An image of Red Bull logo with a Hacked text.

Red Bull, the famous energy drink website is hacked by Prosox. The hacker managed to upload a hacked page with the file name “adminer.php” onto Red Bull’s 30 website subdomains.

According to the CMS script used on those 30 Red Bull’s subdomains, Drupal had been used on all hacked websites. It’s possible that the hacker Prosox may have used the latest remote code execution exploit in Drupal that was released just a few days ago to the public.

A screenshot of Red Bull website being hacked and defaced by the hacker named Prosox.
A screenshot of Red Bull website being hacked and defaced by the hacker named Prosox.

Here are the 30 Red Bull websites that are hacked by Prosox:-

  1. energydrink-au.redbull.com/adminer.php
  2. energydrink-be.redbull.com/adminer.php
  3. energydrink-tr.redbull.com/adminer.php
  4. energydrink-qa.redbull.com/adminer.php
  5. energydrink-sa.redbull.com/adminer.php
  6. energydrink-de.redbull.com/adminer.php
  7. energydrink-za.redbull.com/adminer.php
  8. energydrink-uk.redbull.com/adminer.php
  9. energydrink-es.redbull.com/adminer.php
  10. energydrink-at.redbull.com/adminer.php
  11. energydrink-mx.redbull.com/adminer.php
  12. energydrink-nz.redbull.com/adminer.php
  13. energydrink-nl.redbull.com/adminer.php
  14. energydrink-si.redbull.com/adminer.php
  15. energydrink-hk.redbull.com/adminer.php
  16. energydrink-cn.redbull.com/adminer.php
  17. energydrink-ru.redbull.com/adminer.php
  18. energydrink-tw.redbull.com/adminer.php
  19. energydrink-ro.redbull.com/adminer.php
  20. energydrink-dk.redbull.com/adminer.php
  21. energydrink-ie.redbull.com/adminer.php
  22. energydrink-no.redbull.com/adminer.php
  23. energydrink-in.redbull.com/adminer.php
  24. energydrink-hr.redbull.com/adminer.php
  25. energydrink-my.redbull.com/adminer.php
  26. energydrink-ar.redbull.com/adminer.php
  27. energydrink-us.redbull.com/adminer.php
  28. energydrink-it.redbull.com/adminer.php
  29. energydrink-jp.redbull.com/adminer.php
  30. energydrink-ca.redbull.com/adminer.php

The hacker had also archived the hack on Zone-H

Just 2 weeks ago, Prosox had hacked many celebrity YouTube channels by hacking into Vevo’s official YouTube account. The breach allowed the hackers to change titles of videos that had been watched by millions of users on YouTube. It had also forced Vevo do unpublish many YouTube videos, including the famous song named Despacito by Luis Fonsi.

As the story is still developing, we are to update this news article as soon as we get some updates from Red Bull regarding the breach.

Update:- The Red Bull website has been hacked again by another hacker claiming to be “Shade”. The hacker appears to have edited the “adminer.php” file and added a “Hacked By Shade” message.

A screenshot of Red Bull website being hacked again by a hacker named Shade.
A screenshot of Red Bull website being hacked again by a hacker named Shade.

Seems that the hackers are playing around with the Red Bull website. It’s unclear if Red Bull had saved any sensitive data on those servers. Surely, this proves that the servers are poorly secure.

Update:- Red Bull has just removed the pages uploaded by Prosox the hacker. However, it’s not known whether the Drupal vulnerability has been patched or not.

LEAVE A REPLY

Please enter your comment!
Please enter your name here