Malware Pulls an “Italian Job”

  • June 18, 2007
  • 1 minute read
This is a pretty crazy article, and the indication that 80% of the sites were at the same large italian hosting provider. Well it looks like some script kiddies did something more than just ./obb target. Imagine having access to half or a quarter of an ISP’s machines, for dDoS, spam and phishing.  Malware Pulls an "Italian Job" – A number of readers sent us word about a malware attack that has been underway since Saturday that began with the compromise of more than 1,100 mostly Italian Web sites. Websense claims that more than 10,000 sites have been infected by now, 80% of them in Italy. There are indications that most of the Italian sites are resident at the same large Italian hosting provider. Trend Micro reports on the attack, which is launched from a malicious Iframe tag inserted into pages on compromised sites. For visitors to these sites, this begins a cascade of "drive-by" malware downloads if one of several targeted vulnerabilities is available and unpatched. The first page to which visitors are redirected by the Iframe hosts a recent version of Mpack attack software. Panda has a month-old report on Mpack (PDF) that provides copious detail about its nefarious ways. Read more of this story at Slashdot.

This is a pretty crazy article, and the indication that 80% of the sites were at the same large italian hosting provider. Well it looks like some script kiddies did something more than just ./obb target. Imagine having access to half or a quarter of an ISP’s machines, for dDoS, spam and phishing. 

Malware Pulls an "Italian Job"A number of readers sent us word about a malware attack that has been underway since Saturday that began with the compromise of more than 1,100 mostly Italian Web sites. Websense claims that more than 10,000 sites have been infected by now, 80% of them in Italy. There are indications that most of the Italian sites are resident at the same large Italian hosting provider. Trend Micro reports on the attack, which is launched from a malicious Iframe tag inserted into pages on compromised sites. For visitors to these sites, this begins a cascade of "drive-by" malware downloads if one of several targeted vulnerabilities is available and unpatched. The first page to which visitors are redirected by the Iframe hosts a recent version of Mpack attack software. Panda has a month-old report on Mpack (PDF) that provides copious detail about its nefarious ways.

Read more of this story at Slashdot.


Did you like this article?


0 Shares:
Share 0
Tweet 0
Share 0
Share 0
— Previous article

Iran.com sold for $400,000

Next article —

AMD considering getting out of fabrication business

You May Also Like

Featured Windows Download: Manage Multiple Remote Desktop Connections with mRemote

  • by
  • October 15, 2007
LifeHacker has a review up on their site about a little application called 'mRemote'. This is quite a piece of software and you can tell that the developers have spent some time on it. I have always been an advocate of being more organized and efficient. With mRemote everything that you need is in one screen, and everything that was left out with Microsoft's Remote Desktop Connection Client is in mRemote. Tabbed windows, supports RDP, VNC, SSH2 and telnet protocols. There is also a connection manager, so you can setup all your connections and then point and click to connect.
Read More

The Pirate Bay Launches Image Hosting

  • by
  • June 21, 2007
This is awesome. Hopefully this will show the competitors that their service is slow and sometimes over zealous with the deleting of some content. Go Pirate Bay!
The Pirate Bay Launches Image Hosting -

Us pirates know that The Pirate Bay team has been working on several new projects, with one of them becoming a competitor to YouTube. For now though, we’ve been blessed with BayImg, a unique image hosting service from TPB. Unlike sites like Photobucket and Imageshack, who will delete your photos if deemed “unfit”, BayImg lets you upload any image, uncensored, in over 100+ file formats.

So break out those photos of you shooting JFK and upload them without worry. BayImg takes no personal information from you and gives you a url for image deletion in case you got ahead of yourself. Tags are also available for easy browsing. Seems like a great service. So can it take on the big players? It’s quite possible.

The Pirate Bay Launches Uncensored Image Hosting [TorrentFreak]

 [CrunchGear]
Read More

AMD price cuts

  • by
  • October 11, 2007
AMD had to cut some of its pricing for its processors, Intel right now is offering $300 CAD for the Core Duo E6850 3.0Ghz which is a dual core processor. Hopefully Intel will start slashing some of its prices come Q1 2008.
AMD price cuts - Digitimes reports that AMD has chopped prices by 5 to 28 percent [Digg Main]
Read More