Windows 7 Forums
Welcome to Windows 7 Forums. Our forum is dedicated to helping you find support and solutions for any problems regarding your Windows 7 PC be it Dell, HP, Acer, Asus or a custom build. We also provide an extensive Windows 7 tutorial section that covers a wide range of tips and tricks.


Windows 7: Hackers compromise official PHP website, infect visitors with malware


26 Oct 2013   #1
A Guy

Microsoft Community Contributor Award Recipient

Windows 7 Home Premium x64 SP1
 
 
Hackers compromise official PHP website, infect visitors with malware

Quote:
Maintainers of the open-source PHP programming language have locked down the php.net website after discovering two of its servers were hacked to host malicious code designed to surreptitiously install malware on visitors' computers.

The compromise was discovered Thursday morning by Google's safe browsing service, which helps the Chrome, Firefox, and Safari browsers automatically block sites that serve drive-by exploits. Traces of the malicious JavaScript code served to some php.net visitors were captured and posted to Hacker News here and, in the form of a pcap file, to a Barracuda Networks blog post here. The attacks started Tuesday and lasted through Thursday morning, PHP officials wrote in a statement posted late that evening.
Source

A Guy


My System SpecsSystem Spec
27 Oct 2013   #2
UsernameIssues

W7 Pro SP1 64bit
 
 

"...but I only visit safe, respectable websites",
exclaims the new member posting in the System Security forum.

:-)
My System SpecsSystem Spec
27 Oct 2013   #3
A Guy

Microsoft Community Contributor Award Recipient

Windows 7 Home Premium x64 SP1
 
 

Legitimate Sites Are Most Likely To Serve Up Malware, Cisco Study Says

Legitimate Sites Are Most Likely To Serve Up Malware, Cisco Study

Web Badness Knows No Bounds

Web Badness Knows No Bounds ? Krebs on Security

There is no completely safe site

A Guy
My System SpecsSystem Spec
27 Oct 2013   #4
UsernameIssues

W7 Pro SP1 64bit
 
 

But no matter how many times we state that truth, we still hear people make the claim that they won't get infected because they only visit safe, respectable websites. It is even offered as the reason not to use antivirus software.
My System SpecsSystem Spec
27 Oct 2013   #5
A Guy

Microsoft Community Contributor Award Recipient

Windows 7 Home Premium x64 SP1
 
 

We can only try, and if they want to be the "slow swimmers", then the sharks will target them first

A Guy
My System SpecsSystem Spec
27 Oct 2013   #6
boohbah

Microsoft Windows 7 Home Premium 64-bit 7600
 
 

whew! waht a relief, at first i thought is was PNP ,
was thinking no santa email this year...
My System SpecsSystem Spec
27 Oct 2013   #7
Diosoth

Windows 7 Home Premium x64
 
 

Even if you never go online you can still get malware. A few game companies have accidentally shipped malware in their discs, because their gold master was infected.
My System SpecsSystem Spec
27 Oct 2013   #8
x BlueRobot

Microsoft Community Contributor Award Recipient

Windows 7 Home Premium x86 Service Pack 1 - Linux Mint Mate 14 x64
 
 

Quote   Quote: Originally Posted by UsernameIssues View Post
But no matter how many times we state that truth, we still hear people make the claim that they won't get infected because they only visit safe, respectable websites. It is even offered as the reason not to use antivirus software.
I had a OP like that in the BSOD section, and I even said that reputable websites get infected.
My System SpecsSystem Spec
27 Oct 2013   #9
x BlueRobot

Microsoft Community Contributor Award Recipient

Windows 7 Home Premium x86 Service Pack 1 - Linux Mint Mate 14 x64
 
 

Flash Again?

Quote:
According to a security researcher at Kaspersky Lab, Thursday's compromise caused some php.net visitors to download "Tepfer," a trojan spawned by the Magnitude Exploit Kit. At the time of the php.net attacks, the malware was detected by only five of 47 antivirus programs. An analysis of the pcap file suggests that the malware attack worked by exploiting a vulnerability in Adobe Flash, although it's possible that some victims were targeted by attacks that exploited Java, Internet Explorer, or other applications, Martijn Grooten, a security researcher for Virus Bulletin, told Ars.
My System SpecsSystem Spec
Reply

 Hackers compromise official PHP website, infect visitors with malware




Thread Tools



Similar help and support threads for2: Hackers compromise official PHP website, infect visitors with malware
Thread Forum
Windows 7 home premium 64-bit infected with hackers,malware and more.. System Security
Cybercriminals Turn to Supply Chain, Infect New Computers with Malware Security News
Understanding how website's infect your system. System Security
Hackers Booby Trap uTorrent Downloads with Malware Security News
Solved How hackers will try and hack your website! System Security

Our Sites

Site Links

About Us

Find Us

Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

© Designer Media Ltd

All times are GMT -5. The time now is 11:36 AM.
Twitter Facebook Google+



Windows 7 Forums

Seven Forums Android App Seven Forums IOS App