F-Secure becomes third security firm website to be hacked


F-Secure becomes third security firm website to be hacked

Warwick Ashford

Hackers have reported breaches of three security firm websites this week in postings on the HackersBlog site.

In the latest name-and-shame attack, hackers used SQL injection and cross-site scripting methods to access data on a site belonging to Helsinki-based security firm F-Secure.

"Fortunately, F-Secure does not leak sensitive data, just some statistics regarding past virus activity," the posting on HackersBlog said.

As with similar attacks on the websites of security firms Kaspersky and partner BitDefender, F-Secure said the breach was limited, with no impact on customers or partners.

At the weekend, a blog posting revealed a hacker was able to breach Kasperky's US website and databases containing customer details.

Days later, another posting said, "Kaspersky are not the only ones who need to secure their database. Bitdefender has the same problems."

After the initial posting revealing vulnerabilities on Kaspersky's US website at the weekend, HackerBlog said the breach was not malicious.

"Our staff will never save or keep any confidential data, we just point our fingers to big websites with security problems," the posting said.

Email Alerts

Register now to receive ComputerWeekly.com IT-related news, guides and more, delivered to your inbox.
By submitting your personal information, you agree to receive emails regarding relevant products and special offers from TechTarget and its partners. You also agree that your personal information may be transferred and processed in the United States, and that you have read and agree to the Terms of Use and the Privacy Policy.

COMMENTS powered by Disqus  //  Commenting policy