-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
After 'treasure Hunt,' Hacker Releases IE Attack Code
,----[ Quote ]
| The flaw affects IE 7 and IE 8, Raff said. Security vendor Secunia said that
| the bug also affects IE 6.
`----
http://www.pcworld.com/businesscenter/article/145953/after_treasure_hunt_hacker_releases_ie_attack_code.html
SQL injection attack in 'third wave,' says IBM
,----[ Quote ]
| A SQL injection attack that has affected at least a half-million Web sites
| has entered a "third wave" that's more resistant than previous versions to
| traditional security measures, according to IBM security researchers.
`----
http://www.linuxworld.com.au/index.php?id=297184246&rid=-50
Recent:
Massive Attack: Half A Million Microsoft-Powered Sites Hit With SQL Injection
,----[ Quote ]
| A new SQL injection attack aimed at Microsoft IIS web servers has hit some
| 500,000 websites, including the United Nations, UK Government sites and the
| U.S. Department of Homeland Security. While the attack is not Microsoft's
| fault, it is unique to the company's IIS server.
`----
http://blog.wired.com/monkeybites/2008/04/microsoft-datab.html
Botnet sics zombie soldiers on gimpy websites
,----[ Quote ]
| Asprox zombies have recently been blessed with a tool that sniffs out
| potentially vulnerable sites running Microsoft's Active Server Pages and then
| tries to commandeer them using SQL injections. When infections are
| successful, the pages then redirect visitors to websites that silently
| install a malware cocktail that includes the Asprox malware. The vicious
| cycle gives the scheme worm-like capabilities.
`----
http://www.theregister.co.uk/2008/05/14/asprox_attacks_websites/
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
iD8DBQFILXxFU4xAY3RXLo4RAgWoAKCy0phHgKt2ffBie4CjEEVXCHcuLgCfT+ab
xFg2O7aIYNRL3AUZehUg2js=
=mlGo
-----END PGP SIGNATURE-----
|
|
