February 2009
In regards to BitDefender▓s partner▓s website vulnerability
we have the following update:
╥ The vulnerability was found by BitDefender▓s blog monitoring activities
╥ We immediately notified our partner and the site was shutdown very shortly after.
╥ Working with our partner, we corrected the vulnerability and the site reopened at 6pm WET (GMT) time, February 9th.
╥ Our current review indicates that no customer data was stolen.
╥ During investigation, it appears that the attack was not intended to steal information, but simply to show vulnerability.
╥ It is important to highlight that BitDefender does not store customer credit card information on any of our sites, to protect customer privacy and ensure that this type of information is not accessible to attack.
╥ The website vulnerability exploited seems common. SQL injection and XSS (cross site scripting)
╥ All BitDefender owned sites execute routine protection processes to ensure that these severely limit vulnerability to these types of attacks. While we can▓t control how our partners manage their sites, we do work with them to foster best practices in protection.
╥ As a result of this attack, BitDefender worked with our partners, reevaluated their Web defense strategies and where necessary took corrective action to avoid this type of attack, ensuring they have the support and resources necessary for adequate web defense.
About Bitdefender®
Bitdefender is the creator of one of the world's fastest and most effective lines of internationally certified internet security software.Since 2001, the company has been an industry pioneer, introducing and developing award-winning protection. Today, Bitdefender technology secures the digital experience of around 400 million home and corporate users across the globe.
Recently, the company has won a range of key independent recommendations in the US, UK and across Europe, including ConsumerSearch, Which?, Stiftung Warentest and Taenk. Bitdefender antivirus technology has also finished top in leading industry tests from both AV Test and AV-Comparatives. More information about Bitdefender's antivirus products is available from the company's security solutions press room. Additionally, Bitdefender publishes Malware City providing the latest updates on security threats and helping users stay informed in the everyday battle against malware.