Pages
Tags
2gb Amp Array Aspect Ratio Atom Card Reader Desktop Space Elegant Appearance E Mail Fax Modem Fnf Functionality Genuine Windows Xp Home Glossy Coating Google Hard Drive Intel Intel Chipset Low Noise Malicious Software Microsoft Windows Mobile World Msi Netbook Noise Operation Personal Computer Power Consumption Processor Chipset Relevant Products Saving Electricity Sd Mmc Share Memory Sleek Design Sms Storage Device Subscribers Tablet Computer Tariff Telenor Usb Ports Usb Sticks Vga Controller Vulnerability Wi Fi Windows XpPage added on February 9, 2009
Kaspersky denies data leak following SQL hack
Russian antivirus vendor Kaspersky Labs’s US website was hacked over the weekend, exposing the company’s customer database, but Kaspersky has denied data was compromised and says the vulnerability wasn’t critical.
An unidentified hacker reported over the weekend that he was able to access a complete profile of the company’s databases, revealing its clients’ names, activation codes, list of bugs the company tracks and client email addresses. The hacker claimed to have hacked Kaspersky Labs’s databases using an SQL injection attack, which exploits a vulnerability in an application’s database layer. The method has become a popular means to gain information via web-facing applications or as a way to use popular websites to spread malicious software. Microsoft’s UK website came under a similar attack in 2007 when hackers used an SQL injection to inject HTML code which seemingly defaced its web pages. The Kaspersky hacker, who published their finding on the Hackersblog.org website, has since said that confidential data would not be released. “[The] Kaspersky team doesn’t need to worry about us spreading their confidential stuff. Our staff will never save or keep any confidential data. We just point our fingers to big websites with security problems,” they reported. Kaspersky Labs has admitted that a subsection of its usa.kaspersky.com domain was vulnerable last Saturday when a hacker “attempted an attack on the site”. “The site was only vulnerable for a very brief period, and upon detection of the vulnerability we immediately took action to roll back the subsection of the site and the vulnerability was eliminated within 30 minutes of detection. The vulnerability wasn’t critical and no data was compromised from the site,” a spokesperson for the company said in a statement.
Source:ZDNet Australia.
RELATED STORIES
LATEST NEWS HEADLINES
- Symbian 3 Goes Open Source
- WebSite Watcher
- USB Autorun Virus Removal 2.34
- Unlimited Free Kaspersky Anti-Virus 2010 6 Months Activation Serial Key Code
- Kindle May Get Touchscreen To Battle Apple’s iPad
ALSO IN THE NEWS
Behind the China attacks on Google (FAQ)Computer attacks on corporations happen all the time, but most companies don’t publicize them. They fear damage to their reputation and they don’t want to jeopardize the investigation or reveal any information that could be used in future attacks.
Google shocked the security community on Tuesday by disclosing that it and other companies had been hit [...]
MORE STORIES
Google Search Engine Revealed- Hitachi unveils 2TB 7200 RPM drive
- Microsoft Security Essentials 1.0 Beta (Morro MSE Free Anti-Virus) Leaked Download
- ICANN hires former cybersecurity chief as new CEO
- 500GB ‘DVD’ unveiled
- Kingston Launches 128 GB USB Stick
- Malware That Survives Hard Disk Wipes Is a Reality
HAVE YOUR SAY
Asus 1000HE Netbook With 9.5 Hour Battery LifeSELECTABLE PROMOTIONAL BLOCK
Lorem ipsum dolor sit amet, consectetur adipiscing elit, dolor sit ipsum.MORE NEWS HEADLINES
Subscribe to our feed
Are we delicious?
Add us to Digg
Bookmark us
Flickr gallery