Hacker Infiltrates Kaspersky U.S. Databases

Kaspersky, the company behind some of the best internet security software on the market, is now having trouble defending itself.

According to hackersblog.org, an unnamed hacker gained access to part of Kaspersky's U.S. operations.

The hacker, who posted on the blog under the name "Unu", gained access to data tables contained within the company's website. While no sensitive information was leaked, the hacker did publish the names of the tables themselves. From activation codes to software bug reports to "best_buy", the assailant supposedly had access to dozens of tables worth of information.

"Kaspersky is one of the leading companies in the security and antivirus market. It seems as though they are not able to secure their own data bases," says "Unu".  [This] seems incredible but unfortunately, its true. Alter one of the parameters and you have access to EVERYTHING: users, activation codes, lists of bugs, admins, shop, etc." According to the blog, the intrusion was made possible after an alteration in the SQL code.

While the intrusion may be unsettling, Kaspersky has some light to shed on the matter. "The attack was unsuccessful and, despite their attempts, the hackers were unable to gain access to restricted information stored on the website," said the company in a press release. "As a result of the attack, a vulnerability was found in one section of the usa.kaspersky.com website. Company personnel took immediate action to address the issue, and the vulnerability was closed a short time later."

The press release also claims that reports of the attack being a success are completely untrue. While the images over on HackersBlog look real enough, there is nothing to really push this claim either way. What's most important is Kaspersky fixing the vulnerability, and that no sensitive information regarding customers has been leaked (as far as we know).