Slashdot Mirror

← Back to Stories (view on slashdot.org)

Korean MSN Site Hacked

Posted by ryuzaki0 on from the open-for-rooting dept.

An anonymous reader writes "CNN is reporting that MSN's Korean website was hacked in order to allow usernames and passwords to be stolen. Microsoft is initially blaming unpatched, outsourced servers. Just another embarrassment to Microsoft's security push."

6 of 305 comments (clear)

  1. Re:Imagine my surprise! by NanoGator · · Score: 2, Informative

    "Yet another security issue related to microsoft."

    Actually, it was related to a patch not getting installed. (Pilot error.)

    --
    "Derp de derp."
  2. Moral of the story? by Scorillo47 · · Score: 2, Informative

    >>> The Korean site, unlike U.S. versions, was operated by another company, which Microsoft did not identify. Microsoft's own experts and Korean police were investigating, but Microsoft believes the computers were vulnerable because operators failed to apply necessary software patches, said Sohn, an MSN director.

    Don't trust other companies to apply security patches for your site.

    --
    Don't try to use the force. Do or do not, there is no try.
  3. Re:Mirror? by numatrix · · Score: 4, Informative

    It wasn't an overt defacement; very small iframe at the bottom of the main page that pointed to a seperate file on the same server. That file contained an tag with a src url of some other file in the same directory ending in .gif.

    Of course that file wasn't actually a .gif obviously, but was a collection of IE client-side exploits to try to load a particular bit of malware.

    A quick google for that malware shows the other chinese sites that I found (hey, I think that's officially the first time I've made cnn). One was discussing it, the other appeared to be (intentionally or otherwise) loading it.

  4. Re:Please get some journalistic integrity... by shift.red.avni · · Score: 2, Informative

    Here is a list of appoximately 325 Linux based web sites that were defaced today.

    http://www.zone-h.org/en/defacements/filter/filter _system=Linux/filter_date_select=today/page=1/

  5. Statistics! by flithm · · Score: 2, Informative

    You're forgetting that you can't just compare raw numbers like that.

    Apache runs a lot more web servers than IIS. Despite BSD being way more secure than Linux it is also used much less frequently.

    Statistics like these are probably the most useless in determining security in terms of safety. I can't say for certain, but more than anything they probably say more about the commonality of the respective programs and operating systems.

    Especially when looking at most of these "hacks" they are really just web site defacements, most of which don't count against specific operating systems or web servers.

    A lot of attacks like those are done by taking advantage of holes in web software, ie SQL injections, or exploiting other flaws in script logic.

    Oh well... I'm wasting my time.

  6. Re:Imagine my surprise! by Aphrika · · Score: 2, Informative

    From the linked article, it's also important to note that "The Korean site, unlike U.S. versions, was operated by another company". So the pilot wasn't even Microsoft.

    This wasn't mentioned by the story poster at all, which probably wouldn't have been accepted if it read - more truthfully - Unpatch Microsoft Web Server Compromised. We all know that an unpatched MS server is vulnerable. With that in mind, it just reads like well-crafted front page FUD.