My company missed to extend a domain name by few days, so it went to grace period. From what I know, if it went to grace period, people would still be able to access my website. However, the site was actually showing a porn site with domain name header. My boss quickly paid the domain names and few minutes after that the website is back. This creates catastrophic situation between company and users and I should be able to explain this to the users.
After days of research, I'm unable to find what in the world why the site was showing a porn site. So here is my conclusion so far: The developer used OpenX v2.8.8 to show ads, maybe someone has hacked it using XSS or CSRF attack. The URL is still connected to our domain but with subdomain of OPENX.
My question here:
Was the site hacked?
If it was hacked, I need to know why it could be hacked?
Note: I can't disclose the site name for the sake of security.