Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Yet another new malware attack


  • Please log in to reply
4 replies to this topic

#1 frankp316

frankp316

  • Members
  • 2,677 posts
  • OFFLINE
  •  
  • Local time:08:33 AM

Posted 02 June 2009 - 08:27 PM

From CNet.

About 40,000 Web sites appear to have been compromised with rogue JavaScript code that redirects Web surfers to a fake Google Analytics site, after which they get passed onto a site that tries to exploit Internet Explorer or Firefox vulnerabilities to infect that PC with malware, according to a Websense researcher quoted by Computerworld. Just for good measure, if the site can't find a browser vulnerability, it tries to trick the user into downloading a Trojan.



http://news.cnet.com/8301-1009_3-10255226-...g=2547-1_3-0-20

Made title more descriptive and added informative paragraph from article. ~ OB

Edited by Orange Blossom, 08 June 2009 - 12:17 PM.


BC AdBot (Login to Remove)

 


#2 Please Help Us

Please Help Us

  • Members
  • 156 posts
  • OFFLINE
  •  
  • Local time:09:33 AM

Posted 03 June 2009 - 04:19 AM

Its like every other day we see one of these....
:thumbsup:

Thanks for keeping up informed though.

#3 Swordie

Swordie

  • Members
  • 792 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Miami, Florida
  • Local time:08:33 AM

Posted 05 June 2009 - 01:40 PM

Theres that other one, called Gumblar, which sounds severe aswell..
Who said I couldn't have everything?

#4 Layback Bear

Layback Bear

  • Members
  • 1,880 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Northern Ohio
  • Local time:08:33 AM

Posted 28 June 2009 - 10:15 PM

Sun micro syatems don't seam to care, they never do any thing about it. I don't really know its a Sun micro problem or a Google problem. We still have a security problem with Java in Adobe and it's been there a long time.

#5 Papakid

Papakid

    Guru at being a Newbie


  • Malware Response Team
  • 6,637 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:08:33 AM

Posted 03 July 2009 - 12:39 AM

Sun micro syatems don't seam to care, they never do any thing about it. I don't really know its a Sun micro problem or a Google problem. We still have a security problem with Java in Adobe and it's been there a long time.

Don't confuse JavaScript with Java or the Java runtime environment. They are two separate things.
http://en.wikipedia.org/wiki/Javascript

Altho there is a relationship there, JavaScript was developed by Netscape. It is just a scripting language, so even if Sun did develop the language, they have no control over what the bad guys do with it. The blame rests solely on the shoulders of the perpetrators, not Sun or Google.

There are other reasons to yell at Sun, but this is not a bug or unpatched vulnerability in their runtime environment, so they don't deserve it in this case. :thumbsup:

The thing about people

is they change

when they walk away.--Mipso





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users