News

MSN Korea Hacked, Shut Down

By Ed Oswald | Published June 3, 2005, 11:21 AM

MSN was forced to take its South Korean Web site down for ten hours on Thursday after hackers broke into the site and added code to attempt to steal user passwords. While Microsoft said the news section of the site was the only part affected, the company removed the entire site as a precaution to ensure other areas were not compromised.

It is not immediately clear if any of MSN's users were affected by the hack. The news section was down for almost a day while the site was cleaned.

According to Microsoft spokespeople, the hack took advantage of an IFrame vulnerability in the Internet Explorer Web browser. The company released a patch for the flaw in December of last year.

South Korean's MSN site is one of the most popular sites among Korean Web surfers, and its English equivalent is the MSN.com homepage. However, unlike MSN.com, the South Korean version is not directly operated by Microsoft, but through a third party.

The hack was noticed by researchers on Tuesday who immediately contacted MSN about the attack. No one could say yet how long the malicious code was on the Web site before it was detected.

According to Microsoft, its English-based websites are not vulnerable to the attack. However, the same code has appeared on other hacked Chinese sites according to researchers.

Microsoft said it is working with law enforcement and will take legal action against the hackers if and when they are indentified.

Comments

View comments by with a score of at least

Portal3
Jun 4, 2005 - 1:25 AM

Maybe someone within the third party company that runs the Chinese and Korean MSN websites put the code there themselves. =P

Score: 0

|
Post Reply
surfbum4fun
Jun 3, 2005 - 11:10 PM

Microsoft did not even know the site was hacked...how lame.

Score: 0

|
Post Reply
gnosek
Jun 3, 2005 - 7:37 PM edited

Why doesn't microsoft use a counter on their site that can get the users ip address to catch these people?

Score: 0

|
Post Reply
spiffyjeff
Jun 4, 2005 - 12:00 PM

Probably cause IP addresses can be spoofed, if they are not spoofed, they are more than likely virus type programs that are on others' computers and the owners of the computers are unaware.

I'm pretty surprised that people target these big websites though, and that people still create viruses. You may be tough to find, but you will get caught.

Score: 0

|
Post Reply
homiebrah
Jun 3, 2005 - 5:05 PM

You can almost set your watch to MS vulnerabilities.

Score: 0

|
Post Reply
dn2004
Jun 3, 2005 - 2:43 PM

how sad and pointless people realy should get a life

Score: 0

|
Post Reply
Pipewrench
Jun 3, 2005 - 2:37 PM

People really need to find something better to do with their time. The people that hacked MSN Korea are obviously bored losers.

**rolling eyes**

Score: 0

|
Post Reply
Z_Man
Jun 3, 2005 - 12:26 PM

Hahhahahaha. Losers...

Score: 0

|
Post Reply

Security firm: Windows patches not responsible for 'Black Screen of Death'

On second thought, maybe that access control list thingie with the lockdown something-or-rather didn't trigger an alleged, perhaps non-existent, pandemic.

Windows desktops and notebooks reach near price-performance parity for Holiday 2009

Gone are the days when average Windows desktop offered more for less than laptops.

Latest Firefox 3.6 beta fixes 133 bugs, promises faster page load times

A once-sluggish beta testing process has kicked into overdrive, with astonishing success at finding serious bugs. Will Mozilla be able to fix all the others in time?

Confirmed: Office 2010 to ship in June

Two weeks after Microsoft had been expected to draw a clearer roadmap for its principal applications suite, it's finally ready to commit to the end of H1.

Apple settles with Psystar except for 'circumvention devices'

The fracas with the Florida clone computer maker might have ended today had Apple not have muddled the issue over a cheap piece of Psystar software.

Microsoft denies latest 'Black Screen of Death' claims

After an anti-malware producer announced a fix to what it says is a swarm of recent KSoD problems, evidence of the swarm itself has yet to turn up.

New EU antitrust commissioner will oversee Microsoft, Oracle+Sun, Intel issues

As one of Europe's most prominent politicians shifts positions in January, her replacement remains a question mark over technology's biggest issues.

Without its own 'iTablet' yet, is Apple missing the boat?

Steve Jobs is on record as dissing "single-purpose" devices like e-readers. But given their recent popularity, was that a mistake?

Not-so-mobile battery life: Time to force the issue

Carmi Levy | Wide Angle Zoom: If power efficiency is important when you buy a car or even a motorcycle, why shouldn't it matter for a smartphone?

Apple invokes DMCA, claims Psystar is 'trafficking in circumvention devices'

In trying to close the book on possibly the last attempt at a Mac clone, Apple cites from its own landmark case...but may actually be misinterpreting it.

The fallacy of Facebook privacy

Carmi Levy | Wide Angle Zoom: If an insurance company learns something interesting about its client through the Internet, is that snooping?