February 6, 2007 — (WEB HOST INDUSTRY REVIEW) — The official Web site of Dolphin Stadium (dolphinsstadium.com) was hacked into on Friday, just days before the Super Bowl, according to reports.
Security firm Websense (websense.com) says a hacker installed a malicious JavaScript file designed to secretly implant keystroke-logging software on visitors’ computers onto the front page of the stadium Web site.
The attack involved a common type of Trojan horse program targeting Windows computers without the latest security patches from Microsoft. The program can give hackers full access to compromised computers through two vulnerabilities in Windows PCs, both of which have already been patched by Microsoft, according to Websense.
A stadium spokesman says the Web site was cleaned and back to normal within three hours of the discovery. The FBI was also investigating the attack because of the international attention surrounding the Super Bowl.
