The Recording Industry Association of America (RIAA) became one of the largest proponents of peer-to-peer file sharing and anti-copyright when hackers defaced its Web site today.
A SQL injection attack was launched from a user hyperlink on content aggregation site Reddit.com which launched a SQL query of the RIAA databases.
Users posted pro-piracy content across the Web site, including a link from the RIAA News Room to torrent hosting site ThePirateBay.org, and an image mocking copyright supporters the Motion Picture Association of America, Microsoft and Apple.
According to Reddit contributors, the RIAA was using PHP language, MySQL, RedHat and Apache.
Contributor blorg said the vulnerability was caused by a query which contained an unvalidated URL variable that allowed "millions of pointless MD5 hash computations" to be processed through MySQL.
"The SQL injection works when a sloppy programmer passes a URL variable straight into a query without validating it," they said.
The RIAA's Content Management System (CMS) could not be identified despite that blogger ThinkItOver found URL variables common to commercial software.
"I found numerous URL variables in the form ?content_selector= through Google," they said.
"A number of riaa.com URLs have that same variable, content_selector=."
The Web site was wiped clean soon after the site was hijacked at around 6AM after a hacker attached a delete statement into a SQL injection attack.
IBRS analyst James Turner said the attack was symbolic rather than harmful because the RIAA has become a high profile enforcer of IP protection.
"This is being seen by many as a case of ideologically driven hacktivism against the RIAA," Turner said.
"It represents the clash of two cultures, on the one hand you have this special interest group which has taken the protection of IP several steps too far, and on the other hand you have an Internet sub-culture which thrives on collaboration and freely exchanged information.
"Some people are saying that the RIAA had it coming because the RIAA appeared to be going out of its way to take legal action against soft targets."
The Web site remained defaced or unavailable at the time of writing.