MySQL.com database has been compromised by a blind SQL injection, reports techie-buzz.
The vulnerability for the attack, completed using blind SQL injection and targeted servers including MySQL.com, MySQL.fr, MySQL.de and MySQL.it, was initially found by “TinKode” and “Ne0h” of Slacker.Ro (according to their pastebin.com/BayvYdcP dump of the stolen credentials) but published by “Jackh4x0r”.
The stolen database contain both member and employee email addresses and credentials, as well as tables with customer and partner information and internal network details. Hashes from the database have been posted, with some having been already cracked.
Read more: http://techie-buzz.com/tech-news/mysql-com-database-compromised-sql-injection.html
