Full Disclosure mailing list archives
Re: Redmond Magazine SQL Injected by Chinese Hacktivists
From: "Nate McFeters" <nate.mcfeters () gmail com>
Date: Sun, 18 May 2008 08:28:53 -0500
So far from what I've read I've only heard talk of this as SQL injection to update tables and put in these malicious links, but I've heard no talk of data exfiltration... Has anyone heard about data being stolen as a result of this widespread attack? Nate On 5/17/08, Stuart Dunkeld <stuartd () gmail com> wrote:
Funnily enough, I noticed this yesterday when looking for some info on Virtual Server. Google has ~ 45,000 hits for wowyeye.cn/m.js but only a small minority are marked as malicious sites.. Other pages on redmondmag.com - for example http://redmondmag.com/columns/article.asp?EditorialsID=1166&page=3 - reference www.qiqigm.com which is currently alive and attempting MDAC and RealPlayer exploits -- stuart On Fri, May 16, 2008 at 11:29 PM, Dancho Danchev <dancho.danchev () gmail com> wrote:Hello, It appears that Redmond - The Independent Voice of the Microsoft IT Community, formerly known as Microsoft Certified Professional Magazine is currently flagged as a badware site, and third-party exploit detection tools are also detecting internal pages as exploit hosting ones, in this particular case Mal/Badsrc-A. Redmond Developer News and Redmond Channel Partner Online are also affected. An analysis is available at : http://blogs.zdnet.com/security/?p=1118 Regards -- Dancho Danchev Cyber Threats Analyst/Blogger http://ddanchev.blogspot.com http://windowsecurity.com/Dancho_Danchev _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/_______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
_______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Current thread:
- Redmond Magazine SQL Injected by Chinese Hacktivists Dancho Danchev (May 17)
- Re: Redmond Magazine SQL Injected by Chinese Hacktivists Stuart Dunkeld (May 18)
- Re: Redmond Magazine SQL Injected by Chinese Hacktivists Nate McFeters (May 18)
- Re: Redmond Magazine SQL Injected by Chinese Hacktivists Stuart Dunkeld (May 18)