Apple.com Hacked By Mass SQL Injections

A hack attack that can expose users to malware exploits has infected
more than 1 million webpages, at least two of which belong to Apple. The SQL injection attacks bombard the websites of legitimate
companies with database commands that attempt to add hidden links that
lead to malware exploits. Read the full article. [The Register]

A hack attack that can expose users to malware exploits has infected
more than 1 million webpages, at least two of which belong to Apple. The SQL injection attacks bombard the websites of legitimate
companies with database commands that attempt to add hidden links that
lead to malware exploits. Read the full article. [The Register]

Suggested articles

election security disinformation video

Cybercriminals Step Up Their Game Ahead of U.S. Elections

Ahead of the November U.S. elections, cybercriminals are stepping up their offensive in both attacks against security infrastructure and disinformation campaigns – but this time, social media giants, the government and citizens are more prepared.

Discussion

  • Hubert on

    If apple.com had been vulnerable to this, you would expect to find lots of pages that had been injected.

    The fact that there is only a single instance of this in the Google cache suggests to me that another website (perhaps the CMS of the podcast author) was injected and this was then automatically synced to the iTunes store.

    This seems much more likely than Apple.com being vulnerable to this - I'd be willing to bet they don't run MS SQL server either, which is the only thing this worm will work on.

Subscribe to our newsletter, Threatpost Today!

Get the latest breaking news delivered daily to your inbox.