US national vulnerability database hacked

[InfoSec News <alerts () infosecnews org>]

http://www.theregister.co.uk/2013/03/14/us_malware_catalogue_hacked/

By Jack Clark in San Francisco
The Register
14th March 2013

The US government's online catalog of cyber-vulnerabilities has been taken 
offline – ironically, due to a software vulnerability.

The National Institute of Standards and Technology's National Vulnerability 
Database's (NVD) public-facing website and other services have been offline 
since Friday due to a malware infection on two web servers, it emerged on 
Wednesday.

The Register received an anonymous tip-off about the infection on Wednesday 
afternoon, which led us to a Google+ post containing information from NIST.

"On Friday March 8, a NIST firewall detected suspicious activity and took steps 
to block unusual traffic from reaching the Internet," Gail Porter of NIST's 
public inquiries office told a concerned chief security officer in an email, 
according to the post.

[...]

______________________________________________
Attend #HITB2013AMS April 8th - 11th in Amsterdam.
Featuring over 42 international speakers and keynotes
by Bob Lord and Edward Schwartz http://conference.hitb.org