|
It has been reported the website of MySQL has been hacked for the second time this year, as stated by ‘Naked Security Sophos' . The website hosting the open-source MySQL database management system was compromised by hackers. According to Armorize researchers, the website was used to initiate a Java exploit and upon successful exploitation, it permanently installs the malware into the visitor's machine without his knowledge. MySQL.com was infected with the malware ‘mwjs159' that spreads when compromised machines are utilized to access restricted FTP clients. Armorize Researchers further added that user interaction was not required but if a user visits MySQL.com with a vulnerable browsing platform, the machine will be infected.
Cybercriminals hacked the website of My SQL.com earlier this year by exploiting an SQL injection vulnerability after which various usernames and weak passwords leaked. Read More:
http://nakedsecurity.sophos.com/2011/09/26/mysql-com-hacked-for-second-time-in-a-year-sql-injection-to-blame/ Source:
Naked Security Sophos
http://nakedsecurity.sophos.com/2011/09/26/mysql-com-hacked-for-second-time-in-a-year-sql-injection-to-blame/
The Register
http://www.theregister.co.uk/2011/09/26/mysql_hacked/ Disclaimer
The information provided herein is on "as is" basis, without warranty of any kind.
|
