Become a fan of Slashdot on Facebook

 


Forgot your password?
Close
typodupeerror
×
Oracle Security IT

Mysql.com Hacked, Made To Serve Malware 81

Posted by Soulskill from the high-profile-problems dept.
Orome1 writes "Mysql.com was compromised today, redirecting visitors to a page serving malware. Security firm Armorize detected the compromise through its website malware monitoring platform HackAlert, and has analyzed how the compromise of the site's visitors unfolded. The mysql.com website was injected with a script that generates an iFrame redirecting the visitors to a page where the BlackHole exploit pack is hosted." According to Brian Krebs, the exploit used to compromise the site was being shopped around last week for $3,000.
This discussion has been archived. No new comments can be posted.

Mysql.com Hacked, Made To Serve Malware More

Mysql.com Hacked, Made To Serve Malware

Comments Filter:

  • No user interaction (Score:3, Interesting)

    by Synerg1y ( 2169962 ) on Monday September 26, 2011 @07:00PM (#37521282)

    If the website redirects to an iframe (I thought these got phased out in like HTML4???) and tries to install malware, and there is no user interaction involved... what exactly is the browser doing?

    Being really stupid...
    http://antivirus.about.com/od/virusdescriptions/p/Blackhole-Exploit-Kit.htm [about.com]

    On that note, noscript, greasemonkey w/ script, and any addon that allows the blocking of the iframe tag should keep you safe, but then again how often do you visit mysql.com? :)

  • Re:Obligation (Score:4, Interesting)

    by Anonymous Coward on Monday September 26, 2011 @09:13PM (#37522178)

    As someone who's done ... even... gentle research. I hate to say...I resent the implication of your comment.

    It's mysql, so they aren't exactly a bunch of clowns... but the moment you tell people--you get suspicion thrown on you. If you tell them anonymously, you get *even more* suspicion thrown on you. For further examples, you need only look at the classic tuttle/centos story...
    http://www.theregister.co.uk/2006/03/24/tuttle_centos/ . Now imagine what happens if you /actually/ report a real issue.

    As somebody who feels *fortunate* to have not been investigated in the past due to no small measure of proxy use--I have to say...by asking Krebbs to disclose this, you're asking him to accept undue risk. The last time I reported a /large/ issue with a private server, the server I used was scanned within 50 minutes from IP's originating within the FBI. Sorry... fuck you all--there's no free advice given ever again.

    Quite frankly, other people's problems aren't our job. They nearly aren't our business either save when they lie and advertise they're safe and there's a client curious, or we're looking to spot something... At which point they can pony up for the advice like every other consumer in the market.

    TLDR: There is no obligation. It's at best a generous act of good will that most people really don't deserve anyway.

Slashdot Top Deals

It's a naive, domestic operating system without any breeding, but I think you'll be amused by its presumption.

Close