A grey hat hacker has found a critical SQL injection weakness on the official Kaspersky Lab websites in Malaysia and Singapore. Exploiting the vulnerability leads to full compromise of the underlying database, which contains customer information, product keys and other sensitive data.The attack has been documented by... |
10 December 2009
10:06 GMT |
 |
|
Kaspersky Lab's online presence in Portugal has been targeted by a Romanian hacker, who used SQL injection to obtain unrestricted access to the database. According to the attacker, the website contained, at the very least, product licensing information.The self-confessed grey hacker goes by the moniker of "TinKo... |
8 December 2009
09:01 GMT |
|
|
Grey hats hacking for reputation have turned their attention to websites hosted in the nasa.gov domain name space. Websites administered by two NASA centers were compromised in the last few days through SQL injection attacks.The first two incidents involve the websites of the Instrument Systems and Technology Divisio... |
8 December 2009
05:24 GMT |
|
|
Security experts from technology website Tweakers exposed Dutch local news agency GPD for having poor database, user and password management after having accessed the latter’s database. After a 24-hour warning, Tweakers made the vulnerability public and leaked information on how to access GPD's VIP phone n... |
14 August 2009
09:03 GMT |
|
|
A white-hat hacker claims that the website of UK's National Lottery is open to SQL injection attacks that could endanger the privacy of the registered players. By exploiting an insecure parameter on a page, unauthorized access to the site's database can be obtained. The http://www.national-lottery.co.uk we... |
24 February 2009
06:24 GMT |
|
|
Following the disclosure of a flaw in a section of the Symantec website that allegedly allows for SQL injection attacks, the company has denied its existence and invoked an "inconsistent exception handling routine for language options." The Romanian hacker who disclosed the vulnerability disagrees and has released ad... |
20 February 2009
06:39 GMT |
|
|
The Romanian ethical hacking outfit HackersBlog shames yet another antivirus vendor – Symantec. A SQL injection vulnerability in a section of the Symantec website allows unauthorized access to the database. Symantec is one of the biggest IT security companies in the world, developing a wide range of products f... |
19 February 2009
03:41 GMT |
|
|
Both Kaspersky and Bitdefender antivirus vendors have been left with red faces by a Romanian hacker who obtained access to the SQL databases of two of their websites. The data stored in the databases includes customer information, e-mails, support tickets, and even activation codes. A hacker going by the nickname of... |
9 February 2009
07:13 GMT |
|
|
Find us on Google+
