Unavailability of UPM websites

Who/Where: 
Users of upm.edu.ph sites
When: 
Monday, January 7, 2013 - 10:00 to Tuesday, January 8, 2013 - 06:00
Why: 
UPM's official website was hacked, causing Google and Firefox to block the entire domain (upm.edu.ph)
Account: 

The web programmer formerly contracted by IPPAO to develop and maintain the UPM's main website (or someone else hacking her account) uploaded HTML files to upm.edu.ph/upmsite, which contain malware codes generating .htaccess and PHP files used to connect to attack sites. It happened on January 6 in the morning. The IP address used to upload the malware files belonged to Japan.

It took us the whole afternoon to remediate the issue. Compromise of the web server and other hosts in the UPM network has been contained.

While Google has already lifted the suspicious status of the entire upm.edu.ph domain, we do not rest on the laurels. The IMS is more cautious, taking further necessary steps, in hardening the servers, not only the web servers but also the other network services.