Microsoft investigates MSN Korea hack

Microsoft had to take part of its MSN Korea property offline earlier this week after hackers attempted to compromise a section of the site.

A hack into the site's news section was discovered around noon local time on Wednesday and the news page was taken down for around 24 hours to fix the problem, MSN Korea Marketing Manager Yena Kim said Friday.

Kim confirmed that the hack was a so-called iFrame attack, which exploits a flaw in Microsoft's Internet Explorer (IE) browser, but declined to give any further details. IFrame elements are inline floating frames in IE where content is displayed, according to Microsoft's Web site. The software maker released a patch for an iFrame vulnerability in December.

The MSN Korea property is hosted by a third party and it was unclear whether their servers were patched against the flaw.

Microsoft said it was not aware of any customers having been affected as a result of the hack, but it is continuing to investigate the incident. The company is cooperating with law enforcement agents and said it will take legal action against those responsible.

Copyright © 2005 IDG Communications, Inc.

The 10 most powerful companies in enterprise networking 2022