The UN was defaced with a political message and hackademix has published it was via a sql injection vulnerability.
"While most of us may agree with the message, many will object to the spelling, and specifically to the dont used instead of don.t. There.s a technical reason for the missing apostrophe, though, because messing with this very character (.) is part of the technique apparently used by the attackers.
As you can easily verify by opening this URL, the site is vulnerable to an attack called SQL Injection. This is a very well known kind of vulnerability, fairly easy to avoid and very surprising to find in such a high profile web site."