Hackers break in to BitDefender's customer database

Yet another major security vendor has had a customer database accessed by hackers.

Hackers have accessed customer details from a Portuguese partner...

Yet another major security vendor has had a customer database accessed by hackers.

Hackers have accessed customer details from a Portuguese partner site associated with BitDefender.

Last weekend, a hacker broke into Kaspersky Lab's US support website. A programming flaw left the site open to SQL injection attacks.

As a result, the hackers could have potentially accessed around 2,500 customer e-mail addresses and thousands of product activation codes.

Details of the BitDefender attack were posted on the hackersblog.org website, which reports website security gaffes.

And with the dust barely settling in the wake of the Kaspersky and BitDefender hacks, Hackersblog.org now says it has also discovered SQL injection and cross-site scripting vulnerabilities in security firm F-Secure's site.

The BitDefender hackers used SQL injection to access personal customer details and email addresses.

SQL injection involves inserting commands into web-based forms or URLs to try and steal data held in back-end databases.

BitDefender said it shut the affected site after the vulnerability was found. It says no customer financial data was exposed.

CW+

Features

Enjoy the benefits of CW+ membership, learn more and join.

Read more on IT risk management

0 comments

Oldest 

Forgot Password?

No problem! Submit your e-mail address below. We'll send you an email containing your password.

Your password has been sent to:

-ADS BY GOOGLE

SearchCIO

SearchSecurity

  • Dissecting the Hack

    In this excerpt from chapter three of Dissecting the Hack: The V3RB0TEN Network, authors Jayson E. Street, Kristin Sims and Brian...

  • Digital Identity Management

    In this excerpt of Digital Identity Management, authors Maryline Laurent and Samia Bousefrane discuss principles of biometrics ...

  • Becoming a Global Chief Security Executive Officer

    In this excerpt of Becoming a Global Chief Security Executive Officer: A How to Guide for Next Generation Security Leaders, ...

SearchNetworking

SearchDataCenter

SearchDataManagement

Close