Tech

MSNBC Turkish site caught serving malware

Websense is reporting that MSNBC's Turkish site was caught in a mass defacement hacker attack that redirected readers to exploit servers hosted in China.

Written by Ryan Naraine, Contributor Nov. 7, 2007 at 9:13 a.m. PT

Websense is reporting that MSNBC's Turkish site was caught in a mass defacement hacker attack that redirected readers to exploit servers hosted in China.

From a Websense alert:

At the time of this writing, the site was infected with malicious code designed to infect the site's visitors through the use of an external JavaScript file. The file contained the malicious JavaScript code that was hosted in China.

Visitors to the Web site were infected with an exploit code tailored to their browser. Assuming that the visitors were vulnerable, password stealing code was installed and executed on their desktops, without requiring any user intervention...

This is a Microsoft site, hosted by a partner. We are actively working with Microsoft's security personnel to fix the issue.

MSNBC Turkish site serving drive-by malware

The SANS Internet Storm Center is reporting that the infection occurred via SQL injection.

From my checks, it appears that the MSNBC Turkish site is now clean and the Chinese exploit server is down.

Editorial standards

Show Comments

Can Meta AI code? I tested it against Llama, Gemini and ChatGPT - it wasn't even close

Move over, Alexa and Homekit: A new Assistant is here to open-source your smart home

MSNBC Turkish site caught serving malware

Related

Can Meta AI code? I tested it against Llama, Gemini and ChatGPT - it wasn't even close

Move over, Alexa and Homekit: A new Assistant is here to open-source your smart home

The best free AI courses (and whether AI 'micro-degrees' and certificates are worth it)