Thursday, February 12, 2009

Now is F-Secure??

Another security company, F-Secure who has the same fate as Kaspersky, was hacked today. However the hacker claimed that there was no sensitive information leaked for this time.

More information:

http://hackersblog.org/2009/02/11/f-securecom-sql-injection-cross-site-scripting/
http://www.theregister.co.uk/2009/02/11/psystart_website/

Wednesday, February 11, 2009

Kaspersky Was Hacked??

On Feb 7 2009, Kaspersky was reported to be hacked by a Romanian hacker who is known as Unu. The hacker used a simple SQL injection technique to compromise the one of the famous antivirus companies, Kaspersky. Many security sepcialists as well as the security enthusiasts have commented on this incident.

The hacker claimed that they can access all the data hacked but Kaspersky denied that. They can only know the tables and fields in the database but not the data within it. I have attached the links which are considered to be most technical discussions in regards to the security breach.

Enjoy ;)

~~x9090

Kaspersky Incident Analysis:

http://www.viruslist.com/en/weblog?weblogid=208187633

Unu's Blog (with proof of vulnerability screenshots):

http://hackersblog.org/2009/02/07/usakasperskycom-hacked-full-database-acces-sql-injection/