Hackers on Monday compromised MySQL.com, the official website for the popular open-source MySQL database, to distribute malware to visitors, according to security researchers.
The hack caused those who visited the site on Monday morning to be redirected to a domain that attempted to install malware on their machines via the Black Hole exploit pack.
The site appeared to be cleaned soon after, according to reports.
The Black Hole pack attempted to launch a number of exploits against users' browsers and plug-ins, such as Adobe Flash and Java. If successful, users' machines silently were hit with malware, which was detected early Monday by just over 10 per cent of the most widely used anti-virus programs.
“The visitor doesn't need to click or agree to anything," said Wayne Huang, CEO of web application firm Armorize.
"Simply visiting MySQL.com with a vulnerable browsing platform will result in an infection."
Oracle, which owns MySQL, did not immediately respond Monday.
This is not the first time MySQL.com has been compromised. In March, hackers infected the site via SQL injection and published a list of usernames and passwords online.
.png&h=140&w=231&c=1&s=0)
.png&h=140&w=231&c=1&s=0)
.png&w=100&c=1&s=0)
Private AI vs Public AI: How your organisation can securely adopt AI without compromise and excessive cost
iTnews Benchmark Security Awards 2025
Digital Leadership Day Federal
Government Cyber Security Showcase Federal
Government Innovation Showcase Federal
.jpg&h=140&w=231&c=1&s=0)
.jpg&h=140&w=231&c=1&s=0)
