Wednesday, September 28, 2011

MySQL.com visitors infected with malicious software

MySQL.com visitors infected with malicious software

The website belonging to Oracle, MySQL database project has been
infected with the Black Hole Exploit Pack, which for its part, was
jubilant visitors malicious software for Windows. The exploit pack
looking vulnerable in the browser by including Java plug-ins, and then
installed a pest. The manipulation of the page was made ​​in the course
of yesterday's Monday reversed.

Like the criminals their malware could be introduced into the server is
not yet precisely known. Trend Micro and the blogger Brian Krebs will
however have seen in the past week, as the administrative credentials
were offered to the server from MySQL.com in a Russian underground forum
for 3000 U.S. dollars.

MySQL.com will include up to 400,000 daily visitors, so probably several
thousand users now have infected systems. How long the malware page
spread is still under investigation. Security specialist Armorize claims
to have discovered the problem by 14 clock (EST), by 20 clock had been
clean the site again. To what has it been a pest, are not Amorize.

This is the second security incident this year at MySQL. In March,
peering from a hacker access data via SQL injection.

No comments:

Post a Comment