More of The Same: Another Half Million Web Sites Compromised

Need help in the world of technology? Here is the section for you, or talk about your favourite tech related topic, or what is new in the world of tech here.
Post Reply
SetoTK
Low flying mountains just to the right.
Posts: 5093
Joined: Tue Aug 16, 2005 8:34 pm
Location: localhost
Contact:
Contact SetoTK

More of The Same: Another Half Million Web Sites Compromised

Post by SetoTK »

More of The Same: Another Half Million Web Sites Compromised

Excert */
There’s no breathing easy when it comes to online security these days. As some several thousands of Web sites try to recover from being hacked via SQL injection barely two days ago, in comes another massive attack on more than half a million Web sites.

Advanced Threats Research Program Manager Ivan Macalintal found the malicious script JS_SMALL.QT injected into various Web sites believed to be either using poorly implemented phpBB, or are using older, exploitable versions of the said program. In the past, some of these compromised sites were found to have been riddled with “phake pharma” and porn comment spam, while others were seen to be previously defaced by underground hackers. Advanced Threats Researcher Alice Decker have seen infections relating to this malicious script as early as February this year.


This compromise is almost similar to the mass compromises that we’ve seen earlier — visiting a compromised site leads to a series of redirections, which eventually causes the downloading of malware. In this case, TROJ_ZLOB.CCW is on the tail-end. In true ZLOB fashion, this variant poses as a video codec installer

/* Excert End

to read the full story please viist :: http://blog.trendmicro.com/more-than-a- ... mpromised/
I never really understood Thursdays.
Top
User avatar
froggyboy604
Anime music gaming Fanatic
Posts: 37744
Joined: Thu Aug 18, 2005 11:28 pm
Contact:
Contact froggyboy604

Post by froggyboy604 »

Is phpBB2 and phpBB3 affected by this problem?

It always seems to be the porn websites and fake drugs websites that spam the most.
Top
SetoTK
Low flying mountains just to the right.
Posts: 5093
Joined: Tue Aug 16, 2005 8:34 pm
Location: localhost
Contact:
Contact SetoTK

Post by SetoTK »

froggyboy604 wrote:Is phpBB2 and phpBB3 affected by this problem?

It always seems to be the porn websites and fake drugs websites that spam the most.
generally these are attacks on the server itself rather than web soft.
but some web soft can allow the server attack,
I never really understood Thursdays.
Top
Hikari

Post by Hikari »

froggyboy604 wrote:Is phpBB2 and phpBB3 affected by this problem?

It always seems to be the porn websites and fake drugs websites that spam the most.
Yeah, porn and faske drugs are the usual spam topics. There's some others, that are too offensive to post here.
Top
User avatar
froggyboy604
Anime music gaming Fanatic
Posts: 37744
Joined: Thu Aug 18, 2005 11:28 pm
Contact:
Contact froggyboy604

Post by froggyboy604 »

Plus, fake lotteries and casinoes.
Top
Hikari

Post by Hikari »

And web advertizing. Oh, and bank detail requests.
Top
Post Reply

Return to “Techies 'R' Here”