HomeSecurity

Websense: Major SQL Injection Attack Infects over 28,000 Websites

Kara Reeder
By Kara Reeder

V3.co.uk reports that Websense has uncovered a huge SQL attack that has infected over 28,000 legitimate Internet sites.

The attack, which Websense has dubbed LizaMoon, injects a single line of code into websites that sends the user to a well-known fake security software site at defender-uqko.in.

Some of the code has been spotted in iTunes URLs; however, Websense believes Apple’s security policies likely blocked any attack:

The way iTunes works is that it downloads RSS/XML feeds from the publisher to update the podcast and list of available episodes. We believe that these RSS/XML feeds have been compromised with the injected code. The good thing is that iTunes encodes the script tags, which means that the script doesn’t execute on the user’s computer.

 

Kara Reeder
Kara Reeder
Previous article
Axiatel: managed IP communications for Western Europe.
Next article
Podcast: High-Definition Conferencing and the Cloud

Related Articles

7 Most Common Types of Ransomware, With Examples

Security
There are many different types of ransomware. Here are the most common types you should know to protect your business.

What Is a Stateful-Inspection Firewall? Are They Right for You?

Security
Stateful-inspection firewalls are a critical component of network security. Learn how they work and why they are important.

What Is an Application-Level Gateway? How ALGs Work

Security
An application-level gateway (ALG) is a type of firewall that filters traffic at the application layer of the OSI model. Here’s how they work—and how they can benefit your organization.

Latest Articles

Follow Us On Social Media

Explore More

Enterprise Networking Planet aims to educate and assist IT administrators in building strong network infrastructures for their enterprise companies. Enterprise Networking Planet contributors write about relevant and useful topics on the cutting edge of enterprise networking based on years of personal experience in the field.

Advertisers

Advertise with TechnologyAdvice on Enterprise Networking Planet and our other IT-focused platforms.

Advertise with Us

Menu

Our Brands

Property of TechnologyAdvice.
© 2022 TechnologyAdvice. All Rights Reserved

Advertiser Disclosure: Some of the products that appear on this site are from companies from which TechnologyAdvice receives compensation. This compensation may impact how and where products appear on this site including, for example, the order in which they appear. TechnologyAdvice does not include all companies or all types of products available in the marketplace.