Tuesday, April 12, 2011
Barracuda Networks website Hacked
Full Disclosure:Barracuda Networks Hacking via SQL Injection.
Barracuda Networks Inc. combines premises-based gateways and software, virtual appliances, cloud services, and sophisticated remote support to deliver comprehensive content security, data protection and application delivery solutions. The company’s expansive product portfolio includes offerings for protection against email, Web and IM threats as well as products that improve application delivery and network access, message archiving, backup and data protection.
More info: http://hmsec.tumblr.com/
Barracuda Networks injected with ultimate irony
But how and why ? when they have already Barracuda Networks Security Bug Bounty Program
Anyway,there's nothing surprising..all Barracuda sites are full of bugs :)
Some XSS POC: