Kaspersky Lab's Malaysian Web site hacked
Russian security company Kaspersky Lab's Web site for Malaysia was defaced on Saturday along with one of its online shopping sites, according to Zone-H, an organization that documents such attacks.
The attacker, nicknamed "m0sted," wrote that the site was compromised through SQL injection, wrote Roberto Preatoni on a Zone-H posting.
The attack involves inputting code into a form on a Web page in an attempt to get the back-end database to respond. It can enable the hacker to gain control over the Web site.
Kaspersky has since locked down the site, which is apparently running Microsoft's Internet Information Services Web server. The site is no longer open to the public and requires a user name and password for access.
Images of the hack posted on Zone-H show repeated subjects in the left-hand news section reading "hacked by m0sted and amen Kaspersky Hax0red No War." Other secondary pages were also compromised, Preatoni wrote.
Kaspersky could not be immediately reached for a comment. But Preatoni said that while the attacks appear to be just vandalism, there could be more serious risks.
Evaluation copies of Kaspersky's security software are distributed on the sites, Preatoni wrote. It might have been possible for an attacker to upload malicious software labeled as Kaspersky's software, which would dupe users into thinking the file is okay.
Zone-H has included a log of other times Kaspersky's site has been hacked. But Kaspersky isn't the only security company to have trouble keeping meddlers at bay.
In March, Trend Micro's Web site was one of tens of thousands affected by a wide-ranging attack that inserted JavaScript code to direct visitors to a malicious Web server in China. Security vendor CA's Web site was struck with similar problems in January.
IDG News Service
Symantec Backup Exec 12 and Backup Exec System Recovery 8 deliver industry leading Windows data protection and system recovery. Download this whitepaper to find out the top reasons to upgrade and how to get continuous data protection and complete system recovery.
Data and system loss — from a hard drive failure, malicious attack, natural disaster, or simple human error — can happen anytime. Don’t leave your business vulnerable. Make sure you have a secure recovery strategy in place. Symantec's latest backup and system recovery technology can efficiently restore critical applications, individual emails and documents and even restore your entire system in minutes in the event of a loss.
Businesses face a growing challenge to ensure that the IT environment is properly protected. Backup Exec 12 integrates with other applications in the Symantec family of products, to complement your current data protection strategy, keep your data securely backed up and make it recoverable when you need it most.
Enterprise 2.0 Implementation
By Aaron C. Newman, Jeremy Thomas
Published by McGraw-Hill
Learn more!
Deploying Cisco Wide Area Application Services
By Zach Seils, Joel Christner
Published by Cisco Press
Learn more!
This dispels the belief that
This dispels the belief that Kaspersky protection is 100% secure, a belief held by many people here in Uganda.Official Statement from
Official Statement from Kaspersky:Several publications have recently reported that Kaspersky Lab’s official Malaysian website, as well as its Malaysian online store, were attacked by a Turkish hacker known as "m0sted". According to the hacker’s own statement, the attack was conducted using an SQL-injection. The reports hinted at “big risks for end-users” that could be caused by the attack.
It should be stressed that both websites that were attacked are managed using third-party hosting. The sites have never been publicly accessible as they are still under construction.
Since the websites are still being developed, they haven’t yet been fully secured. Naturally appropriate security features will be implemented before the sites go live.
This situation can be compared to a thief breaking into an empty house that is still under construction and has not been yet properly secured. Breaking in is therefore an easy task, but in such cases there is nothing to steal or damage – the websites are not yet live and are not linked to other Kaspersky Lab corporate websites. It seems clear that the attacker’s only motive was to attract attention.
We therefore do not believe that this attack could harm users in any way. Additionally, it will not be possible to use this attack method once the websites have been officially launched.