If yous are a criminal looking for full command of the World Wide Web, used yesteryear the USA Army Communications-Electronics Command (CECOM), yous tin sack teach it for merely nether $ 500 U.S.
Or as well as hence nosotros offering secret hackers inward the forums. safety provider Imperva establish on the dark marketplace sales pitch on Th as well as published details of the incident on Friday.
Hacker says that oversees several sites, including other armed forces sites, authorities sites, as well as belong to universities, "said Noa Bar-Yosef, Imperva senior safety strategist. Prices make from $ 33 as well as $ 499, depending on how of import site or widely used. "You tin sack genuinely teach the mightiness to accept a spider web site administrator," he said.
The hacker also sells its database of personal information was stolen, sites $ xx per one one thousand records, "he said. This information could travel used yesteryear spammers or scam artists to penetrate accounts online.
Bar-Yosef saw that the administrative privileges of the xvi sites were available for sale. In i case, a hacker sells virtually 300,000 people who were on the site.
The selling these things in all probability started to these sites using a mutual Web-based assault called SQL injection, Bar-Yosef said. For years, hackers accept been exploring the Web for misspelled spider web pages, specially those alongside fields of information entry forms for query or contact the back-end database. So they crusade to sneak database commands through these pages.
With automated tools, it is slowly for pirates, fifty-fifty non-technical - known every bit "script kiddies" - to take this type of attack.
When SQL injection works, the results tin sack travel devastating. It's that famous hacker Albert Gonzalez used to teach inward concern every bit Heartland Payment Systems as well as 7-Eleven.
Imperva names of victims written inward his blog, but blogger Brian Krebs of Security has released details virtually the incident, including the names of most of the hacked sites. Includes USA states Utah as well as Michigan, the Italian Government as well as the Department of Defense Pharmacoeconomic Center, which analyzes the piece of employment of armed forces medicine as well as assistance to the Department of Veterans Affairs contracts to buy drugs.
"Amidst all the media as well as the public's fascination alongside threats Stuxnet as well as heavy concepts like" cyber state of war ", it is slowly to forget the to a greater extent than mundane as well as persistent safety threats such every bit Web site vulnerabilities," Krebs wrote on his spider web log Friday. "But none of these distractions should apologize to USA armed forces leaders to ensure that their sites are non trivially hackable yesteryear script kiddies."
News Source : Computer world
Share This :
comment 0 Comments
more_vert