|
| ||||||||
Subscribe through Feedburner           ArchivesRecent Comments
|
 |
You can run the following Google search to see a list of sites that had been exploited by this attack: The picture above shows the attack vectors all nicely laid out, thanks to Dynamoo’s blog for the pic! In that post, he also lists some sites affected by the exploit: www.redmondmag.com [Independent publication about Microsoft] Pretty staggering if you ask me. The sucky part about this exploit is that it would turn legitimate sites into attacking sites. These sites would start pushing javascript that would help infect these machines. US-Cert, the United States Computer Emergency Readiness Team, also chimes in about the SQL injection attacks. And here is the Internet Storm Center giving their insight into the SQL injection attacks. There’s a lot more that could be said about that attack, but I’ll relent for now. It goes to show that well crafted attacks can make legitimate sites attackers themselves. And that makes it hard for the average citizen to know how to respond. The best remedy is good security on your part. Sites are trying to do their part, but, as you can see, security is very tough to stay in front of. Related Posts:Chinese Hacked Pentagon in June My oh my. I remembered seeing a blurb about issues in the Pentagon in June. At the time,... Tornado Attack Vehicle Well, it's that time of year again - tornado season. The central plains have already seen their share of... Frame Injection Vulnerability in Firefox Secunia has issued an alert for Mozilla and firefox. The vulnerability is actually a re-introduction of a seven year... Excalibur GPS Projectile Meet Excalibur. No, not that Excalibur. But this projectile is almost as impressive as a sword that can pierce stone.... WordPress Cross Site Scripting Vulnerability Hats off to Ashish for this tip! It seems that the National Vulnerability Database is referencing a WordPress Cross... Comments |
 |
| ||||
