Kaspersky WebSite Database Breached.

by: WanderingTechy Monday, February 9th, 2009

http://www.theregister.co.uk/2009/02/08/kaspersky_compromise_report/

I am only surmising from the limited information I can see here that ModSecurity would have protected them? Comments on this one welcome…

Rule 959001 does seem to cover the “SelECT” part of the URL in the screen shots but when I try a random url with this string in it on my website I don’t get any reaction.

I am a little bit “tired” tonight but “%20SelECT%20″ doesn’t trigger ModSecurities defenses on my site and I cannot see why. I would have thought any URL with “space select space” should have set off huge klaxons?

Is WordPress Safe Part 2.
ModSecurity Wordpress and Akismet problem
Mod Security Application Specific Rules
ModSecurity and PHPMyAdmin
Mod Security and ACatalog Actinic
Mod Security and Mambo
Mod security and wordpress the final config
Another mod_security exception for WordPress
Mod Security and Wordpress Exceptions – The results
Using Mod Security to block troublesome visitors

« phpList exploit and ModSecurity Rule | Home | We’ve had Bushisms now we have Brownisms »

Categories

Pages

Archives

News

Search this site

Kaspersky WebSite Database Breached.

Related Posts

Leave a Comment

Tag Cloud

Spam