[Oracle's] MySQL.com Hacked to Serve Malware

September 26, 2011

Robert McMillan, IDG News

http://www.pcworld.com/businesscenter/article/240609/mysqlcom_hacked_to_serve_malware.html

The website for the open-source MySQL database was hacked and used to serve malware to visitors Monday.

Security vendor Armorize noticed the problem at around 5 a.m. Pacific Time Monday. Hackers had installed JavaScript code that threw a variety of known browser attacks at visitors to the site, so those with out-of-date browsers or unpatched versions of Adobe Flash, Reader or Java on their Windows PCs could have been quietly infected with malicious software.

By just after 11 a.m., the issue had been cleaned up, said Wayne Huang, Armorize's CEO. He thinks the malicious code was on the site for less than a day.

[..]


main page ATTRITION feedback