IT Pro is supported by its audience. When you purchase through links on our site, we may earn an affiliate commission. Learn more

Websense warns of Amnesty International website hack

Security vendor claims campaign group's website was compromised earlier this week.

Internet browser

Visitors to Amnesty International's UK site this week may have had their personal details stolen, according to security vendor Websense.

The company claims the site was compromised for two days (8-9 May), after it was allegedly injected with malicious code.

Without the right defences, it might be much more than a charity donation the malware authors steal.

In a blog post, alerting users to the vulnerability, Websense said: "During that time, website users risked having sensitive data stolen and infecting other users in their network.

"However, the website owners rectified this issue after we advised them about the injection."

Websense claims the malicious code is the same one used to spread the Mac OS X Flashback malware, which is understood to have infected more than 600,000 Mac computers.

The Websense blog post also claims other Amnesty International sites have been targeted in a similar way.

"In early 2009, we discovered this same site was compromised, and in 2010 we reported another injection of an Amnesty International website, this time [in] Hong Kong," it stated.

Carl Leonard, senior manager of Websense, said the code could be used by hackers to gain access to infected machines and steal data.

"This compromise is more serious than your average," said Leonard. "Companies need effective real-time inline security to protect against infection [because] without the right defences, it might be much more than a charity donation that the malware authors steal."

In a statement to IT Pro, Amnesty International played down the incident, stressing that no user details would have been compromised.

"As soon as we became aware of the infection we worked with our hosting company, Claranet, to isolate it and remove it as a matter of urgency," it stated.

"All our users profiles are held on a completely separate website and server and were in no way compromised by this incident."

Featured Resources

Meeting the future of education with confidence

How the switch to digital learning has created an opportunity to meet the needs of every student, always

Free Download

The Total Economic Impact™ of IBM Cloud Pak® for Watson AIOps with Instana

Cost savings and business benefits

Free Download

The business value of the transformative mainframe

Modernising on the mainframe

Free Download

Technology reimagined

Why PCaaS is perfect for modern schools

Free Download

Recommended

Hackers could use new Wslink malware in highly targeted cyber attacks
malware

Hackers could use new Wslink malware in highly targeted cyber attacks

1 Nov 2021
FBI raids Chinese POS business following cyber attack claims
malware

FBI raids Chinese POS business following cyber attack claims

27 Oct 2021
Malware developers create malformed code signatures to avoid detection
malware

Malware developers create malformed code signatures to avoid detection

24 Sep 2021
New malware uses search engine ads to target pirate gamers
malware

New malware uses search engine ads to target pirate gamers

21 Jul 2021

Most Popular

How to boot Windows 11 in Safe Mode
Microsoft Windows

How to boot Windows 11 in Safe Mode

7 Jun 2022
Attracting and retaining talent through training
Sponsored

Attracting and retaining talent through training

13 Jun 2022
Swift exit: How the world cut off Russian banks
finance

Swift exit: How the world cut off Russian banks

24 Jun 2022