Malware Pulls an “Italian Job”

This is a pretty crazy article, and the indication that 80% of the sites were at the same large italian hosting provider. Well it looks like some script kiddies did something more than just ./obb target. Imagine having access to half or a quarter of an ISP’s machines, for dDoS, spam and phishing.  Malware Pulls an "Italian Job" – A number of readers sent us word about a malware attack that has been underway since Saturday that began with the compromise of more than 1,100 mostly Italian Web sites. Websense claims that more than 10,000 sites have been infected by now, 80% of them in Italy. There are indications that most of the Italian sites are resident at the same large Italian hosting provider. Trend Micro reports on the attack, which is launched from a malicious Iframe tag inserted into pages on compromised sites. For visitors to these sites, this begins a cascade of "drive-by" malware downloads if one of several targeted vulnerabilities is available and unpatched. The first page to which visitors are redirected by the Iframe hosts a recent version of Mpack attack software. Panda has a month-old report on Mpack (PDF) that provides copious detail about its nefarious ways. Read more of this story at Slashdot.

This is a pretty crazy article, and the indication that 80% of the sites were at the same large italian hosting provider. Well it looks like some script kiddies did something more than just ./obb target. Imagine having access to half or a quarter of an ISP’s machines, for dDoS, spam and phishing. 

Malware Pulls an "Italian Job"A number of readers sent us word about a malware attack that has been underway since Saturday that began with the compromise of more than 1,100 mostly Italian Web sites. Websense claims that more than 10,000 sites have been infected by now, 80% of them in Italy. There are indications that most of the Italian sites are resident at the same large Italian hosting provider. Trend Micro reports on the attack, which is launched from a malicious Iframe tag inserted into pages on compromised sites. For visitors to these sites, this begins a cascade of "drive-by" malware downloads if one of several targeted vulnerabilities is available and unpatched. The first page to which visitors are redirected by the Iframe hosts a recent version of Mpack attack software. Panda has a month-old report on Mpack (PDF) that provides copious detail about its nefarious ways.

Read more of this story at Slashdot.


Did you like this article?


0 Shares:
You May Also Like

Seagate unveils turmoil-proof EE25.2 hard drive

Seagate unveils turmoil-proof EE25.2 hard drive - As if stuffing a quarter terabyte onto a single Barracuda platter and finally matching Hitachi in the 1TB realm weren't enough to gloat about, Seagate is now unveiling a hard drive aimed squarely at those reading this from the Amazon Rainforest (or a vanilla construction area, but you understand). The second-generation SATA EE25 drive -- easily dubbed the EE25.2 -- is available in sizes up to 80GB and can handle extreme temperatures, sensational heights, 'round the clock operation, 90-percent humidity, and drops / shocks that would likely put you out of commission before your data. No word yet on pricing nor availability, but don't expect 80 gigabytes of nearly indestructible storage to come without a premium.

 

Read | Permalink | Email this | Comments


Office Depot Featured Gadget: Xbox 360 Platinum System Packs the power to bring games to life!

[EnGadget]
Read More

La Fontenna Extends Range Of FON Wireless Goodness

La Fontenna Extends Range Of FON Wireless Goodness -

fontenna.jpegThis is simple really: FON lets you share your wireless Internet connection with FON community members (called Foneros) and in return you get to hop on any other member’s wireless connection free of charge, anywhere in the world. The La Fonera is the specially designed $39.95 Wi-Fi access point that lets you securely share your wireless connection. The $19.95 Lafontenna is a directional antenna that extends your FON Wi-Fi coverage area up to five times farther than the Fonera’s standard range.

Any questions?

[CrunchGear]
Read More

First Google Android Phone Approved by the FCC

The first Google Android Phone has been approved by the FCC. The HTC dream will be the first Android phone.
Today, the news broke that the HTC Dream, the first handset to run Android (aka "the Google Phone") has been approved by the FCC. In the documents provided, it appears that we have now a release date for this highly anticipated phone: November 10th, 2008.
Another challenger appears! Read the full article at readwriteweb.com
Read More

Dell Refuses to Sell Ubuntu to Business

Dell has only been offering Ubuntu for over a month now. I haven't heard all that much in regards to their Support, I wonder if Microsoft is giving dell $$ to not Support Ubuntu on computers sold for Home Office/Business purposes?
Dell Refuses to Sell Ubuntu to Business - An anonymous reader writes "I had a surreal experience with Dell today. My boss asked me to order a new computer for our small, non-profit business. Wanting to support Dell in their decision to sell computers with Ubuntu installed, I decided to order one. First, I talked to a small business representative, who informed me that I could not order one of the Ubuntu-based computers through the small business department. I had to go through the "home and home office" department. I called the Home office department. I asked the representative if I could buy one of the ubuntu computers for my company. She said (and I quote), "these Dell computers are designed for personal use only, as long as you use it for personal use, you can purchase one." So I lied and said I would.... Next, I tried to buy it on our business credit card. They would have none of that. She told me that I had to buy it through a personal card. Now, as a non-profit, our business does not pay sales tax (10% in Tennessee). Had I bought it with my own card, I would have had to pay tax (~$90), which my company would not have reimbursed me for. So.....no Dell today."

Read more of this story at Slashdot.

[Slasdot]
Read More