BleepingComputer.com: Another Wave of Mass Compromises Serve Info-Stealers

Jump to content


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.

Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Page 1 of 1
  • You cannot start a new topic
  • You cannot reply to this topic

Another Wave of Mass Compromises Serve Info-Stealers

#1 User is offline   quietman7 

  • Bleepin' Janitor
  • PipPipPipPipPipPip
  • Find Topics
  • Group: Global Moderator
  • Posts: 25,109
  • Joined: 09-July 05
  • Location:Virginia, USA

Posted 08 June 2009 - 02:11 PM

Quote

Aside from Gumblar, another incident of mass compromised web sites have been seen in the wild lately, and has raised as much concern as the former. This one starts with the same technique: a malicious IFRAME unknowingly embedded in a legitimate website, injected via JavaScript. The said IFRAME redirects to another IFRAME, which in turn executes obfuscated JavaScript code.

Once decoded, it tries to connect to URLs to download exploits for several vulnerabilites in order to gain access of the affected user’s system....

blog.trendmicro.com
Microsoft MVP - Consumer Security 2007-2012 Posted Image
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

#2 User is offline   Please Help Us 

  • Member
  • PipPip
  • Find Topics
  • Group: Members
  • Posts: 147
  • Joined: 31-January 09

Posted 09 June 2009 - 10:56 PM

This is what would be for the JAVA update today?

#3 User is offline   scff249 

  • Indecisive Lurker
  • PipPipPipPipPipPip
  • Find Topics
  • Group: Members
  • Posts: 1,319
  • Joined: 14-February 08
  • Gender:Male
  • Location:A galaxy far, far away...

Posted 10 June 2009 - 07:15 AM

No, there hasn't been a Java update for a while (still at Java 6 Update 13)

This post has been edited by scff249: 10 June 2009 - 07:16 AM

"Ototo'i wa usagi o mita no...Kino wa shika...Kyo wa anata." -Kotomi Ichinose (Clannad) [see below for translation]
"Day before yesterday I saw a rabbit, and yesterday a deer, and today, you." -The Dandelion Girl
"You are not alone, and you are not strange. You are you, and everyone has damage. Be the better person." -Katawa Shoujo

#4 User is offline   scff249 

  • Indecisive Lurker
  • PipPipPipPipPipPip
  • Find Topics
  • Group: Members
  • Posts: 1,319
  • Joined: 14-February 08
  • Gender:Male
  • Location:A galaxy far, far away...

Posted 10 June 2009 - 01:35 PM

I stand corrected. I just got an update from Java.
"Ototo'i wa usagi o mita no...Kino wa shika...Kyo wa anata." -Kotomi Ichinose (Clannad) [see below for translation]
"Day before yesterday I saw a rabbit, and yesterday a deer, and today, you." -The Dandelion Girl
"You are not alone, and you are not strange. You are you, and everyone has damage. Be the better person." -Katawa Shoujo

Share this topic:


Page 1 of 1
  • You cannot start a new topic
  • You cannot reply to this topic

1 User(s) are reading this topic
0 members, 1 guests, 0 anonymous users