|14 Dec 2009||#1|
| || |
Potent malware link infects almost
A security researcher has identified a new attack that has infected almost 300,000 webpages with links that direct visitors to a potent cocktail of malicious exploits.
The SQL injection attacks started in late November and appear to be the work
of a relatively new malware gang, said a researcher with ScanSafe, a web securityfirm recently acquired by Cisco Systems. Hacked sites contain an invisible iframe that silently redirects users to 318x .com (a space has been added to protect the clueless), which goes on to exploit known vulnerabilities in at least fiveapplications. At time of writing, this web search showed more than 294,000 webpages that contained the malicious script.
Infected sites included yementimes .com, parisattitude .com and knowledgespeak .com.
People who visit infected pages receive an invisible link that pulls code from a series of sites tied to 318x .com.
The code looks for insecure versions of Adobe Flash, Internet Explorer, and several other Microsoft applications, and when they are detected it exploits them to surreptitiously install malware known as Backdoor.Win3.Buzus.croo. The rootkit-enabled program logs banking credentials and may do other nefarious bidding, the researcher said. At the moment, about two percent of the requests ScanSafe sees are for sites infected by the malicious link, an indication
the threat is significant, she said. SQL injection attacks prey on web applicationsthat fail to adequately inspect user supplied input before passing it off to a webserver’s backend database.
They are a favorite way of adding maliciouslinks and content to third-party websites and were also the chink that allowed hackers the toehold they needed to steal more than 130 million credit card numbers from card processor Heartland Payment Systems and four other
More,,,,,,,,,,,,,,, Potent malware link infects almost 300,000 webpages ? The Register
|My System Specs|
|Similar help and support threads for2: Potent malware link infects almost|
|Malware infects 13 percent of North American home networks||Security News|
|Researcher Creates Proof-of-concept Malware That Infects BIOS, NIC||Security News|
|main ways virus infects?||System Security|
|Man infects himself with computer virus||Chillout Room|
|Software infects PC's.||Security News|
|Swine Flu Malware Infects Your PC, Not You||System Security|
|Prolific worm infects 3.5m Windows PCs||System Security|