What Protection! Kaspersky's Site Gets Hacked

Status
Not open for further replies.
S

shadow2get

In the zone
Source

Nothing is so hilarious as when a security vendor gets its site hacked. All right, we will admit that when ICANN was hacked that was also funny. In this case, Kaspersky, who many say (arguably) has the best security software around, had their Malaysian website hacked (yes, we probably could cut them some slack for the fact it was only their Malaysian site - nah).

“The official Malaysian Kaspersky Antivirus’s website has been hacked yesterday by a Turkish cracker going by the handle of “m0sted”. Along with it, the same cracker hacked also the official Kaspersky S.E.S. online shop and its several other subdomains. The attacker reported “patriotism” as the reason behind the attack and “SQL Injection” as the technical way the intrusion was performed.
*www.hothardware.com/newsimages/Item7295/KasperskyHack.jpg

Both websites has been home page defaced (sic) as well as several other secondary pages. The incident, though appearing a simple website defacement, might carry along big risks for end-users because from both the websites, evaluation copies of the Kaspersky Antivirus are distributed to the public. In theory, the attacker could have uploaded trojanized versions of the antivirus, infecting in this way the unaware users attempting a download from a trusted Kaspersky’s file repository (remember the trojan in the Debian file repository?).”
SQL injection again? This is the same way that the RIAA's website was wiped clean in January. At the time of this writing, kaspersky.com.my remains offline (it asks for a password).
Click to expand...
 
Cyrus_the_virus

Cyrus_the_virus

Unmountable Boot Volume
If you would realize that there are basic differences between server protection and desktop protection, then no one would come to the conclusion that you cannot buy kaspersky anymore because of this.
 
slugger

slugger

Banned
not sure why KAV should get a bad name because of this attack.

anti-virus softwares are never expected to offer protection from crackers and script kiddies
 
thewisecrab

thewisecrab

AFK
LOL
Although it is an irony that the best AV sofware company in the world had its website hacked, I dont see why KIS 2009 it will not remain No. 1 (as far as I know) as website server protection and PC protection are two totally different things just like Cyrus_the_virus said
 
Last edited:
RCuber

RCuber

The Mighty Unkel!!!
Staff member
ok some facts to be cleared here.. first of all its a SQL injection hacking .. this is due to stupid coding by the (lazy) web developer who did the site.. this way of hacking is done when a developer uses literal strings in his SQL query.. this type of hacking is platform/language independent. Fresh developers often find it easy to write literal statements than using parameters which is available in Java & .NET .. dono abt other languages..

In this technique the hacker gives a smartly crafted SQL statement as the search string or input to a text field ( which ever is available ) once he knows abt the vulnerability, all he has to do is just write SQL statements to getinto the database... no hacking tools needed.

This technique can be used to erase the whole database itself..

Please note .. this technique is independent of OS/Language used to host the website. Blame the stupid developer of the website .. not the owner of the site.
 
nitish_mythology

nitish_mythology

OSS Enthusiast!
^^Charan
Thanks for the info...
Even if the incident has nothing to do with the antivirus solution.. Its sure to get a bad name for them!
 
Status
Not open for further replies.
Top Bottom