Language Selection

English French German Italian Portuguese Spanish

MSN site hacking went undetected for days

Filed under
Microsoft
Web

Password-stealing software planted by hackers was active on Microsoft's popular MSN Web site in South Korea for days before the world's largest software company learned about the break-in and removed the computer code.

Police investigators and Microsoft specialists are continuing to search for clues to the culprits behind this week's high-profile computer break-in. More details emerged Friday about the hacking, which targeted subscribers of an online game called "Lineage" that is popular in Asia.

Microsoft Corp. said it had cleaned the Web site, www.msn.co.kr, and removed the software code that had been planted on its news page. It said another company that operates the MSN Korea site apparently failed to apply necessary software patches, leaving its server computers vulnerable.

Security researchers at San Diego-based Websense Inc. discovered the break-in late Sunday during routine scans it makes against more than 250 million Web sites each week looking for sources of viruses and other infections.

A previous inspection by Websense of the MSN Korea site the evening of May 27 did not detect the dangerous software.

"Our alarms went off (Sunday). We noticed it was infected," said Dan Hubbard, its senior security director.

Hubbard said Websense researchers investigated further and quickly updated protective software to keep its own corporate customers safe. It did not successfully reach Microsoft officials to warn them about the break-in until midday Tuesday, a day after the Memorial Day holiday weekend.

Microsoft said it removed the password-stealing software from the MSN site hours later.

The chronology suggests the hackers could have harvested stolen passwords from visitors to the MSN site for up to three days. But their target -- passwords to game accounts -- lessened the significance of the break-in since the hacker software appeared not to collect any network or banking passwords.

The Lineage game and its successor boast more than 4 million subscribers, mostly in Asia, who pay about $15 each month, said Mike Crouch, a spokesman for the U.S. subsidiary of South Korea-based NCSoft Corp. Crouch said he was unaware of any significant increase in complaints by subscribers about stolen passwords tied to the Microsoft break-in.

South Korea is a leader in high-speed Internet users worldwide. Microsoft's MSN Web properties -- which offer news, financial advice, car- and home-buying information and more -- are among the most popular across the Web.

A Microsoft spokesman, Adam Sohn, said the company was confident its English-language Web sites were not vulnerable to the same type of attack.

Microsoft shares fell 36 cents to close at $25.43 on the Nasdaq Stock Market. They have traded in a range of $23.82 to $30.70 over the past 52 weeks.

Associated Press

More in Tux Machines

today's howtos

Leftovers: Gaming

  • Launching into Orbit
    We’re excited to announce today the release of a BioWare project that’s unlike anything we’ve done before. Over the past few months, the BioWare Online Services team has been working hard on the next-generation of our online technology platform: Orbit.
  • The Big SuperTuxKart Update Is Almost Ready
    Towards the end of last year a development version of a big new version of SuperTuxKart was released that brought a new OpenGL 3.1+ graphics engine and other improvements. The new SuperTuxKart game looks great (especially for being an open-source game) and is now closer to being officially released with now having an RC version out.
  • Humble Indie Bundle 14 Drops Torchlight 2, Outlast, and Other Awesome Games on Linux
    Following on the footsteps of the fantastic success of the previous Humble Indie Bundle initiatives, the awesome people behind Humble Bundle, Inc. have put together yet another amazing collection of cross-platform games entitled Humble Indie Bundle 14.
  • New Linux Gaming Survey For April
    The new GOL survey for April is now available, so please make sure to fill it in if you have the time.
  • Team Fortress 2 Update Brings Balancing Fixes
    Team Fortress 2 is an online multiplayer game developed by Valve and it's one of the most popular titles on Steam for Linux. A new update has been released for it, and it applies to the Linux version as well.
  • Grass Simulator Fully Released With Linux Support
    April Fools! Wait, this is real? Grass Simulator added Linux support recently, and today they have released the final version.

Android Leftovers

CentOS 7 Update and Red Hat

  • Latest CentOS 7 Update Brings Support for Intel Broadwell, AMD Hawaii, and Btrfs
    The CentOS development team, through Karanbir Singh, announced at the end of March 2015 that a new build for the stable CentOS 7 Linux operating system is available for download and update.
  • CentOS 7.1-1503 Screenshot Tour
  • Red Hat helping you (J)Boss your Big Data
    New product enhancements are designed to help enterprises get more out of their Big Data.
  • JOSE – JSON Object Signing and Encryption
    Federated Identity Management has become very widespread in past years – in addition to enterprise deployments a lot of popular web services allow users to carry their identity over multiple sites. Social networking sites especially are in a good position to drive the federated identity management, as they have both critical mass of users and the incentive to become an identity provider. As the users move away from a single device to using multiple portable devices, there is a constant pressure to make the federated identity protocols simpler (with respect to complexity), more user friendly (especially for developers) and easier to implement (on wide range of devices and platforms).