A spate of hacking attacks on Macromedia Flash developer sites has uncovered a security hole in a PHP script. A recent spate of attacks on Macromedia Flash developer community Web sites has exposed a potential security threat in a common open-source mailing list application. Jesse Stratford, co-founder of actionscripts.org, which is one of three Flash enthusiast sites hijacked over recent weeks, said hackers managed to compromise his server using a vulnerable PHP script in EMML (EternalMart Mailing List Manager). It took two separate attacks on the site to spot the security vulnerability, Stratford explained. The hackers were able to cover their tracks when the first attack took place about two weeks ago but were less successful in the second attack, which came within hours of actionscript.org’s announcement on Saturday that it had recovered the site. Full Story
About OODA Analyst
OODA is comprised of a unique team of international experts capable of providing advanced intelligence and analysis, strategy and planning support, risk and threat management, training, decision support, crisis response, and security services to global corporations and governments.