Websense warns about Lizamoon
This article over on the Websense blog is warning about a new mass sql-injection attack that they have dubbed "Lizamoon". (As that's the domain that the sql injection attack is referring people to.)
By searching for the string in Google, an estimated 226,000 sites have been attacked and defaced with this method. (We know that the numbers from Google aren't accurate, we are putting them there to display the size of the attack -- BIG.)
While I don't necessarily agree with the title of the article (implying that iTunes is infected), this attack and the Mysql attack from earlier this week are just more examples of how there isn't enough emphasis put on preventing sql injection.
-- Joel Esler | http://blog.joelesler.net | http://twitter.com/joelesler
Comments
I haven't found new domains being used, but I know they are being generated.
HackDefendr.com
Mar 31st 2011
1 decade ago
HackDefendr.com
Mar 31st 2011
1 decade ago
I've said for years now that domain registration needs to be controlled better... and this is a prime example.
joeblow
Mar 31st 2011
1 decade ago
hxxp://milapop.com/ur.php
hxxp://pop-stats.info/ur.php
hxxp://eva-marine.info/ur.php
hxxp://google-stats50.info/ur.php
hxxp://google-stats44.info/ur.php
hxxp://google-stats45.info/ur.php
hxxp://google-stats47.info/ur.php
hxxp://google-stats48.info/ur.php
hxxp://google-stats49.info/ur.php
hxxp://system-stats.info/ur.php
hxxp://stats-master88.info/ur.php
hxxp://stats-master11.info/ur.php
hxxp://stats-master111.info/ur.php
hxxp://agasi-story.info/ur.php
hxxp://social-stats.info/ur.php
hxxp://extra-service.info/ur.php
http://sol-stats.info/ur.php
nothink.org
Apr 1st 2011
1 decade ago
Trying to find a fix
Apr 2nd 2011
1 decade ago