Information Security News mailing list archives
US national vulnerability database hacked
From: InfoSec News <alerts () infosecnews org>
Date: Fri, 15 Mar 2013 03:42:02 -0500 (CDT)
http://www.theregister.co.uk/2013/03/14/us_malware_catalogue_hacked/ By Jack Clark in San Francisco The Register 14th March 2013The US government's online catalog of cyber-vulnerabilities has been taken offline – ironically, due to a software vulnerability.
The National Institute of Standards and Technology's National Vulnerability Database's (NVD) public-facing website and other services have been offline since Friday due to a malware infection on two web servers, it emerged on Wednesday.
The Register received an anonymous tip-off about the infection on Wednesday afternoon, which led us to a Google+ post containing information from NIST.
"On Friday March 8, a NIST firewall detected suspicious activity and took steps to block unusual traffic from reaching the Internet," Gail Porter of NIST's public inquiries office told a concerned chief security officer in an email, according to the post.
[...]
______________________________________________ Attend #HITB2013AMS April 8th - 11th in Amsterdam. Featuring over 42 international speakers and keynotes by Bob Lord and Edward Schwartz http://conference.hitb.org
Current thread:
- US national vulnerability database hacked InfoSec News (Mar 15)