Kaspersky download site hacked, redirected users to fake AV

[Emil]

Russian-based Kaspersky recently fell victim to the cyber criminals it tries to protect users against. The security firm, known for its solid anti-virus software, had its website compromised by hackers. As a result, users trying to download Kaspersky's software were instead redirected to a malicious website which encouraged them to download fake antivirus software. Kaspersky users complained on the company's forum, though the company at first denied there had been any problems.

Kaspersky eventually confirmed an attack had hit the site on Sunday, exploiting a vulnerability in a third party app used for the website's administration. The company claimed the redirection to the fake antivirus only lasted three and a half hours, and 10 minutes after the company was notified, the affected server was taken offline.

"Currently the server is secure and fully back online, and Kaspersky products are available for download," Kaspersky told IT PRO. "Kaspersky Lab also wants to confirm that no individual's details were compromised from the company's web servers during this attack. Kaspersky Lab takes any attempt to compromise its security seriously. Our researchers are currently working on identifying any possible consequences of the attack for affected users, and are available to provide help to remove the fake antivirus software."

Permalink to story.

https://www.techspot.com/news/40757-kaspersky-download-site-hacked-redirected-users-to-fake-av.html

 

[treeski]

That's... kind of funny... but mostly just messed up. A security firm should be the last to get successfully hacked

 

[Kibaruk]

Third party software or not, still the bad juju for them.

 

[HaMsTeYr]

Wow. I'm using Kaspersky PURE atm... thats going to be a hit on their rep for consumers everywhere.

 

[Guest]

Maybe Kaspersky did it to themselves and then provide the solution ~sarcastic comment

 

[lawfer]

Lol, life doesn't get any more ironic than this.

 

[TomSEA]

Oops - that's pretty embarrassing for them. Wonder who they ticked off?

 

[NeoFlux]

Worst thing is not that they got hacked. Worst thing is that they deny it.

 

[Guest]

They should have used Avira to protect their site.

 

[license27kill]

it's funny NOD32 has to bring this up.. lol.. lmao

 

[PanicX]

The value of intrusion detection for a security firm should now be obvious to them. Waiting to have a compromised server reported to them by end users is really not the best approach.

 

[JMMD]

Happens to many, many sites and there are tons more than are vulnerable. People really need to start taking this stuff seriously.

 

[Guest]

I prefer my malware shaken not stirred. From Russia with love. Udachi.

 

[Guest]

Kaspersky challenge hackers with their software which is obvious why they are targeted by them. Just because other sites dont get hacked, like NOD32 or Avira - it doesn't mean they have better security.

I'm sure they will learn from this attack and fix the hole. No one can guarantee you 100% hacker proof since hacking is evolving everyday.

 

[Guest]

**** Kaspersky, I am shifting to AVG free antivirus. I spend 10minutes every month to find a working KEY for KAS, and they can't even protect themselves, what will they protect me. AVG here i come

 

[Guest]

Are you sure it wasn't on Monday? That's the day my Malwarebytes software kept picking up attempts to connect to bogus addresses and yes, it kept happening for 3 or 4 hours. Malwarebytes is almost always totally inactive so I was wondering what was going on.

 

[Ahmed90]

web site hacking have nothing to do with how strong there AV

its a totally different system web server and web pages and applications

not windows viruses and malwares

even Microsoft got attacked sometimes and got a viruses waves attacked them

 

[Benny26]

lol.. Gotta love ironey.

 

[Guest]

http://www.bleepingcomputer.com/virus-removal/remove-tdss-tdl3-alureon-rootkit-using-tdsskiller

they pissed off the guys that created this ^ virus.