Microsoft denies blame for half a million hacks

Microsoft says it is not to blame for a rash of web server attacks that have affected half a million web pages.

When web surfers visit the affected pages, their computers have been hit by malware.

And online reports suggest that UN and Government sites are amongst those that have been targeted.

It had been suggested that vulnerabilities in Microsoft's SQL Server software were being exploited in the attacks.

But the company has now firmly refuted this allegation.

Speaking on The Microsoft Security blog, Bill Sisk, of the Microsoft Security Response Center said: "Microsoft's investigation has shown that there are no new or unknown vulnerabilities being exploited".

"This wave is not a result of a vulnerability in Internet Information Services or Microsoft SQL Server. The attacks are facilitated by SQL injection exploits and are not issues related to IIS 6.0, ASP, ASP.Net or Microsoft SQL technologies."

The entry also offers advice to those who have been hit by the attacks.

• Comment on this story for your chance to win a TomTom XL Live IQ Routes Europe

Latest in Software

• NEWS Twitter to charge in Japan
• NEWS The low down: Best Software, Service, App 2009
• NEWS WEBSITE OF THE DAY - love the mo
• NEWS VIDEO OF THE DAY - Lego Matrix
• NEWS Virgin Media to monitor filesharers

Latest on Pocket-lint.com

• NEWS 10 perfect Christmas presents for...music geeks
• NEWS Disney planning first 3D subtitles
• NEWS Motorola Milestone exclusive to Expansys
• NEWS VIDEO: Aardman makes Nintendo DSi ad with Flipnote Studio
• NEWS Panasonic discontinuing Technics 1200 turntables?