MANILA, Philippines – An attack by the “Syrian Electronic Army” on the popular Gigya social media integration platform affected some 80 news and sports sites, including Rappler.com, Thursday evening, November 27.

@Official_SEA16 killed it today pic.twitter.com/vWfZzRhqnw

— SEAnuX 1.0 (@i_c_e4) November 27, 2014

The attack, announced on the “Syrian Electronic Army” Twitter account, notes that the Thanksgiving hack appeared to be meant for the media. It said: “Please don’t pretend #ISIS are civilians.”

Happy thanks giving, hope you didn’t miss us! The press: Please don’t pretend #ISIS are civilians. #SEA pic.twitter.com/ZXzMWbXoYp

— SyrianElectronicArmy (@Official_SEA16) November 27, 2014

Explaining the issue to its clients, Gigya CEO Patrick Salyer said in an email that there was “a breach at our domain registrar that resulted in the WHOIS record of gigya.com being modified to point to a different DNS server,” one controlled by the hackers.

Through that server, the hackers served a file with an alert claiming the site was hacked by the “Syrian Electronic Army.”

Salyer stressed that “neither Gigya’s platform nor any user, administrator or operational data has been compromised and was never at risk of being compromised. Rather, the attack only served other JavaScript files instead of those served by Gigya.”

Salyer said Gigya’s WHOIS and DNS records have been corrected.

Due to the nature of DNS operations, however, it may take some time for Gigya services to show properly for everyone around the world. New DNS settings could take up to 24 to 48 hours to propagate at its slowest rate.

This means some users of affected Gigya client sites may still see the “Syrian Electronic Army” message for that duration. 

In a separate tweet, the “Syrian Electronic Army” also noted that the hack “was harmless.”

We’re the good guys so this was harmless but just in case the bad guys copy us, use NoScript with Firefox: https://t.co/TawKevraTo #SEA

— SyrianElectronicArmy (@Official_SEA16) November 27, 2014

None of Rappler’s servers were compromised in the attack. 

If you encounter this when accessing Rappler, clearing your browser of cache and cookies may help. For any other concerns, please email desk@rappler.com. – Rappler.com