Windows 7 Forums
Welcome to Windows 7 Forums. Our forum is dedicated to helping you find support and solutions for any problems regarding your Windows 7 PC be it Dell, HP, Acer, Asus or a custom build. We also provide an extensive Windows 7 tutorial section that covers a wide range of tips and tricks.


Windows 7: Potent malware link infects almost


14 Dec 2009   #1

Windows 7 Pro & Vista Home Premium
 
 
Potent malware link infects almost

A security researcher has identified a new attack that has infected almost 300,000 webpages with links that direct visitors to a potent cocktail of malicious exploits.

The SQL injection attacks started in late November and appear to be the work
of a relatively new malware gang, said a researcher with ScanSafe, a web securityfirm recently acquired by Cisco Systems. Hacked sites contain an invisible iframe that silently redirects users to 318x .com (a space has been added to protect the clueless), which goes on to exploit known vulnerabilities in at least fiveapplications. At time of writing, this web search showed more than 294,000 webpages that contained the malicious script.

Infected sites included yementimes .com, parisattitude .com and knowledgespeak .com.

People who visit infected pages receive an invisible link that pulls code from a series of sites tied to 318x .com.

The code looks for insecure versions of Adobe Flash, Internet Explorer, and several other Microsoft applications, and when they are detected it exploits them to surreptitiously install malware known as Backdoor.Win3.Buzus.croo. The rootkit-enabled program logs banking credentials and may do other nefarious bidding, the researcher said. At the moment, about two percent of the requests ScanSafe sees are for sites infected by the malicious link, an indication

the threat is significant, she said. SQL injection attacks prey on web applicationsthat fail to adequately inspect user supplied input before passing it off to a webserver’s backend database.

They are a favorite way of adding maliciouslinks and content to third-party websites and were also the chink that allowed hackers the toehold they needed to steal more than 130 million credit card numbers from card processor Heartland Payment Systems and four other
companies.

More,,,,,,,,,,,,,,, Potent malware link infects almost 300,000 webpages ? The Register

My System SpecsSystem Spec
.

Reply

 Potent malware link infects almost




Thread Tools



Similar help and support threads for2: Potent malware link infects almost
Thread Forum
Malware infects 13 percent of North American home networks Security News
Researcher Creates Proof-of-concept Malware That Infects BIOS, NIC Security News
main ways virus infects? System Security
Man infects himself with computer virus Chillout Room
Software infects PC's. Security News
Swine Flu Malware Infects Your PC, Not You System Security
Prolific worm infects 3.5m Windows PCs System Security

Our Sites

Site Links

About Us

Find Us

Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

© Designer Media Ltd

All times are GMT -5. The time now is 07:42 AM.
Twitter Facebook Google+



Windows 7 Forums

Seven Forums Android App Seven Forums IOS App
  

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33