Giuliani Security website down!
No sooner had Donald Trump, the US President-elect, announced that former New York City Mayor Rudy Giuliani would be appointed his cyber security advisor for the public sector than his credentials were ripped apart.
Not his personal credentials, he does a pretty good job of ripping them apart himself with quotes such as “Under those eight years before Obama came along, we didn’t have any successful radical Islamic terrorist attack in the United States.”
Obviously the 9/11 attacks that killed at least 2,900 people didn’t count!
Anyway, back to the point. Giuliani Security, his company, has a website that has found to be wanting, to say the least, when it comes to cybersecurity defences. Amongst the problems that the site was found to have were an expired SSL certificate, an exposed CMS admin login, an outdated version of Joomla, that is known to have SQL and XSS vulnerabilities, and an end of life version of PHP.
Maybe we shouldn’t be surprised, then, that as I write the site is currently offline and unavailable. That the site was taken down less than 24 hours after the Trump announcement, and these holes were publicised, is even less surprising as a result.
Before it went down, the Giuliani Security website said the company was a “full-service security, investigative and crisis management consulting firm,” which, “offers corporations, individuals, and governments a comprehensive range of security and crisis management services.”
It went on to state that the firm’s domestic and international experts “possess a broad range of experience in law enforcement, crisis management, life safety, intelligence gathering, internal investigations, forensic accounting, and security design and architecture.”
Of course, we don’t know at this time if the site was taken down by hackers, or hacktivists with a DDoS attack, or by Giuliani Security itself as a defence measure before any attacks could occur.
IT Security Thing wonders if the next round of Trump tweets will blame a fat bloke in a bedroom, the Russians or CNN.