From Larry Seltzer's Blog on PC Mag:
Hackers redirected portions of the BarackObama.com web site to HillaryClinton.com, according to several reports.
It's amazing more of this sort of thing hasn't happened already, especially since web-based donations are more important than ever to the campaigns. Four years ago Security Watch reported on a phishing e-mail that asked for donations to the John Kerry campaign.
The Obama hack used a cross-site scripting flaw in the site to redirect users from Obama's Community Blogs section to HillaryClinton.com. XSS bugs are getting far more attention lately than they had been in the past, perhaps because they are so widespread. And since the answer to them is good programming practices rather than running some security product, they can be difficult to snuff out.
http://blogs.pcmag.com/securitywatch/20 ... eve_in.php