Identity Theft News

Hack deletes 100,000 websites, software developer kills self

Thursday, June 11, 2009

The developer of a server virtualization application that was exploited in a hacking attack on web hosting company VAserv hanged himself shortly after the exploit was discovered.

Hackers had exploited a zero-day vulnerability in the application, which was used by British ISP VAserv for hosting websites on undedicated servers. The hackers deleted some 100,000 websites on Sunday, most of which did not have data backup, according to the Register.

The software developer, KT Ligesh, was discovered dead in his home in Bangalore, India on Monday, the Times of India reported. Ligesh, head of the company LxLabs, had been out drinking the night before and was believed to be upset over the loss of a contract and the suicides of his mother and sister five years earlier.

The Register reported Monday that the server virtualization software, called HyperVM, had a critical vulnerability that allowed hackers to penetrate VAserv's servers to gain root access and delete the websites.

VAserv's director, Rus Foster, told the Register on Monday that data for about half of the websites hosted on VAserv was destroyed sometime Sunday evening.

The attackers were likely able to steal sensitive data stored on VAserv's servers, a VAserv client told the Register.

Hackers likely used a SQL injection attack, Foster told the IT security news website.
ADNFCR-1765-ID-19214386-ADNFCR

Related News:

Threat of identity theft shows need for online security - 11.19.2009
As Americans live increasingly large portions of their lives on the internet, the possibilities and incentives for remote identity theft increase as well. A report in the New York Times advises caution, and gives tips for constructing an "online bulwark" to prevent theft and fraud.

Wi-Fi network security vulnerable to man-in-the-middle attacks on smart phones - 11.16.2009
Researchers last week revealed a weakness in mobile network security that could allow for so-called "man-in-the-middle" techniques to steal personal information from users of certain types of mobile phones.

FDIC warns banks of money transfer 'mules' duped by cybercriminals - 11.2.2009
In a new warning to banks about illicit electronic fund transfers, the Federal Deposit Insurance Corporation (FDIC) said last week that online bank account theft is rising using "money mules," unwitting job-seekers who are duped by cyber crooks into wiring funds from hacked bank accounts.

Obama addresses cybersecurity awareness in YouTube video - 10.21.2009
Online cyber attacks and identity theft have never been higher, a threat environment that challenges U.S. security every day. President Obama has designated October as National Cybersecurity Awareness Month, which he addressed in a web video last week.

Facebook application security hole exposes millions to hacking, researcher says - 10.19.2009
A security researcher is warning Facebook users about potential vulnerabilities in Facebook applications that could allow cross-site scripting (XSS) hacker attacks for hijacking user accounts.
View Related Resources
Or
Watch an Online Demo
Or
Have us call you now