Language Selection

English French German Italian Portuguese Spanish

Online stores come under attack

Filed under
Security

The move to target the databases and programs that power online shops is a significant change in tactics.

In one case, an attacker got hold of a PC maker's entire customer list and sent everyone on it a nasty note.

"It's kind of like an arms race. It's the next logical step to go after the application itself," said Rob Straight from software firm Compuware.

"There are a lot of people that spend their time and energy to think of ways to break into applications maybe for fun and maybe for profit," he said.

Businesses connected to the net, and especially those that run online shops, are used to defeating all kinds of attacks. On a daily basis they have to cope with attempts to exploit known vulnerabilities as well as viruses and worms that try to slip through security software.

Evidence for just how new this is can be seen in the latest list of the Top 20 most vulnerable programs released in early May by the Sans Institute.

For the first time this list included such things as media players, anti-virus programs, web browsers and databases.

Vulnerabilities in browsers and media players are proving popular with the malicious hackers, said Gerhard Eschelbeck, chief technology officer at security firm Qualys and a Sans contributor.

Web shops and online banks were seeing far more attempts to inject working computer code into the databases and applications behind the scenes of many websites, said Donal Casey, spokesman for Diagonal Security.

Some attackers try to enter database commands into such fields just to see what happens. In such cases "unpredictable results" could see those commands executed and a database seriously compromised, said Mr Straight.

Attackers could end up with a store's entire customer list, including credit card numbers and bank account details.

Full Story.

Also

Also some Linux websites are getting hit too.

Comment viewing options

Select your preferred way to display the comments and click "Save settings" to activate your changes.

More in Tux Machines

Android Leftovers

Lubuntu 15.04 Beta 2 Is Not Using Systemd, Nor LXQt - Screenshot Tour

Lubuntu 15.04 is the last in our screenshot tour articles related to the Final Beta a.k.a. Beta 2 of the Vivid Vervet development cycle. Lubuntu 15.04 Beta 2 offers one of the most lightweight desktop experiences and it is now powered by Ubuntu 15.04’s Linux 3.19.2 kernel. Read more Also: Xubuntu 15.04 Beta 2 Released, Offers a Neat Xfce 4.12 Experience - Screenshot Tour

What is keeping you from switching to Linux?

I'd like to make time for switching my main system but it is not there yet. What I plan to do is however use Linux on my laptop and get used to it this way. While it will take longer than a radical switch, it is the best I can do right now. Eventually though, I'd like to run all but one system on Linux and not Windows. Read more Also: Who’s Using, And Not Using, GNU/Linux Desktops

5 Surprising Reasons Behind The GNOME Resurgence

When the team behind GNOME came out with GNOME 3, which included the infamous GNOME Shell, the most popular desktop environment of the time saw a sharp decrease in users. And honestly, that trend is pretty easy to explain. When GNOME 3 initially came out, it was incomplete, buggy, and foreign. The concepts behind GNOME Shell were never before seen on a desktop system, and lots of users who were used to panels/taskbars and menus didn’t like the rather dramatic changes. Read more