Unu Gets Kaspersky (again)

[b]Unu Gets Kaspersky (again) [/b]

Unu, a Romanian hacker (he who may enjoy the challenge of breaking into other computers but does no harm) who we’ve talked about on the site before has been busy with his fifth demonstrated SQL Injection vulnerability on the web site of a well known company in the last 30 days. This time he has again targeted Kaspersky Labs, the anti-virus vendor that he previously demonstrated web site vulnerabilities for back on February 7th of this year. The sites affected this time around are the Kaspersky Lab sites in Malaysia http://www.kaspersky.com.my and Singapore http://www.kaspersky.com.sg. On both sites it is a news section, news.php, that is vulnerable, leading to the same MySQL database backend, and exposing customer and employee access credentials as well as what appear to be activation keys for Kaspersky Internet Security 2010.

http://praetorianprefect.com/archives/2009/12/unu-gets-kaspersky-again

wow… .my/.sg. Hope he not targeting Avast.

He is like that crazy hacker guy from Golden Eye.

He is just trying to get more kudos by targeting Kaspersky a security company, however what he is targeting are the vulnerabilities in PHP and MySQL.

These vulnerabilities could just as easily be in many other companies that use PHP and MySQL, often this is down to the company using an old version of the software, which may have a vulnerability, leaving them open to exploit.

So this is little different from the mass hacking of sites that is going on all over the place, just because it is Kaspersky, makes it more news worthy. You would however, expect Kaspersky to be using the latest versions of this software on their sites, which begs the question, is this a newly discovered vulnerability in the latest versions of PHP and MySQL.