Sometimes an attack does not immediately result in a specific outcome, but rather prepares the ground for later assault. A good example would be an attack that plants a backdoor. Such attacks are classified as "Various"
An official Indian government response to a question in the Indian parliament, the Minister of State for Communications and Information Technology discusses hacking incidents which occurred between 2005 and 2008 in a large number of Indian government agencies. The interesting information is the list of agencies affected:
Ministry of Railways,
Air Cargo Customs (Mumbai),
Forward markets Commission,
National Institute of Health and Family Welfare,
National Institute of Social Defence,
Department of Administrative Reforms and Public Grievances,
Joomla is a widely used open source content management system. Many administrators reports that a vulnerability announced August 12th was immediately exploited by hackers to attack Joomla based web sites. Another report shows a specific site that was defaced by exploiting the same vulnerability.
This incident shows the importance of timely patching, but also brings back the age old debate around publication of vulnerabilities by researchers. Does it contribute to software security or just helps the hackers?
The DNSchanger Trojan uses different methods to manipulate the DNS lookup of the victim. One of the most malicious techniques is using CSRF to attack the ADSL or cable router and modify its DNS tables.
