A web server relating to EA Games has been compromised by cyber criminals and is used to host Apple's Phishing Page and is making an effort to put down the users' apple ids. Intruders gained access by exploiting web calender's application.
 |
| EA Games Site Showing Apple's Fake Login Page |
As a Netcraft report stated, the vulnerabilities are residing in the old version of web calender application that gave an advantage to the hackers to breach down their sub domain security.
The Web Calender version 1.2.0 has a loophole to which gave the rights to attackers to run some arbitrary code. The phishing page attempting a apple user to enter his/her credentials into the form to steal down the data, then another form appears asking the users their card numbers, name etc.. After the submission of the initials, the user will get redirected towards the legit apple site. They also stated that intruders might have gained internal access to their servers which may result into information leakage.
The original report reads:- "In this case, the hacker has managed to install and execute arbitrary PHP scripts on the EA server, so it is likely that he can at least also view the contents of the calendar and some of the source code and other data present on the server. The mere presence of old software can often provide sufficient incentive for a hacker to target one system over another, and to spend more time looking for additional vulnerabilities or trying to probe deeper into the internal network."
Source:- Netcraft
No comments:
Post a Comment