Hackers hijack PBS.org
Monday, September 21, 2009
Malicious JavaScript was found on PBS.org after hackers replaced code in the Curious George section of the website.
The hack redirected users who clicked on an image of the curious little monkey to an error page. The error page contained an iframe linked to a third-party .info domain, which hosted a wide array of malware, including exploits targeting Acrobat Reader, AOL SuperBuddy, AOL Radio AmpX and Apple QuickTime.
The web security blog Purewire said that information found on several associated web domains indicates that a criminal was using this exploit and others to build a botnet that he or she is planning to lease. PBS said that the malicious code was removed from the website late Friday. The number of users whose computers were infected is not known.
It is unknown how the hackers gained access to PBS.org in order to plant the malware-spreading JavaScript, but the incident does serve to further highlight the recent trend of criminals using legitimate websites to spread malicious programs and data. Security experts say that caution is necessary during the current wave of malware-related incidents.
Related News:
Web security ends with user - 3.16.2010
No matter how potent an antivirus software or other web security program is, the most important step in defending a computer from malware is vigilance on the part of the user, according to business technology news site Katonda.
Mac users may soon be under attack - 3.16.2010
People buy Macs because they think they don't have to worry about web security. However, according to ZDNet, ransomware and other dangerous forms of malware may soon be a very real problem for Mac users, as cyber criminals begin to understand the best ways to compromise the rapidly growing brand's products.
Forty percent of malware sites hosted in the U.S. - 3.16.2010
While popular opinion dictates that malware often originates in countries like China and Eastern European nations, AVG Technologies recently reported that 40 percent of malware originates on servers hosted within the U.S.
March Madness latest threat to web security - 3.15.2010
The moment the 65-team field for the 2010 NCAA Divsion I Men's Basketball Tournament became public, cyber criminals began their latest attacks on web security.
Banks boost web security with new program - 3.15.2010
A new program designed by web security provider Trusteer allows banks to remotely access computers of its online banking users to investigate potential web and network security breaches.
|
