republican-creole
Search:  

 
theme to black backgroundlet page decide theme
HomeFind ServiceReviewsISP NewsFAQsForumsToolsDatabaseAbout 
 
   All ForumsHot TopicsGallery






how-to block ads


 
Forums » Up and Running » Security » Security » Latin Best Buy surfers sprayed by drive-by download malware
Search Topic:
Uniqs:
621		 Share Topic:
RSS topic:
toggle:
flat / full
normal / watch
Posting:
Post a:
Post a:
Links: ·Hijack This logs? ·Panda Free Tools ·Vundo Removal
Torrentreactor breach serves potent exploit »
« Security Software Updates - 02 Jul 2009  
AuthorAll Replies


Stem Bolt
Premium
join:2002-11-08
Cleveland, OH

Latin Best Buy surfers sprayed by drive-by download malware

»www.theregister.co.uk/2009/07/03···_attack/

»blog.trendmicro.com/
quote:
Hackers have invaded the Best Buy website to plant exploit code targeted at South and central American surfers.

The villanos have manipulating the page that allows surfers, visiting the site from Latin America, to select language preferences between either Spanish or English. Beneath layers of concealment, surfers are redirected towards a site that serves up exploit code - specifically the Luckysploit web exploit kit - via an iFrame.

"The Luckysploit web exploit kit and the obfuscation seen is reminiscent of that found in Gumblar," security researchers at Trend Micro explain.

Checks on the hacker controller website involved in the attack reveal that it was registered on 4 June by the same Ukranian gang that ran the earlier Gumblar attack back in March.

Trend Micro informed Best Buy of the attack, and is reportedly in the process of cleaning up its site.

A full write-up of the attack, complete with screenshots, can be found in a blog posting by Trend Micro here.
--
Norton 2010 BETA + Online Armor Free + Router/SPI
to forum · permalink · · 2009-07-03 09:49:15 · Reply to this
-
Forums » Up and Running » Security » SecurityTorrentreactor breach serves potent exploit »
« Security Software Updates - 02 Jul 2009  

Sunday, 08-Nov 20:45:02 Terms of Use | Privacy Policy | Hosting by www.nac.net - DSL,Hosting & Co-lo | feedback | contact
over 10 years online! © 1999-2009 dslreports.com.
page compression OFF
Most commented news this week
· [156] Cable Uncapper Faces Criminal Charges
· [140] AT&T Sues Verizon Over 3G Ads
· [112] Why Run Fiber When You Can Run Ads That Pretend You Do?
· [108] Comcast Is Simply Getting Huge
· [93] Apple Cooking Up New $30 A Month TV Service?
· [83] Bits Of ACTA Agreement Leaking Out
· [80] Will 'Three Strikes' Come To The United States?
· [78] Verizon To Double Smartphone ETFs?
· [77] Verizon: Droid Tethering Will Cost $30 Extra
· [73] Comcast, NBC Deal Almost Complete
Most people now reading
· My cat is reluctant to exercise. [General Questions]
· [NFL] Week 9 Games Thread [Sports Chat]
· [Rant] Brand New 'Jasper' Xbox360 - RRoD Hardware Failure [Rants, Raves, and Praise]
· 3.x Feral Druid - Bear Tanking Guide [World of Warcraft]
· Hit and run [General Questions]
· no Globalive/Wind Mobile in Canada [TekSavvy]
· for all the bell haters out there. [TekSavvy]
· [WIN7] Which Services in Win 7 Have You Turned Off? [Microsoft Help]
· [WotLK] Whats the level 80 pve spec for mages? [World of Warcraft]
· Massive Slowdowns? [cover,1584]