures

A website must be adequately protected. This includes carrying out all updates of the server software and of the content management systems (CMS) used.
Carry out regular visual checks on the key pages of your website (homepage, start pages of main submenus).
If you notice any irregularities, arrange for them to be rectified immediately.

Effects and risks

Reputational damage
Exploiting the vulnerability for further attacks

Further Information

Our website contains guidelines on how to clean up and secure your website. The guidelines can be used irrespective of your operating system: Measures to secure content management systems (CMS)

Defacement

National Cyber Security Centre NCSC

National Cyber Security Centre NCSC

Defacement

Main Navigation

National Cyber Security Centre NCSC

Search

Breadcrumb

Defacement