Warning: Missing argument 2 for wpdb::prepare(), called in /home2/mithil/public_html/wp-content/themes/g_v16/includes/widget_areas.php on line 154 and defined in /home2/mithil/public_html/wp-includes/wp-db.php on line 992
MySQL.com hacked | Tech Pedias | mithil.me

Brands MySQL Logo

Published on September 27th, 2011 | by Mithil Bhatia


MySQL.com hacked

For “a short period of time”, Internet users visiting MySQL.com were redirected to malicious websites that install malware on their computers.

The main website of MySQL database, owned by Oracle Inc., was  yesterday attacked by a group of hackers for a short period of time who managed to spread malware to visitors.

The hack was done by injecting a JavaScript on the home page of MySQL.com that divert navigation to Web sites that host BlackHole exploit packs. The Website exploits the visitor’s browsing platform (the browser, the browser plugins like Adobe Flash, Adobe PDF, etc, Java, …), and upon successful exploitation, permanently installs a piece of malware into the visitor’s machine, without the visitor’s knowledge. The visitor doesn’t need to click or agree to anything; simply visiting mysql.com with a vulnerable browsing platform will result in an infection, explains Wayne Huang in his blog.

Trend Micro researchers also found evidence that the attackers were offering root access to some of the cluster servers of mysql.com and its subdomains in underground forums for $ 3,000.

The attack would have already been disabled, although Oracle has not stated officially about this attack. However, the attack has already been disabled and the site is no longer serving malware.

MySQL is an open source database management system, originally owned by an independent entity Sun Microsystems, which was acquired by Oracle in 2008.

Tags: , , , , , , , , , , , , , , , , , , , , , , , ,

About the Author

Video Game Developer, Geek and a Passionate Tech Blogger. Have fun :)

Back to Top ↑