Hackers Infiltrate MySQL.com for Pushing Malware
According to a security company, the MySQL website, which caters to some highly trafficked websites with its open source cache, was under hackers' control who were delivering malicious programs onto visiting computers running the Windows operating system prior to their cleansing. Cnet News published this in news on September 26, 2011.
The security company Sucuri Security said that a Web-based malicious program named mwjs159 contaminated MySQL.com. This malware frequently disseminated whilst attackers used hijacked computers for gaining admission into confidential FTP clients. The hack resulted in the website's visitors getting diverted onto another website, which planted malware onto their PCs utilizing a BlackHole attack toolkit created code, separate investigators belonging to Armorize stated.
These investigators warned that the code exploited the web-browser, Adobe's PDF, the Adobe Flash browser plug-ins, Java etc., and once properly exploited, it silently loaded malware for good onto the visitor's computer. The infection required nothing more than the visitor to access mysql.com inside the flawed component of any browsing platform, they added. The Register published this in news on September 26, 2011.
Encouragingly, MySQL.com took prompt action towards eliminating the malware for preventing further infections; however, according to Wayne Huang, Chief Executive Officer of Armorize, he wasn't aware of the time period during when website visitors were exposed to attack alternatively the number of them that might've been contaminated. In the meantime, according to a computation by Armorize, there are over 100,000 page views daily for MySQL.com as also over 34,000 exclusive visitors everyday.
Huang further said that the above kinds of assaults tended to have a massive infection rate. Although they were tackled fast, it didn't imply that the criminals' backdoor programs that were intentionally or unintentionally left behind across the website were removed, he added. Cnet News published this in news on September 26, 2011.
Notably, MySQL.com types of popular open-source sites, during recent months, have been repeatedly attacked. During the third week of September 2011, several websites of the Linux Foundation had to be taken offline, including Linux.com and Kernel.org following a hack. Besides, the MySQL.com Internet site itself was struck formerly in 2011.
Related article: Hackers Redirect Windows Live Search to Malicious Sites
» SPAMfighter News - 04-10-2011