Wednesday, September 22, 2021

Microsoft investigates MSN Korea hack

Microsoft Corp. had to take part of its MSN Korea property offline earlier this week after hackers attempted to compromise a section of the site.

A hack into the site’s news section was discovered around noon local time on Wednesday and the news page was taken down for around 24 hours to fix the problem, MSN Korea Marketing Manager Yena Kim said Friday.

Kim confirmed that the hack was a so-called iFrame attack, which exploits a flaw in Microsoft’s Internet Explorer (IE) browser, but declined to give any further details. IFrame elements are inline floating frames in IE where content is displayed, according to Microsoft’s Web site. The software maker released a patch for an iFrame vulnerability in December.

The MSN Korea property is hosted by a third party and it was unclear whether the vendor’s servers were patched against the flaw.

Microsoft said it was not aware of any customers having been affected as a result of the hack, but it is continuing to investigate the incident. The company is co-operating with law enforcement agents and said it will take legal action against those responsible.

Would you recommend this article?

Share

Thanks for taking the time to let us know what you think of this article!
We'd love to hear your opinion about this or any other story you read in our publication. Click this link to send me a note →

Jim Love, Chief Content Officer, IT World Canada

Related Tech News