The hackers' assault on security vendors' websites continues with ESET, developer of the popular NOD32 antivirus solution. Multiple websites controlled by the company are vulnerable to cross-site scripting and SQL injection.
A hacker calling himself Methodman has published proof-of-concept attacks against http://www.eset.com.tw, https://secure.eset.co.uk and http://www.virus-radar.com. The documented vulnerabilities can facilitate malware distribution, phishing campaigns, session cookies hijacking, as well as other attacks. More at; http://news.softpedia.com/news/Several-ESET-NOD32-Websites-Vulnerable-105688.shtml
A hacker calling himself Methodman has published proof-of-concept attacks against http://www.eset.com.tw, https://secure.eset.co.uk and http://www.virus-radar.com. The documented vulnerabilities can facilitate malware distribution, phishing campaigns, session cookies hijacking, as well as other attacks. More at; http://news.softpedia.com/news/Several-ESET-NOD32-Websites-Vulnerable-105688.shtml