|
Home > News > Tags > website compromise
|
|
30
Stories about: website compromise |
|
|
Hackers managed to compromise the website of Comodo Brazil and extracted sensitive information about the company's SSL certificate customers.It seems the attack vector used in this case was SQL injection. A partial database dump was posted on pastebin.com Saturday together with information about the vulnerabilit... |
25 May 2011
00:06 GMT |
 |
|
The "Let's Hack Sony marathon" continues as hackers announced a new compromise of one of the company's websites and disclosed exploitable vulnerabilities affecting another.Hacking outfit LulzSec, which recently targeted FOX and stole the personal details of 250,000 X Factor USA auditionees, hacked into the ... |
24 May 2011
07:50 GMT |
|
|
Sony's security problems are not over and new security breaches seem to pop up every week. The latest one involves user information being leaked from the website of Sony BMG Greece.The incident was revealed over the weekend when someone publicly disclosed the stolen information of 8.385 users. However, the actua... |
23 May 2011
02:43 GMT |
|
|
The website of the English Defence League was hacked into and the details of members who donated money or bought merchandise from the group online were stolen.The English Defence League (EDL) is a radical far-right group formed in 2009 with a stated goal to stop the spread of Islamism in England, particularly extremi... |
20 December 2010
09:33 GMT |
|
|
Google has introduced a new type of search result notification that warns users about links to websites showing signs of possible compromise. The warning reads "This site may be compromised" and is different than the "This site may harm your computer" one that has existed for some years now. The latter is displayed... |
18 December 2010
04:16 GMT |
|
|
Security researchers have observed new attacks using compromised websites to create rogue online stores that sell counterfeit software and are promoted in Google.Compromised websites are a common component in many attacks, but are generally used as doorways to drive-by downloads, scareware pages or spam sites.Users l... |
14 December 2010
11:50 GMT |
|
|
An website operated by Facebook to provide information about the Open Graph protocol has been compromised and its pages were injected with malicious scripts.Facebook invented the Open Graph protocol in order to allow developers to create pages that have the same functionality as Facebook ones.The infection on the ope... |
26 October 2010
07:32 GMT |
|
|
Nine different Vodafone websites are vulnerable to cross-site scripting (XSS) vulnerabilities, while the UK one is affected by a more dangerous SQL injection flaw.XSS weaknesses were found on Vodafone.com, Vodafone.com.au, Vodafone.de, Vodafone.es, Vodafone.it , Vodafone.gr , Vodafone.ie , Vodafone.ro, Vodafone.com.t... |
30 September 2010
02:18 GMT |
|
|
Researchers from Sucuri Security, a company running a web integrity monitoring service, warn that a number of websites hosted at Go Daddy have had malicious code injected into their pages.All infected sites had base64-encoded JavaScript added to all of their PHP files. The rogue scripting decodes to a <script&#x... |
18 September 2010
09:49 GMT |
|
|
A new mass injection attack has compromised tens of thousands of websites with code that directs visitors to rogue antivirus programs.The new attack was detected and reported by security researchers from Websense, a provider of Web and email security solutions."Websense ThreatSeeker Network detected this large-scale ... |
7 September 2010
13:02 GMT |
|
|
Security researchers from Web integrity monitoring company Sucuri warn that numerous websites owned by Fox Television Stations and other sister companies have been compromised. The affected sites are used in black hat search engine optimization campaigns to push pharmacy spam. Sucuri discovered the compromised Fox w... |
14 July 2010
02:53 GMT |
|
|
A group of Argentinian hackers have managed to obtain access to the user database and administration panel of The Pirate Bay by exploiting several SQL injection vulnerabilities. The exposed data involved user names, MD5 hashed passwords, e-mail addresses and IPs. The hacker who reported the attack goes by the name o... |
8 July 2010
00:20 GMT |
|
|
Security researchers warn that multiple osCommerce websites have been compromised during the last few days. The rogue code injected into their pages attempts to infect visitors with malware served from an external domain.The compromises have been detected by Sucuri Security, a company selling Website integrity monito... |
6 July 2010
08:48 GMT |
|
|
Security researchers from web integrity monitoring services provider Sucuri warn that a new mass injection attack is targeting websites hosted at BlueHost. The company's own CEO, Matt Heaton, appears to be amongst the victims of this attack, having his blog compromised and left spreading rogueware.The rogue code... |
28 June 2010
04:48 GMT |
|
|
Thousands of websites hosted at Network Solutions have been compromised and had their index pages injected with a malicious IFrame. This appears to be a reiteration of an attack that took place over a week ago, but targeted only WordPress-powered blogs.The new mass injection attack has been reported by Sucuri Securit... |
21 April 2010
10:37 GMT |
|
|
Security researchers warn that the Fox Sports website has been compromised by unknown attackers, who injected malicious code into a custom error page. There are two separate offensive script tags, each of them created by a different infection.The page was detected by the ThreatSeeker Network system developed and oper... |
30 December 2009
10:04 GMT |
|
|
A hacker has discovered an SQL injection flaw in a website owned by Intel. According to the attacker, the vulnerability can be exploited to access sensitive information, including credit card details, stored in the underlying database.The proof of concept attack was demoed by a prominent self-confessed white hat hack... |
22 December 2009
15:01 GMT |
|
|
A Romanian grey hat hacker has disclosed a serious SQL injection vulnerability on the Wall Street Journal's CEO Council website. The research outlines serious oversights and poor security practices that can lead to full web server compromise.The Wall Street Journal (WSJ) is one of the top newspapers in the Unite... |
3 December 2009
05:59 GMT |
|
|
According to statistics released by a Web security vendor, the third quarter of 2009 was characterized by a spike in Web-based malware infections. In total, over 640,000 sites, amounting to 5.8 million web pages, were infected by 52,000 distinct threats during this period. The report was released by Dasient, a compa... |
28 October 2009
08:15 GMT |
|
|
Security researchers warn that a new injection attack has infected thousands of websites with malicious IFrames. In order to avoid detection, the rogue IFrames get their src attribute through an onload JavaScript event. The infection was first spotted by malware analysts from antivirus vendor Sophos on the website o... |
26 October 2009
10:40 GMT |
|
|
A hacker broke into the database of the UK Parliament website by exploiting an SQL injection vulnerability. The incident reveals very poor and questionable password security practices on behalf of the website administration.The security hole on parliament.uk was discovered by a Romanian greyhat hacker going by the on... |
31 August 2009
07:02 GMT |
|
|
The Apache Project's Infrastructure Team was forced to take its primary servers offline yesterday, after discovering that unknown hackers uploaded and executed malicious code on them. The attackers apparently used a stolen SSH authentication key associated with a backup account to break in. The attack started d... |
29 August 2009
04:01 GMT |
|
|
Security researchers advise that a new mass compromise attack is underway and has affected over 62,000 URLs to date. A rogue IFrame injected into the compromised Web pages loads a cocktail of exploits and malware from other domains.Web security company ScanSafe has been monitoring this new threat and advises that the... |
25 August 2009
05:52 GMT |
|
|
The official websites of at least eighteen U.S. Representatives were defaced this month by an Indonesian hacker who sprayed e-graffiti over them. The Chief Administrative Officer for the House of Representatives blames a web design company, which issued weak administrative passwords.Each Representative in the U.S. Co... |
7 August 2009
06:22 GMT |
|
|
Torrentreactor, one of the largest torrent indexers, has been compromised by unknown attackers who injected a hidden IFrame into its pages. The IFrame loads malicious code from a remote server that attempts to exploit software on visitors' computers and infect them with malware. The incident has been reported b... |
2 July 2009
06:04 GMT |
|
|
Security researchers from web security vendor Finjan report that the website of India's Institute of Remote Sensing has been compromised by hackers. An injected IFrame loads exploits from the LuckySploit attack toolkit against visitors. "Last week, we detected that another website from the Government of India &... |
30 June 2009
06:23 GMT |
|
|
Security researchers from antivirus vendor Prevx have uncovered a major security breach that affects more than 68,000 websites, including some high-profile ones. FTP credentials belonging to the likes of Amazon, Cisco, BBC, Symantec, McAfee, Monster, or even Bank of America have been found on a Zbot dumping site host... |
27 June 2009
06:32 GMT |
|
|
Security researchers from Websense warn that a new wave of web injection attacks is rapidly making thousands of victims. The new complex threat, dubbed Nine-Ball, features obfuscated code, multi-level redirection, visitor filtering and attempts to exploit multiple vulnerabilities found in popular applications. This ... |
19 June 2009
08:11 GMT |
|
|
Researchers from net security company Websense warn that a particular section of the MSN Canada website has fallen victim to hackers who injected rogue code into a page used for redirection. The code is obfuscated and loads content from a domain associated with malware distribution. The msn.ca website redirects to s... |
12 June 2009
09:01 GMT |
|
|
Researchers from Internet security vendor Websense warn of a new wave of web attacks that has resulted in 40,000 websites being compromised. The new threat injects malicious obfuscated JavaScript code, which subsequently loads and attempts to execute numerous exploits from a third-party server. According to the comp... |
3 June 2009
06:25 GMT |
|
|
ScanSafe, a global provider of SaaS Web security, has announced that the official website of multiple Grammy Award-winning artist Paul McCartney has been compromised by hackers. The cybercrooks injected a malicious hidden IFrame into the pages, which was serving multiple exploits. The incident took place shortly bef... |
9 April 2009
08:59 GMT |
|
|
The website of the Embajada de la India en España has been compromised by attackers who injected malware serving code into its pages, warn security researchers. The malicious application served contains a rootkit component, which attaches itself to the svchost.exe process. Initially reported by Ismael Valenzu... |
30 January 2009
06:07 GMT |
|
|
|
|
Find us on Google+
