MIUI.us, an unofficial U.S. site for a popular Android custom ROM called MIUI (pronounced Me, You, I) developed by Chinese company Xiaomi, was hacked and defaced by a hacker who goes by the nickname Federal. All of the content on the homepage as well as the main forum page, was replaced with this:

image

An email [email protected] and an auto-play audio-only version of Magma - Yanayer يناير (is that French mixed with Arabic?) can also be found on the page. The web page for cybercriminalite.ma has not been set up and offers no information about the hacker but does explain the song choice, as the .ma TLD points to Morocco where Arabic and French is spoken, among other languages. On an off-topic note, I actually dig this song quite a bit.

The ROM page as well as more direct links to the forums and news don't appear to be affected, which seems to indicate that only the index pages were hacked and modified. A cursory Google search for the phrase "welcome to the 0day" (0day refers to an attack that exploits a previously unknown vulnerability) reveals several sites that suffered the same fate, which may point to an automated hack:

image

The latest archive.org snapshot of MIUI.us is from August 5th, when the site was hack-free. miui.com, the official MIUI site, is unaffected by this hack.

Xiaomi's two flagship devices, MI-One and MI-Two, ship with MIUI as the main OS. MI-Three is expected to be released in the coming weeks and has been a subject of many leaks.

The timing of the attack is interesting, though unlikely related to yesterday's news of Hugo Barra's departure from Google for Xiaomi. If the two end up connected, I will personally track down Gabe Newell and force Half-Life 3's release date out of him.

Update: The initial version of this article incorrectly claimed that MIUI.us is operated directly by Xiaomi. This has been corrected, as the site belongs to the unofficial U.S. porting team.

Source: MIUI.us

Thanks, Justin!