republican-creole
Search:  

 
theme to black backgroundlet page decide theme
HomeFind ServiceReviewsISP NewsFAQsForumsToolsDatabaseAbout 
 
   All ForumsHot TopicsGallery






how-to block ads


 
Forums » Up and Running » Security » Security » Latin Best Buy surfers sprayed by drive-by download malware
Uniqs:
628		 Share Topic:
RSS topic:
toggle:
flat / full
normal / watch
Posting:
Post a:
Post a:
Links: ·Hijack This logs? ·Panda Free Tools ·Vundo Removal
Torrentreactor breach serves potent exploit »
« Security Software Updates - 02 Jul 2009  

Stem Bolt
Premium
join:2002-11-08
Cleveland, OH

Latin Best Buy surfers sprayed by drive-by download malware

»www.theregister.co.uk/2009/07/03···_attack/

»blog.trendmicro.com/
quote:
Hackers have invaded the Best Buy website to plant exploit code targeted at South and central American surfers.

The villanos have manipulating the page that allows surfers, visiting the site from Latin America, to select language preferences between either Spanish or English. Beneath layers of concealment, surfers are redirected towards a site that serves up exploit code - specifically the Luckysploit web exploit kit - via an iFrame.

"The Luckysploit web exploit kit and the obfuscation seen is reminiscent of that found in Gumblar," security researchers at Trend Micro explain.

Checks on the hacker controller website involved in the attack reveal that it was registered on 4 June by the same Ukranian gang that ran the earlier Gumblar attack back in March.

Trend Micro informed Best Buy of the attack, and is reportedly in the process of cleaning up its site.

A full write-up of the attack, complete with screenshots, can be found in a blog posting by Trend Micro here.
--
Norton 2010 BETA + Online Armor Free + Router/SPI
permalink · 2009-07-03 09:49:15 · Print · Reply to this
Forums » Up and Running » Security » SecurityTorrentreactor breach serves potent exploit »
« Security Software Updates - 02 Jul 2009  

Sunday, 29-Nov 06:46:41 Terms of Use | Privacy Policy | Hosting by www.nac.net - DSL,Hosting & Co-lo | feedback | contact
over 10 years online! © 1999-2009 dslreports.com.republican-creole
page compression OFF
Most commented news this week
· [122] Time Warner Cable Fires Broadside At Broadcasters
· [112] New AT&T Ad Campaign Hits Back At Verizon
· [96] Apple Joins AT&T Verizon Snark Fest
· [87] New Bill Takes Aim At Higher Verizon ETFs
· [80] TiVo Sees Record Customer Losses
· [73] Weekend Open Thread
· [72] Verizon CEO: Hulu Will Be Dead Soon
· [69] In-Flight Internet Headed For Bumpy Landing?
· [62] Thanksgiving Open Thread
· [40] EFF Wages War On Fine Print
Most people now reading
· Windows 7 boot manager editing questions [Microsoft Help]
· ToC 4th boss - Preliminary Strategy for Twin Valkyr [World of Warcraft]
· 3.x Feral Druid - Bear Tanking Guide [World of Warcraft]
· Using DIR-615 C1/3.01 with Trendnet TEW-652BRP in N Mode [D-Link]
· [WIN7] Outlook express under Windows 7? [Microsoft Help]
· Deleted a partition... accidentally [Microsoft Help]
· [FREEZING] Spybost S&D Updater [Security]
· Connecting to Google Voice Via SIP [VOIP Tech Chat]
· [Newsgroups] Newzleech down? [Filesharing Software]
· Blue Ray: Samsung BD-P3600 or LG BD390 [Audio/Video Chat]