« previous next »
Pages: [1]   Go Down

Author Topic: "Thousands of sites loaded with potent malware cocktail"  (Read 5443 times)

0 Members and 1 Guest are viewing this topic.

Hermite15

  • Guest
"Thousands of sites loaded with potent malware cocktail"
« on: October 19, 2009, 12:24:33 PM »
found here:
http://www.theregister.co.uk/2009/10/16/gumblar_mass_web_compromise/

Quote
It's unclear exactly how the sites are getting compromised. Landesman suspects FTP passwords for the sites have been lifted from administrators' computers using key-logging malware.

Quote
People who are unfortunate enough to visit the sites won't see anything unusual. But behind the scenes, a PHP script checks their version of Adobe Reader and Adobe Flash, and if either is out of date, hijacks their PCs using known vulnerabilities. If both of those programs are up to date, the script tests to see if the system is vulnerable to several bugs Microsoft has patched in the last few months.

Hijacked machines will be installed with a backdoor that gives the hijackers complete control. They are also equipped with malware that manipulates search results returned by Google.

« Last Edit: October 19, 2009, 12:35:53 PM by Logos »
Logged

Offline Pondus

  • Probably Bot
  • ****
  • Posts: 37532
  • Not a avast user
Re: "Thousands of sites loaded with potent malware cocktail"
« Reply #1 on: October 19, 2009, 02:32:13 PM »
Logged

yawetage

  • Guest
Re: "Thousands of sites loaded with potent malware cocktail"
« Reply #2 on: October 19, 2009, 09:29:45 PM »
"The firm has identified 250 versions of scareware, and criminals are thought to earn more than £750,000 each a year. "
£750,000, that's like $1.2 million. I had no idea their profits were that large; I though maybe they earned a couple of hundred thousand dollars a year. That's pretty incredible and very scary that so many people are falling for their tricks.  :(
Logged

Offline bob3160

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 48562
  • 64 Years of Happiness
    • bob3160 Protecting Yourself, Your Computer and, Your Identity
Re: "Thousands of sites loaded with potent malware cocktail"
« Reply #3 on: October 21, 2009, 01:02:18 AM »
While in a local computer store the other day for an upgrade on one of my systems,
I observed no less than 7 people who brought their systems into the shop to have it "cleaned"
Their fee for that service is $150.00 ( I do it for free at our Senior Center :) )
I was only in their shop for 45 minutes.  :o
Logged
Free Security Seminar: https://bit.ly/bobg2023  -  Important: http://www.organdonor.gov/ -- My Web Site: http://bob3160.strikingly.com/ - Win 11 Pro v22H2 64bit, 16 Gig Ram, 1TB SSD, Avast Free 23.5.6066, How to Successfully Install Avast http://goo.gl/VLXdeRepair & Clean Install https://goo.gl/t7aJGq -- My Online Activity https://bit.ly/BobGInternet

Online DavidR

  • Avast Überevangelist
  • Certainly Bot
  • *****
  • Posts: 89057
  • No support PMs thanks
Re: "Thousands of sites loaded with potent malware cocktail"
« Reply #4 on: October 21, 2009, 02:12:42 AM »
Yes, those with more money than sense and I'll bet the store sold them a Security Suite afterwards too ;D
Logged
Windows 10 Home 64bit/ Acer Aspire F15/ Intel Core i5 7200U 2.5GHz, 8GB DDR4 memory, 256GB SSD, 1TB HDD/ avast! free 24.3.6108 (build 24.3.8975.762) UI 1.0.801/ Firefox, uBlock Origin, uMatrix/ MailWasher Pro/ Avast! Mobile Security

Offline bob3160

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 48562
  • 64 Years of Happiness
    • bob3160 Protecting Yourself, Your Computer and, Your Identity
Re: "Thousands of sites loaded with potent malware cocktail"
« Reply #5 on: October 21, 2009, 05:02:21 PM »
Quote from: DavidR on October 21, 2009, 02:12:42 AM
Yes, those with more money than sense and I'll bet the store sold them a Security Suite afterwards too ;D
This one actually gives them a choice and recommends avast! :)  ( One of the reasons I use them....:) )
Logged
Free Security Seminar: https://bit.ly/bobg2023  -  Important: http://www.organdonor.gov/ -- My Web Site: http://bob3160.strikingly.com/ - Win 11 Pro v22H2 64bit, 16 Gig Ram, 1TB SSD, Avast Free 23.5.6066, How to Successfully Install Avast http://goo.gl/VLXdeRepair & Clean Install https://goo.gl/t7aJGq -- My Online Activity https://bit.ly/BobGInternet

Online DavidR

  • Avast Überevangelist
  • Certainly Bot
  • *****
  • Posts: 89057
  • No support PMs thanks
Re: "Thousands of sites loaded with potent malware cocktail"
« Reply #6 on: October 21, 2009, 05:30:57 PM »
Now there is a real surprise, where most would just see the customer as a cash cow having cleaned their system and told them they need protection.
Logged
Windows 10 Home 64bit/ Acer Aspire F15/ Intel Core i5 7200U 2.5GHz, 8GB DDR4 memory, 256GB SSD, 1TB HDD/ avast! free 24.3.6108 (build 24.3.8975.762) UI 1.0.801/ Firefox, uBlock Origin, uMatrix/ MailWasher Pro/ Avast! Mobile Security

Offline MikeBCda

  • Avast Evangelist
  • Super Poster
  • ***
  • Posts: 2247
Re: "Thousands of sites loaded with potent malware cocktail"
« Reply #7 on: October 21, 2009, 07:16:11 PM »
Back to topic ... I use the PDF Xchange viewer (from Docu-track, freeware).  Anyone know if that's got the same vulnerabilities as Adobe?
Logged
Intel Atom D2700, 2 gig RAM, Win 7 x64 SP1 & IE-11, Firefox 51.0
(default). 320 gig HD, 15Mb DSL, Win firewall, Avast 12.3.2280 free, SpywareBlaster, MBAM Prem., Crypto-Prevent

Hermite15

  • Guest
Re: "Thousands of sites loaded with potent malware cocktail"
« Reply #8 on: October 21, 2009, 07:23:13 PM »
Quote from: MikeBCda on October 21, 2009, 07:16:11 PM
Back to topic ... I use the PDF Xchange viewer (from Docu-track, freeware).  Anyone know if that's got the same vulnerabilities as Adobe?

no idea, but true this thread has been hijacked for a while now... ::)
Logged

Offline bob3160

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 48562
  • 64 Years of Happiness
    • bob3160 Protecting Yourself, Your Computer and, Your Identity
Re: "Thousands of sites loaded with potent malware cocktail"
« Reply #9 on: October 23, 2009, 10:40:20 PM »
Quote from: Logos on October 21, 2009, 07:23:13 PM
Quote from: MikeBCda on October 21, 2009, 07:16:11 PM
Back to topic ... I use the PDF Xchange viewer (from Docu-track, freeware).  Anyone know if that's got the same vulnerabilities as Adobe?

no idea, but true this thread has been hijacked for a while now... ::)
I know it's something you're never guilty of. :)
Logged
Free Security Seminar: https://bit.ly/bobg2023  -  Important: http://www.organdonor.gov/ -- My Web Site: http://bob3160.strikingly.com/ - Win 11 Pro v22H2 64bit, 16 Gig Ram, 1TB SSD, Avast Free 23.5.6066, How to Successfully Install Avast http://goo.gl/VLXdeRepair & Clean Install https://goo.gl/t7aJGq -- My Online Activity https://bit.ly/BobGInternet

Hermite15

  • Guest
Re: "Thousands of sites loaded with potent malware cocktail"
« Reply #10 on: October 23, 2009, 10:42:48 PM »
Quote from: bob3160 on October 23, 2009, 10:40:20 PM
Quote from: Logos on October 21, 2009, 07:23:13 PM
Quote from: MikeBCda on October 21, 2009, 07:16:11 PM
Back to topic ... I use the PDF Xchange viewer (from Docu-track, freeware).  Anyone know if that's got the same vulnerabilities as Adobe?

no idea, but true this thread has been hijacked for a while now... ::)
I know it's something you're never guilty of. :)

thanks for acknowledging this  :)
Logged
Pages: [1]   Go Up
« previous next »