Latin Best Buy surfers sprayed by drive-by download malware - dslreports.com

republican-creole			Search:
	login · register

	All Forums		Hot Topics		Gallery

how-to block ads

Forums » Up and Running » Security » Security » Latin Best Buy surfers sprayed by drive-by download malware


Search Topic:	Uniqs: 636	Share Topic:	RSS topic:	toggle: flat / full normal / watch	Posting:	Post a:	Post a:

Links: ·Hijack This logs? ·Panda Free Tools ·Vundo Removal

Torrentreactor breach serves potent exploit »
« Security Software Updates - 02 Jul 2009

Author

All Replies

-

Stem Bolt
Premium
join:2002-11-08
Cleveland, OH

Latin Best Buy surfers sprayed by drive-by download malware

»www.theregister.co.uk/2009/07/03···_attack/

»blog.trendmicro.com/

quote:
Hackers have invaded the Best Buy website to plant exploit code targeted at South and central American surfers.

The villanos have manipulating the page that allows surfers, visiting the site from Latin America, to select language preferences between either Spanish or English. Beneath layers of concealment, surfers are redirected towards a site that serves up exploit code - specifically the Luckysploit web exploit kit - via an iFrame.

"The Luckysploit web exploit kit and the obfuscation seen is reminiscent of that found in Gumblar," security researchers at Trend Micro explain.

Checks on the hacker controller website involved in the attack reveal that it was registered on 4 June by the same Ukranian gang that ran the earlier Gumblar attack back in March.

Trend Micro informed Best Buy of the attack, and is reportedly in the process of cleaning up its site.

A full write-up of the attack, complete with screenshots, can be found in a blog posting by Trend Micro here.

--
Norton 2010 BETA + Online Armor Free + Router/SPI

to forum · permalink ·

· 2009-07-03 09:49:15 ·

Topic: Follow · Sitemark · Mark Unread

Forums » Up and Running » Security » Security	Torrentreactor breach serves potent exploit » « Security Software Updates - 02 Jul 2009


Thursday, 10-Dec 08:59:15	Terms of Use \| Privacy Policy \| Hosting by www.nac.net - DSL,Hosting & Co-lo \| feedback \| contact over 10 years online! © 1999-2009 dslreports.com.republican-creole page compression OFF

Most commented news this week
· [200] Sprint Sued For Distracted Driving Death
· [122] AT&T Launching New 24 Mbps U-Verse Tier
· [82] 3G Network Test Says AT&T Is Tops
· [72] Mediacom Unveils 105 Mbps Pricing
· [68] AT&T Hints At Usage-Based iPhone Data Pricing
· [66] Sprint Poised For A Turnaround?
· [66] WPA Cracker: Test WPA-PSK Networks In 20 Minutes
· [51] The Future Of Wi-Fi Is Bright
· [47] Site Leaks Yahoo, Verizon Fed Data Share Pricing
· [45] Microwaving Your Innards Is Not 'Extreme'

Most people now reading
· Cross Server Dungeon Experience [World of Warcraft]
· IMG 1.7 (IMG Updates and Discussion) [Verizon FIOS TV]
· Windows 7 boot manager editing questions [Microsoft Help]
· [How to] Install Asterisk on an Asus WL-520GU router [VOIP Tech Chat]
· Snow on Roof [Home Repair & Improvement]
· Lawyers Claim Palin Hack Suspect's PC Had Spyware [Security]
· [game] CG6 - Gunslinger - Day 1 [Pub Games]
· Hot Girl falls face first down stairs [56k Lookout (Broadband Heavy)]
· Battered Hilt Delimma [World of Warcraft]
· Word of caution to all! Careful what is written on here... [Canadian Broadband]