42 Responses to “[Hacked]Bitdefender (Portugal) exposes sensitive customer data”

1. honeybunny Says:
   February 9th, 2009 at 10:06 am

   Da nu imi pot da seama cum au pretentia sa produca sisteme de securitate daca nu sunt in stare sa isi securizeze propriile servere. Penal..

2. HackersBlog » Blog Archive » usa.kaspersky.com hacked … full database acces , sql injection Says:
   February 9th, 2009 at 11:01 am

   [...] [Hacked]Bitdefender (Portugal) exposes sensitive customer data [...]

3. andreea Says:
   February 9th, 2009 at 11:57 am

   site-ul nu apartine companiei BitDefender: http://whois.domaintools.com/bitdefender.pt

4. 2fingers Says:
   February 9th, 2009 at 12:05 pm

   Poti intra pe bitdefender.com si sa selectezi direct de la ei de pe site (la language) bitdefender.pt. E al lor.

5. Pangkalan Data Laman BitDefender Turut Di Ceroboh | aMaNz Says:
   February 9th, 2009 at 12:12 pm

   [...] Laman BitDefender Portugal Yang Di Ceroboh [via] [...]

6. TTDDOO Says:
   February 9th, 2009 at 12:15 pm

   oh my … mai inainte kaspersky si acum bit defenderu… oh noes… incredibil cum poti sa interoghezi bazele de date unor ‘giganti’ prin url, GET-uri nefiltrate… mysql_escape_string() FTW.

   Bravo.

7. andreea Says:
   February 9th, 2009 at 12:34 pm

   @2fingers pey acolo au si site-uri ale partenerilor

8. 2fingers Says:
   February 9th, 2009 at 12:51 pm

   @andreea – Acum am vazut ca e la partners.

   Totusi un mirror reprezinta compania. Un mirror cu probleme reprezinta compania intr-un mod negativ, mai ales cum e in cazul de fata. Cand esti companie de securitate si ai sigla pe un site afiliat care iti promoveaza doar produsele tale cat e de greu sa faci ii faci un minim de verificare a scripturilor?

   Partener sau nu, datele userilor tot se afla acolo iar logo-ul firmei prezent pe tot site-ul confirma penibilitatea. Acum fiecare cititor poate sa traga singur concluziile asa cum doreste.

9. dt Says:
   February 9th, 2009 at 3:16 pm

   @TTDDOO – e baza de date a site-ului, nu a gigantului. E o mica diferenta. Daca ar fi doar un site de prezentare, spargerea ar echivala cu mazgalirea unui afis pe strada. Dar din pacate de pe un site ca asta se poate (mai mult sau mai putin) descarca un software de securitate. Care daca e compromis, poate afecta utilizatorii. (Softul ca atare e greu de injectat cu virusi, pt ca pp ca e semnat digital, dar o simpla redirectare catre un alt exe e suficienta pentru un user obisnuit)

   @2fingers – decat sa stea sa verifice codul, mai bine le dadea un site gata facut la care doar sa schimbe textele. In felul asta respectau si manualul de corporate identity.

10. André Ribeiro Says:
    February 9th, 2009 at 3:38 pm

    The website that was hacked http://www.bitdefender.pt doesnt belong to BitDefender but to a Distributor in Portugal. So any atempt to descredit the brand is uselless because the damage was done to a portugueses informatic company, not to the brand. I hope this clarifies the situation.

11. Knightss Says:
    February 9th, 2009 at 5:00 pm

    Wow using AOL to hack. Real Pros!

12. Zeno Popovici Says:
    February 9th, 2009 at 5:06 pm

    Any attempt to discredit the company is NOT useless. All I see there is a big BitDefender Logo the BitDefender.pt domain (btw. BitDefender is a registered Trade Mark), they don’t sell any other products … I don’t care it’s their partners or their own site. The impact is the same.
    Imagine that someone would break into a franchise site of ING Bank (they don’t have partner sites, I’m just making a point), revealing customer data … Imagine them saying: Well … Ar … Yeah … well it’s not our site … they’re just partners.

13. Zeno Popovici Says:
    February 9th, 2009 at 5:11 pm

    Au dat jos site-ul .

    Site em manutenção!

    Prometemos ser breves.
    Pedimos desculpa pelo incómodo.

14. Caracal Says:
    February 9th, 2009 at 6:00 pm

    v`am dat mail cu asta? :-w

15. Shocker Says:
    February 9th, 2009 at 6:10 pm

    Caracal, am primit emailul tau in 7 februarie, insa unu stia deja despre vulnerabilitatea asta de mult timp, dar a asteptat ca cei de la BitDefender sa rezolve problema

16. BitDefender Now Also Hacked | My Online Security Says:
    February 9th, 2009 at 6:24 pm

    [...] http://hackersblog.org/2009/02/09/hackedbitdefender-portugal-exposes-sensitive-customer-data/ [...]

17. Caracal Says:
    February 9th, 2009 at 6:33 pm

    :-< god damn it!

18. Security Vendor susceptible to SQL Injection | N-Stalker Web Security Community Says:
    February 9th, 2009 at 10:34 pm

    [...] Update: It seems that another security vendor has fallen into the very same problem – BitDefender (Portugal’s website) seems to be affected by a similar SQL injection problem according to Hacker’s Blog. [...]

19. Vlad Says:
    February 10th, 2009 at 12:33 am

    Putin off topic, dar ati ajuns vedete internationale. http://it.slashdot.org/article.pl?sid=09/02/08/2218256&from=rss

    Check it

20. Kaspersky si BitDefender sub tratament cu injectii SQL « 0×30 0×20 0×61 0×6e 0×64 0×20 0×31 Says:
    February 10th, 2009 at 10:04 am

    [...] Postat in secu Initial a fost Kaspersky.Acum a venit randul lui BitDefender. Modus operandi? Acelasi deja desuet SQL injection. Aici sunt si screenshot-urile. [...]

21. curios Says:
    February 10th, 2009 at 5:12 pm

    Hackerii astia isi ascund ip-u cu aol? doar atat?

22. 2fingers Says:
    February 10th, 2009 at 5:18 pm

    + socks

23. Kaspersky confirms hack; unu strikes again: BitDefender’s website is hacked. | I suck at spellings | Politically Motivated (dotnet) Says:
    February 10th, 2009 at 9:41 pm

    [...] As with his last hack, unu originally posted this hack findings on HackersBlog. [...]

24. Business News Research » Kaspersky hires expert to analyze Web site hack | Security - CNET News Says:
    February 11th, 2009 at 5:38 am

    [...] the hacker site claiming credit for the breach said on Monday that it had done the same compromise on the Portuguese Web site of antivirus provider [...]

25. » Blog Archive » Kaspersky ha sido hackeada… Says:
    February 11th, 2009 at 12:32 pm

    [...] otro lado parece que Bitdefender también tiene su parte de los problemas de inyección SQL; hackersblog.org tiene varias capturas de pantalla que muestra [...]

26. Kaspersky y BitDefender Hackeadas « Says:
    February 11th, 2009 at 12:47 pm

    [...] de Bit Defender, que ha sido atacada utilizando el mismo ataque de inyeccion SQL. En el sitio web hackersblog.org se muestran capturas de pantallas del [...]

27. TecnoNew - The New Generations Of Technology » Blog Archive » Site parceiro da BitDefender é atacado por hackers Says:
    February 11th, 2009 at 6:47 pm

    [...] detalhes foram publicados no hackersblog.org, que publica informações sobre os problemas de segurança e também notifica os operadores do [...]

28. HackersBlog » Blog Archive » F-Secure.com - SQL Injection + Cross Site Scripting Says:
    February 11th, 2009 at 7:47 pm

    [...] [Hacked]Bitdefender (Portugal) exposes sensitive customer data [...]

29. نوشته های رضا در دنیای زیبای وب » Blog Archive » سریال ادامه دار ِ ضعف امنیتی “سایت های امنیتی”! Says:
    February 11th, 2009 at 11:54 pm

    [...] به همراه هزاران آدرس ایمیل در دسترس نفوذگر قرار گرفت(خبر هک شدن سایت Bitdefender – متن خبر در [...]

30. Kaspersky USA e BitDefender PT Hacked | TECNOSH Says:
    February 12th, 2009 at 4:36 am

    [...] Hack BitDefender PT Post Hack Kaspersky [...]

31. BitDefender хакнули вслед за Лабораторией Касперского | Сумы.biz Says:
    February 12th, 2009 at 12:04 pm

    [...] безопасности всех корпоративных сайтов компании. Подробнее Полная статья в Интернете: [...]

32. Next please! | IT Blog on toata.info Says:
    February 12th, 2009 at 1:30 pm

    [...] please! iodus 12 Feb, 2009 Securitate Dupa Kaspersky si BitDefender, a venit timpul si celor de la F-Secure.com… vulnerabil la SQL Injection si la atacuri de tip [...]

33. Un site partener BitDefender, atacat de hackeri « George Popescu Says:
    February 12th, 2009 at 2:50 pm

    [...] Detaliile sunt postate pe hackersblog.org, care publică informaţii despre problemele de securitate dar spune că va notifica operatorii site-ului şi nu va dezvălui informaţii sensibile. [...]

34. Not Only Kaspersky, But Also BitDefender and F-Secure Attacked Says:
    February 13th, 2009 at 2:05 pm

    [...] Kaspersky antivirus but they also attacking another antivirus company with the same technic, BitDefender Antivirus and Security Company F-Secure. Its amaze me they can attack those site in a week.., hell yeah.. [...]

35. Kaspersky & BitDefender Attacked « GamingOne [wB] Says:
    February 17th, 2009 at 11:52 pm

    [...] aqui les dejo un post que encontre en HackersBlog acerca de un ataque a KasperSky, además, hay otro post de un ataque a BitDefender Portugal, los 2 atacados via SQL Inyection; aqui les dejo los [...]

36. Site de empresa de anti-vírus é penetrado por piratas | Os Deuses devem estar Loucos Says:
    February 18th, 2009 at 8:53 am

    [...] forum@kaspersky.com e webmaster@kaspersky.com. Como não obteve qualquer resposta, decidiu então apresentar publicamente os seus [...]

37. Hacker Claims SQL Bug on Symantec Site | TechnoBlog Says:
    February 20th, 2009 at 11:19 am

    [...] a similar problem in Kaspersky Lab’s site, as well as in a partner site for security vendor BitDefender, and in the F-Secure Web [...]

38. Should I Trust You? Says:
    February 26th, 2009 at 11:22 am

    [...] against major antivirus companies. After the recent SQL injections in Kaspersky, BitDefender (here and here) and F-Secure the regular user might wonder in which company should they still [...]

39. Rob Says:
    May 1st, 2009 at 3:26 am

    You know, is sad, but rather funny that people trying to sell you items to guard you on line security can not even protect themselves.

40. Hackersblog returns ? | I rule. You definitely suck. Says:
    May 6th, 2009 at 3:23 pm

    [...] pare ca da …. echipa care a dat clasa expertilor de la Symanctec , Bitdefender si Kaspersky se reintoarce si de data asta fac recrutari. Hackersblog.org recruteaza editori [...]

41. cyrisrocks19 Says:
    July 1st, 2009 at 8:25 pm

    Hackers…
    On the note of hacking…why not become a vigilante like in the movies…ultraviolet or batman…and have some fun. You can totally DOS the illegitimate spammers/scammers like wholesaledrugspass.com or http://www.onlinepillspro.com company websites…and trash their revenue flow. If you are a hacker just learning, enjoy learning on their systems. They spammers think they are smarter than the world…a good opportunity to f$%k-up a parasite. Its like casual gaming for hackers…

    If you are really really good at hacking, find the source, get their info, distribute, hack into the spamming databases

    and add them, etc…crush the peawods. Or, write a bot, that finds any site advertising with their fake contact numbers (1(210) 888-9089) and brutalize them. Of course to do it right it would need to avoid blogs discussing spammers/scammers.Sooo many options.

    There is a time for vigilantes. It looks like hackers are the only ones with the opportunity to be a vigilante.

    Below are just a few, likely easy, spammers to take out. Most of them are probably on the same severfarm…take em out with a DOs

    and you take them all out.

    And, when you are done taking them out…sent a notice to news sites and blogs and others about your terror on spammers…would make a great read for many.

    ****Love you Hackers!*****

    SPAMMERS/SCAMMERS
    wholesaledrugspass.com
    http://www.onlinepillspro.com
    amazing-drugs.com
    pharmascop.com
    http://www.ithecanadianmeds.com
    http://www.supermedswell.com

    http://www.spamhaus.org/statistics/spammers.lasso

42. HACKED Says:
    December 7th, 2009 at 7:53 am

    Unu I NEED UR MAIL ID

Leave a Reply