IT News & Technology update

Provide comprehensive update related to Computer, technology, software, anti virus and another electric device

SQL injection used against Microsoft UK site

Written by IT News on 1:08 AM

Microsoft's UK site was hacked last week by SQL injection, a situation first reported by Zone-h. The attack consisted of inserting a rogue page with with three images, among them a boy waving a Saudi Arabian flag. Also on the page: a claim of responsibility from "rEmOtEr." Microsoft says it is investigating the incident but no real harm was done. Netcraft says the hacked site is running IIS 6.0 on Windows Server 2003. Apparently the UK site wasn't part of the switch to Windows Server 2008 and IIS 7.

Zone-h said after the attack that rEmOtEr posted a video "which shows some proof of concepts related to SQL Injection flaws." Although the video has been taken down from its original posting spot, it apparently has found a new home on YouTube, although it's anyone's guess if it's the same video. The video supposedly shows rEmOtEr "playing with sql injections to retrieve usernames, passwords" from the UK site, but I'm not sure my eyes could make that out.

Related Posts by Categories

Widget by Hoctro | Jack Book
  1. 0 comments: Responses to “ SQL injection used against Microsoft UK site ”

Search This Blog

Ads and Sponsored by:

Want to subscribe?

Subscribe in a reader.