also @ TechSpot: Rumor: AMD "Piledriver" FX CPU production to begin Q3 2012

Kaspersky download site hacked, redirected users to fake AV

By

On October 20, 2010, 1:37 PM EST

kaspers
Russian-based Kaspersky recently fell victim to the cyber criminals it tries to protect users against. The security firm, known for its solid anti-virus software, had its website compromised by hackers. As a result, users trying to download Kaspersky's software were instead redirected to a malicious website which encouraged them to download fake antivirus software. Kaspersky users complained on the company's forum, though the company at first denied there had been any problems.

Kaspersky eventually confirmed an attack had hit the site on Sunday, exploiting a vulnerability in a third party app used for the website's administration. The company claimed the redirection to the fake antivirus only lasted three and a half hours, and 10 minutes after the company was notified, the affected server was taken offline.

"Currently the server is secure and fully back online, and Kaspersky products are available for download," Kaspersky told IT PRO. "Kaspersky Lab also wants to confirm that no individual's details were compromised from the company's web servers during this attack. Kaspersky Lab takes any attempt to compromise its security seriously. Our researchers are currently working on identifying any possible consequences of the attack for affected users, and are available to provide help to remove the fake antivirus software."

Related Stories

18 comments

User Comments (18)

Post a comment
treeski
on October 20, 2010
1:57 PM

That's... kind of funny... but mostly just messed up. A security firm should be the last to get successfully hacked

Reply

Kibaruk
on October 20, 2010
2:00 PM

Third party software or not, still the bad juju for them.

Reply

HaMsTeYr
on October 20, 2010
2:03 PM

Wow. I'm using Kaspersky PURE atm... thats going to be a hit on their rep for consumers everywhere.

Reply

Guest
on October 20, 2010
2:04 PM

Maybe Kaspersky did it to themselves and then provide the solution ~sarcastic comment

Reply

lawfer
on October 20, 2010
2:10 PM

Lol, life doesn't get any more ironic than this.

Reply

TomSEA
on October 20, 2010
2:50 PM

Oops - that's pretty embarrassing for them. Wonder who they ticked off?

Reply

NeoFlux
on October 20, 2010
2:54 PM

Worst thing is not that they got hacked. Worst thing is that they deny it.

Reply

Guest
on October 20, 2010
2:56 PM

They should have used Avira to protect their site.

:P

Reply

license27kill
on October 20, 2010
2:56 PM

it's funny NOD32 has to bring this up.. lol.. lmao

Reply

PanicX
on October 20, 2010
3:16 PM

The value of intrusion detection for a security firm should now be obvious to them. Waiting to have a compromised server reported to them by end users is really not the best approach.

Reply

JMMD
on October 20, 2010
4:22 PM

Happens to many, many sites and there are tons more than are vulnerable. People really need to start taking this stuff seriously.

Reply

Guest
on October 20, 2010
4:48 PM

I prefer my malware shaken not stirred. From Russia with love. Udachi.

Reply

Guest
on October 20, 2010
9:10 PM

Kaspersky challenge hackers with their software which is obvious why they are targeted by them. Just because other sites dont get hacked, like NOD32 or Avira - it doesn't mean they have better security.

I'm sure they will learn from this attack and fix the hole. No one can guarantee you 100% hacker proof since hacking is evolving everyday.

Reply

Guest
on October 21, 2010
4:59 AM

**** Kaspersky, I am shifting to AVG free antivirus. I spend 10minutes every month to find a working KEY for KAS, and they can't even protect themselves, what will they protect me. AVG here i come

Reply

Guest
on October 21, 2010
7:01 AM

Are you sure it wasn't on Monday? That's the day my Malwarebytes software kept picking up attempts to connect to bogus addresses and yes, it kept happening for 3 or 4 hours. Malwarebytes is almost always totally inactive so I was wondering what was going on.

Reply

Ahmed90
on October 21, 2010
7:13 AM

web site hacking have nothing to do with how strong there AV

its a totally different system web server and web pages and applications

not windows viruses and malwares

even Microsoft got attacked sometimes and got a viruses waves attacked them

Reply

Benny26
on October 21, 2010
7:23 AM

lol.. Gotta love ironey.

Reply

Guest
on October 21, 2010
2:25 PM

http://www.bleepingcomputer.com/virus-removal/remove-tdss-t
l3-alureon-rootkit-using-tdsskiller

they pissed off the guys that created this ^ virus.

Reply

Browse more commented news

Post a new comment

Guest user

To post as an anonymous
user click here.

Members

If you are a TechSpot member,
please login first.


By signing up you gain complete access to the TechSpot community. Join thousands of computer and technology enthusiasts that contribute and share knowledge in our forum. Post messages, get a private inbox, upload your own photo gallery and more.

Most Popular

Trending Featured
More Trending Topics

Editors' Keyboard Picks

Downloads & Drivers

Downloads   Drivers  

GMABooster 2.1a

HaoZip 2.8

Defraggler 2.10.413

The Cleaner 2012 8.1.0.1110

WinISO 6.2.0.4526

More Downloads

Related Discussion

My PC has high CPU loads a few times every couple minutes

AVG 2012

Installing Windows or repairing without CD-ROM

Set back to factory settings

Effective Air Cooling Guide (Part II) - Myths, Old Rituals, and Analysis

More at the Forums

Subscribe to TechSpot

Get free exclusive content, learn about new features and tech breaking news.