Threatwatch

Legit software e-tailer’s site is penetrated by malware

Man-in-the-middle attack; Software vulnerability

Hackers breached the website of an undisclosed Indian-based software provider to insert malicious code capable of spawning more infiltrations across the Internet.

The legitimate company had publicized on its site that “our continuing effort to discover and increase knowledge & understanding through disciplined research enables us to deliver quality products.”

Hot for Security notes that messaging “wasn’t a huge deterrent for scammers, who managed to hack the web page, embed malware and dump a phishing folder in the script. After preparing the baits, cyber-criminals started to spread the phishing-related URLs in a spam campaign.”

ThreatWatch is a regularly updated catalog of data breaches successfully striking every sector of the globe, as reported by journalists, researchers and the victims themselves. 

sector

Technology

reported

August 22, 2013

reported by

Hot for Security

number affected

Unknown

location of breach

India

perpetrators

Criminals

location of perpetrators

Unknown

date breach occurred

Unknown

date breach detected

Summer 2013