Here is the full text of the original three posts by the hacker nick-named “Hamster”, in chronological order (as still shown on Bloglines):
hello. welcome to this blog. hope we can keep in touch through this blog~”
All members of this blog = admin, = you can change stuff around here, change the template, delete posts not your own, pls make some +ve [sic] changes to this blog, this post will be deleted soon after everyone has joined the blogging team. anyone nothing better to do please change add tagboard..or whatever...and of cos..blog...”
“Read this 1st
If you are reading this then you = blogging noob, follow instructions. go www.blogspot.com create your blogging account
check your email, look for the invitation to this blog and join as a member. once you join you can post on this blog, and edit the blog as you wish, please wait for some member with admin
privileges to change your member status from normal to admin too, meanwhile, post some **** like this.”
At the moment, the defacement – see Dirson’s screenshot – has been removed; the blog now returns a “File not found” message. If the reports are accurate, this would mean other blogs at Blogspot.com are vulnerable too (or if Google acted very fast, were vulnerable).
Update: Blogger informed me that this wasn’t a malicious hack attempt nor a bug affecting all users. Instead, it was due to the blog’s dual addresses, “code.blogger.com” and “code.blogspot.com”.
>> More posts