SQL Server Performance

F-Secure Joins the List of Compromised Antivirus Websites

Discussion in 'SQL Server News' started by dineshasanka, Feb 13, 2009.

  1. dineshasanka Moderator

    After previously compromising websites belonging or related to Kaspersky and Bitdefender, the Romanian hackers from the HackersBlog crew launched a new successful SQL injection attack against the website of an antivirus vendor. This time around, it was F-Secure, however, the security breach did not have the potential of disclosing sensitive information.

    In a new post published on the HackersBlog, one of the website's admins, Tocsixu, discloses a SQL injection attack against the statistics section of the website belonging to Finnish security company F-Secure. In addition to being vulnerable to SQL injection, the http://stats.f-secure.com website also allowed for code injection through cross-site scripting (XSS).
    More at http://news.softpedia.com/news/F-Se...f-Compromised-Antivirus-Websites-104337.shtml

Share This Page