Wednesday, September 28, 2011

MySQL.com compromised and spreading malware




The latest story doing the rounds is that MySQL.com got hacked and was serving malware which put it on the Google malware block list.It appears to be in the clear now though and it’s accessible again via Google. It seems to be a similar case with that of the recent Linux.com and Kernel.org hacks – in which the sites were compromised via developers who had access.



In this case it seems MySQL.com was compromised by malware that spreads itself via FTP from client machines, it then uploads malicious JavaScript to any sites the client machine has access to and propagates malware using those sites.


Hackers recently compromised the website hosting the open-source MySQL database management system and caused it to infect the PCs of visitors who used unpatched browsers and plug-ins, security researchers said.
MySQL.com was infected with mwjs159, website malware that often spreads when compromised machines are used to access restricted FTP clients, a blog post from Sucuri Security reported. The hack caused people visiting the site to be redirected to a site that attempted to install malware on visitors’ computers using code from the Blackhole exploit kit, separate researchers from Armorize said.
“It exploits the visitor’s browsing platform (the browser, the browser plugins like Adobe Flash, Adobe PDF, etc, Java, …), and upon successful exploitation, permanently installs a piece of malware into the visitor’s machine, without the visitor’s knowledge,” Armorize researchers warned. “The visitor doesn’t need to click or agree to anything; simply visiting mysql.com with a vulnerable browsing platform will result in an infection.”
Officials with the Oracle-owned MySQL didn’t respond to email seeking comment for this post.

DARKLORD!!


3 comments:

  1. Your blog provides us a very great information. Its helpful to this topic for find some result.

    ReplyDelete
  2. Well, it's very good article! I recently came across your blog and read along. I thought I would write my first comment. I do not know what to say except that I have enjoyed reading. Nice blog. I'm visiting.

    ReplyDelete
  3. If potential as you increase knowledge, would you mind update your blog with additional information? It is exceptionally accommodating for me.
    social media content

    ReplyDelete