Web Defacement and Password Stealing

The TrendMicro folks (anti-malware vendor) got hit by a web site defacement. But they weren’t the only ones. There’s hundreds of thousands of sites that will try to install password-stealing software on your computer. (One story here: http://www.infoworld.com/article/08/03/13/Password-stealing-hackers-infect-thousands-of-Web-pages_1.html ).

And the Internet Storm Center reports (http://isc.sans.org/diary.html?storyid=4139 ) has a related report on the problem.

The attack seems to come, as usual, with a web site (usually an ‘adult’ site) that asks you to install some software to view a video. Or the site may try to tell you to install some software to scan your computer for viruses.

One example of the attack is shown in a video on McAfee’s site (http://www.avertlabs.com/research/blog/index.php/2008/03/13/follow-up-to-yesterdays-mass-hack-attack/ ) . Interesting short video that shows how the attack works.

The protection? The usual “safe computing practices” we’ve previously discussed. Current anti-virus, don’t install software/add-ins just because a web page asks you to, current operating system and other software patches, etc, etc.

And it’s not just Windows-based systems. The operating system is not the only vulnerability; all your software needs to be kept current.

Be careful out there.

Leave a Reply

Name and email are required. Your email address will not be published.