Linked by Thom Holwerda on Mon 26th Sep 2011 22:25 UTC, submitted by HAL2001
Privacy, Security, Encryption Well, this is embarrassing. MySQL.com has been hacked (fixed by now), and was turned into a platform serving malware to unsuspecting visitors. The criminals did this by injecting a script which redirected visitors to a website which uses the BlackHole exploit pack, which probes the browser used and serves up an appropriate exploit. Computer security blogger Brian Krebs saw root access to MySQL.com being offered for $3000 only a few days ago.
Thread beginning with comment 490904
To view parent comment, click here.
To read all comments associated with this story, please click here.
RE[2]: Comment by metalf8801
by Gullible Jones on Tue 27th Sep 2011 13:03 UTC in reply to "RE: Comment by metalf8801"
Gullible Jones
Member since:
2006-05-23

Sadly this is starting to look like the normal state of affairs. There seem to be whole categories of malware, e.g. fake antivirus trojans, that most AVs just don't detect.

Furthermore, "realtime" antivirus protection is often a joke in my experience. I've seen computers get infected straight through it with big-name antiviruses like Norton and McAfee.

I figure this is the reason Microsoft decided to implement UAC... Which would probably be quite effective, if everyone and their sister didn't turn it off!

Reply Parent Score: 3