Free Newsletter
Register for our Free Newsletters
Newsletter
Zones
Access Control
LeftNav
Alarms
LeftNav
Biometrics
LeftNav
Detection
LeftNav
Deutsche Zone (German Zone)
LeftNav
Education, Training and Professional Services
LeftNav
Government Programmes
LeftNav
Guarding, Equipment and Enforcement
LeftNav
Industrial Computing Security
LeftNav
IT Security
LeftNav
Physical Security
LeftNav
Surveillance
LeftNav
View All
Other Carouselweb publications
Carousel Web
Defense File
New Materials
Pro Health Zone
Pro Manufacturing Zone
Pro Security Zone
Web Lec
 
ProSecurityZone Sponsor
 
ProSecurityZone Sponsor
 
ProSecurityZone Sponsor
 
ProSecurityZone Sponsor
 
ProSecurityZone Sponsor
 
ProSecurityZone Sponsor
 
 
News

Computer Associates falls victim to web site hack.

Fortify : 08 January, 2008  (Technical Article)
Chinese malware site picks up re-routes from Computer Associates web site causing embarrassment for the US computer giant.
Parts of Computer Associates' main Web site were hacked last week, with visitors being automatically re-routed to a malware site hosted in China.

Computer Associates has not issued a report on the hack, but newswire reports suggest that parts of the press section of its Ca.com portal were rerouting visitors to the uc8010 domain, which has been hosting malware since last month.

Commenting on the embarrassing hack, Brian Chess, Fortify's founder and chief scientist, said that the attack vector appears to be similar to a site hack of the Dolphin Stadium Web portal of early last year, with Javascript routines inserted into the body of the relevant pages.

'Unconfirmed reports suggest that the press section of the Ca.com portal is hosted by a third party organisation, but this makes no difference to the visitors, who were being redirected to a malware site in China,' he said.

According to Chess, the site hack is an embarrassing incident for Computer Associates, but this kind of hack isn't just about embarrassment any more. 'Breaches like these are being perpetrated by criminals being paid to install malware on personal computers. Viruses aren't spread on floppy disks any more — the corporate website has become a leading vector for getting malicious code past the firewall. Sure it's embarrassing, but more importantly it's a perfect example of how criminals are making use of the trust people have in a brand like CA's to gain control of their computers,' he said.

Bookmark and Share
 
Home I Editor's Blog I News by Zone I News by Date I News by Category I Special Reports I Directory I Events I Advertise I Submit Your News I About Us I Guides
 
   © 2012 ProSecurityZone.com
Netgains Logo