HomeSecurity

Websense: Major SQL Injection Attack Infects over 28,000 Websites

Avatar
By Kara Reeder

V3.co.uk reports that Websense has uncovered a huge SQL attack that has infected over 28,000 legitimate Internet sites.

The attack, which Websense has dubbed LizaMoon, injects a single line of code into websites that sends the user to a well-known fake security software site at defender-uqko.in.

Some of the code has been spotted in iTunes URLs; however, Websense believes Apple’s security policies likely blocked any attack:

The way iTunes works is that it downloads RSS/XML feeds from the publisher to update the podcast and list of available episodes. We believe that these RSS/XML feeds have been compromised with the injected code. The good thing is that iTunes encodes the script tags, which means that the script doesn’t execute on the user’s computer.

 

Avatar
Kara Reeder
Previous articleAxiatel: managed IP communications for Western Europe.
Next articlePodcast: High-Definition Conferencing and the Cloud

Related Articles

Combating the Rise of Ransomware-as-a-service (RaaS)

Security
Ransomware has become a huge problem for businesses, as victims face...

Blockchain Technology Can Have a Starring Role in Cybersecurity

Security
Security through obscurity is widely frowned upon by cyber security experts. So...

Best Business & Enterprise VPNs of 2021

Security
Enterprise-class Virtual Private Networks (VPNs) can be delivered in the cloud...

Latest Articles

Follow Us On Social Media

Explore More

Enterprise Networking Planet aims to educate and assist IT administrators in building strong network infrastructures for their enterprise companies. Our contributors write about relevant and useful topics on the cutting edge of enterprise networking based on years of personal experience in the field. In 2019, IT professionals read our coverage nearly half a million times.

Latest Articles

Categories

Data CenterGuidesManagementNewsOSSecurityStandards & ProtocolsUnified Communications

Our Brands

Advertiser Disclosure: Some of the products that appear on this site are from companies from which TechnologyAdvice receives compensation. This compensation may impact how and where products appear on this site including, for example, the order in which they appear. TechnologyAdvice does not include all companies or all types of products available in the marketplace.