The official Malaysian Kaspersky Antivirus's website has been hacked yesterday by 1nd0 - Turkish cracker going by the handle of "1rf4n m3rd3ka & m0sted".
Along with it, the same cracker hacked also the official Kaspersky S.E.S. online shop and its several other subdomains.
The attacker reported "patriotism" as the reason behind the attack and "SQL Injection" as the technical way the intrusion was performed.
Both websites has been home page defaced as well as several other secondary pages. The incident, though appearing a simple website defacement, might carry along big risks for end-users because from both the websites, evaluation copies of the Kaspersky Antivirus are distributed to the public. In theory, the attacker could have uploaded trojanized versions of the antivirus, infecting in this way the unaware users attempting a download from a trusted Kaspersky's file repository (remember the trojan in the Debian file repository?).
The defacement mirror for the Kaspersky official website can be viewed here, while the defacement mirror of the Kaspersky's online shop can be viewed here.
Posts
No comments:
Post a Comment