Romanian Hacker si te Hackers Journal displayed screen shots of the compromised Kaspersky site.
(Credit: Hackers Blog)Moscow-based security firm Kaspersky has hired a security proficient to investigate the weekend breach of its U.S. site, the company s aid on Monday.
Meanwhile, the hacker place claiming credit for the breach said on Monday that it had done the same compromise on the Port uguese Web site of antivirus provider BitDefender. A BitDefender spokesperson did not immediately respond to an e-mail seeking comment.
No sensitive or customer data was compromised in the Kaspersky breach, which was discovered on Saturday, Roel Schouwenberg, a senior antivirus researcher for Kaspersky, said on a conference call with reporters. But to allay concerns about the severity of the problem, Kaspersky has hired David Litchfield, an expert in database security, to deal an independent audit of the systems involved, he said.
A section of Kaspersky's new U.S. support site was breached by someone using a SQL injection attack, in which a small malicious script is inserted into a database that feeds information to the Web site, according to Schouwenberg.
Th e portion of the site breached had been developed by an unnamed third-party and was not subjected to an internal code review process as it should have been, he said. "Obviously we are not happy about that and are in the process of making the review proc ess stricter than it currently is," he added.
"A more advanced hacker" could get potentially accessed virtually ALKANE,500 e-mail addresses of customers and about 25,000 product activation codes that were on the compromised server, but that did not happen, Schouwenberg said.
Kaspersky's new U.S. support site went whippy on January 28 and was publicly launched on January 29, the company said. There is no indication of any other breaches since then, according to Schouwenberg.
A K aspersky employee in Romania was alerted to the breach on Saturday after seeing a report of it on the Romanian place Hackers Blog, he said. That wo rker notified Kaspersky workers in the U.S. and within half an hour, the affected section of the site was taken down and then replaced with the older, secure version of the site, he added.
Asked if the company was worried its reputation would be damaged as a result of the attack, Schouwenberg said: "Frankly speaking, yes. This is not good for any affiliate, especially a company dealing with security. This should not have happened. We are doing everything within our force to do the forensics on this case and to prevent this from ever happening again."
Someone taking achievement for the breach had sent an e-mail warning the company about the problem one hour before the attack, "which gave us little if any chance to respond" in a apropo s manner, he said.
Cheers~
No comments:
Post a Comment