Hacker Lays Claim To Breaches Of Two Security Vendors' WebsitesSQL injection attack conceded by Kaspersky U.S.; subsequent attack on BitDefender Portugal still awaiting confirmation
By Tim Wilson -DarkReadingA single Romanian hacker claims he has broken through the Website defenses of two prominent security vendors in an attempt to show vulnerabilities in their security.
Kaspersky, one of the industry's best-known antivirus and security software makers, today gave a press conference confirming that a Romanian hacker had launched an SQL injection attack on its newly implemented U.S. customer support site, exposing a potentially data-threatening vulnerability in its Website. The attacker did not publish any sensitive data, even though he could have gained access to it, Kaspersky said.The hacker, known as "unu," claims to have launched a similar SQL injection attack on the Website of security vendor BitDefender in Portugal. "It seems Kaspersky aren't the only ones who need to secure their database. Bitdefender has the same problems," unu said in an online message. As of this posting, BitDefender had not confirmed whether unu's claims were accurate.
continue reading
![Reblog this post [with Zemanta]](https://lh3.googleusercontent.com/blogger_img_proxy/AEn0k_t06zrRwonvOQ4UFy1YXCy2fFAtKNr4EUm3UrQuDcMHK6S6P-eze2Q0mbnOcibYPWgBVxVaJmRWgvTeqZJIxclo1l2Ds7wHkFVV8e4i_mG0X-oHk_Mgj-K6pADbXFy9fWull0nPAM21TlaWjNBtasI=s0-d)
