Malware Pulls an “Italian Job”

This is a pretty crazy article, and the indication that 80% of the sites were at the same large italian hosting provider. Well it looks like some script kiddies did something more than just ./obb target. Imagine having access to half or a quarter of an ISP’s machines, for dDoS, spam and phishing.  Malware Pulls an "Italian Job" – A number of readers sent us word about a malware attack that has been underway since Saturday that began with the compromise of more than 1,100 mostly Italian Web sites. Websense claims that more than 10,000 sites have been infected by now, 80% of them in Italy. There are indications that most of the Italian sites are resident at the same large Italian hosting provider. Trend Micro reports on the attack, which is launched from a malicious Iframe tag inserted into pages on compromised sites. For visitors to these sites, this begins a cascade of "drive-by" malware downloads if one of several targeted vulnerabilities is available and unpatched. The first page to which visitors are redirected by the Iframe hosts a recent version of Mpack attack software. Panda has a month-old report on Mpack (PDF) that provides copious detail about its nefarious ways. Read more of this story at Slashdot.

This is a pretty crazy article, and the indication that 80% of the sites were at the same large italian hosting provider. Well it looks like some script kiddies did something more than just ./obb target. Imagine having access to half or a quarter of an ISP’s machines, for dDoS, spam and phishing. 

Malware Pulls an "Italian Job"A number of readers sent us word about a malware attack that has been underway since Saturday that began with the compromise of more than 1,100 mostly Italian Web sites. Websense claims that more than 10,000 sites have been infected by now, 80% of them in Italy. There are indications that most of the Italian sites are resident at the same large Italian hosting provider. Trend Micro reports on the attack, which is launched from a malicious Iframe tag inserted into pages on compromised sites. For visitors to these sites, this begins a cascade of "drive-by" malware downloads if one of several targeted vulnerabilities is available and unpatched. The first page to which visitors are redirected by the Iframe hosts a recent version of Mpack attack software. Panda has a month-old report on Mpack (PDF) that provides copious detail about its nefarious ways.

Read more of this story at Slashdot.


Did you like this article?


0 Shares:
You May Also Like

OiNK.cd Servers Raided, Admin Arrested

The Administrator of the most popular private Torrent Trackers OiNk.cd was arrested. The 24-year-old man from Middlesbrough was arrested. The British and Dutch Police stated that they confiscated the OiNk.cd servers in Amsterdam last week, however reports of the site still being active and fully functional 24 hours ago.
Read More

Want a Google Reader equivalent, then check out Tiny Tiny RSS 1.2.12

When I firsted looked at the this application, I thought it was going to look ugly and have no functionallity. I mean after looking at Google Reader and using it for some time, it really was another good Google Application. And it was made to make it easy to read and sort RSS feeds. One look at the demo, and I was hooked. It has some common features that Google Reader does, starred items and labels. I just wonder if you can plop and authentication/user account creation on it so that you can offer your own branded reader similar to Googles. TinyTiny RSS 1.2.12 Demo!
Tiny Tiny RSS 1.2.12 (Default branch) - Screenshot Tiny Tiny RSS is a Web-based news (RSS, RDF, or Atom) feed aggregator designed to allow you to read news from any location, while feeling as close to a real desktop application as possible.
License: GNU General Public License (GPL)
Changes:
This release fixes reported bugs, adds the zh_CN translation, and adds various minor improvements.

[FreshMeat]
Read More

Microsoft adds Virtual Machine additions for Linux

Microsoft has released an Update to its Virtual Server 2005 R2 SP1. This update improves on the interoperability of running "Qualified" Linux Operating Systems as guests or Virtual Machines. With added support for SuSE Enterprise Server 10, Guest and Host time synchronization, SCSI hard disk emulation and more! The Qualified Linux Operating Systems don't include Debian, Ubuntu or any Unix/BSD OS. :(
Read More

Fortier & Co. Makes Stylin’ Body Armor

Fortier & Co. Makes Stylin’ Body Armor -

Those of our readers who are aspiring rap artists should pay close attention. Frontier & Co. works with big name clothing designers like Burberry, YSL, Kenneth Cole, etc. to design body armor that blends in naturally with your apparel. Take for instance this beautiful trenchcoat from Burberry. It uses ballistic fibers that are stronger than steel, yet lightweight, to protect you from oncoming bullets. It also doubles as an incredibly handsome coat.

Unfortunately, protection and style do not come cheap. The aforementioned coat will set you back $2195 for the basic model. That means you could end up spending some serious cash if you’re worried about being taken out by an AK-47.

Fortier & Co. Body Armor [Luxist]

[CrunchGear]
Read More