RIAA website hacked again

By Patrick Gray

The website of the Recording Industry Association of America (RIAA), one of the most unpopular lobby groups, was defaced last week for the fifth time in a year.

The breach evidently occurred when an individual found out where the online publishing function of the riaa.org website was located, and discovered that, at the time, it did not have any authentication measures, such as a password, protecting it.

This made it possible for anyone on the internet to post content to the RIAA's press release and news sections, which after the word got out, is exactly what happened.

The RIAA subsequently introduced password protection to the online publishing area of its site.

The RIAA is well known for coming up with some fairly radical ideas about how to save the recording industry from copyright piracy perpetrated on the internet.

In October 2001 they unsuccessfully lobbied to introduce a bill that would give copyright holders the right to hack into and disable computers involved in illegal file-sharing activities, such as rogue FTP servers. They even wanted the right to delete files from targeted systems, although they later toned down their list of demands.

They have also taken an aggressive stance against peer-to-peer (P2P) file sharing networks. It was the RIAA that put Napster out of business in 2000.

The RIAA also wants legislation allowing them to run denial of service attacks against P2P networks legally, a move that has angered many online groups, including the online civil liberties group, the Electronic Frontiers Foundation (EFF).

The EFF said the proposed legislation would permit copyright owners to "...violate the law. This unprecedented power has never been granted even to law enforcement, much less to a single industry".

The RIAA's controversial stance has made them a prime target for hackers of all breeds. From script-kiddies to hardcore black hats, everyone seems to want a piece of the RIAA.

Patrick Gray writes for ZDNet Australia.