Kaspersky hit with SQL injection

A group of Romanian hackers had sent a warning email to Kaspersky that an imminent attack is about to happen, and it in fact did just that, 1 hour after sending the email. The attack was a SQL injection into the company's database, but was unable to extract any real data, because the hackers were not advanced enough to.

An obviously embarrassed Kaspersky, an anti-virus and Internet security software developer, was ashamed that their web site was breached. The attack made an SQL injection on the newly launched US web site, which could ruin the company's reputation in the market of Internet security. Hackers using the SQL injection could have deleted or displayed data from the database by injecting unauthorized characters into the database.

Kaspersky has said if the hackers were more advanced, they could have stolen more than 2,500 email address with activation codes to their new products. Kaspersky is still unclear what the motives behind the attack were, and is investigating the matter.

Report a problem with article
Previous Story

Dell Launches Wasabi PZ310 ultra-mobile inkless printers

Next Story

Intel to invest $7 billion

17 Comments

Commenting is disabled on this article.

nod32 missed virus that even Avast detect. I was using ESET 4 smart security.
kaspersky is resource hog, so I switched into NAV09.

good one.

it's good to see someone keeping them on their toes. nothing beats a humbled and humiliated anti-virus developer.

looks how much good it did to symantec ...

btw, this won't stop me from renewing my kaspersky licence next month when mine expired.

Yo! Cool people using cool languages of frrrreeedom.
Cool people having complete control over their cool MySQL queries they write in their Emacs.

So cool.

RealFduch said,
Yo! Cool people using cool languages of frrrreeedom.
Cool people having complete control over their cool MySQL queries they write in their Emacs.

So cool.


wtf are you on?

The attack made an SQL injection on the newly launched US web site, which could ruin the company's reputation in the market of Internet security.

Why overreact like this? I mean, nowadays it is safe to say that no one is 100% secured against any kind of attacks.

I do agree that SQL injection attacks are avoidable.

Yeah there have, I'm pretty sure Trend Micro was hacked a few years ago as well. It happens to everyone, nothing is 100% safe.

Kaspersky is my best anti-virus/internet security for Windows, I am sure things wont be bad for Kaspersky