Nokia’s Developer Forum Suffers Data Hack
Nokia, which recently discovered an assault leading to the compromise of its members' information, has presently stopped running its Internet site that served as a developer forum, thus published The Wall Street Journal in news on August 29, 2011.
Explaining the assault, the telecom giant from Finland said that cyber-criminals abused an SQL-injection flaw within an application the developer forum website of Nokia used so they could gain admission into databases of subscribers' birth dates, e-mail ids, and usernames related to their MSN, ICQ, AIM, Yahoo and Skype accounts.
Notably, SQL assaults represent one ordinary technique for breaching website safety. In these, cyber-crooks characteristically aim at the displayed web-page for logging in on the computer screen, while create a confusion inside it via the insertion of malware that's difficult to eliminate.
Significantly, the hacker who defaced the Nokia website gave his name as "pr0tect0r" a.k.a. "mrNRG." Through manipulation, he diverted it onto another page that displayed certain message summoning Nokia to apply security fixes so its flaws could be patched else the company would become one more prey of the anti-security movement.
The message as well indicated that the attack should be regarded as a pre-warning notice for one broader scam under the movement, however, it didn't waive off the non-involvement of AntiSec hackers.
Nokia revealed that at first it thought the records of merely few members of the website had been illegitimately reached, however, with additional investigation it became evident that they were for quite a large number. BBC published this on August 29, 2011.
In any case, the de-linking of the forum site from the Internet hardly consoles subscribers who've been affected with the security infringement for, they could be subjected to spam, malware, or phishing attacks.
Furthermore, as per security specialists, Nokia's assault simply counts as another among the series of online assaults, recently, which targeted organizations of high-profile nature. Electronic giant Sony encountered several awkward assaults, one of them hitting its PlayStation, which caused the non-availability of the game for long as also the compromise of a maximum of 77m end-users' records during a massive data hack ever recorded.
Related article: NZ Researcher Uncovers Hacking Techniques Against Vista
» SPAMfighter News - 08-09-2011