Malware Pulls an “Italian Job”

This is a pretty crazy article, and the indication that 80% of the sites were at the same large italian hosting provider. Well it looks like some script kiddies did something more than just ./obb target. Imagine having access to half or a quarter of an ISP’s machines, for dDoS, spam and phishing.  Malware Pulls an "Italian Job" – A number of readers sent us word about a malware attack that has been underway since Saturday that began with the compromise of more than 1,100 mostly Italian Web sites. Websense claims that more than 10,000 sites have been infected by now, 80% of them in Italy. There are indications that most of the Italian sites are resident at the same large Italian hosting provider. Trend Micro reports on the attack, which is launched from a malicious Iframe tag inserted into pages on compromised sites. For visitors to these sites, this begins a cascade of "drive-by" malware downloads if one of several targeted vulnerabilities is available and unpatched. The first page to which visitors are redirected by the Iframe hosts a recent version of Mpack attack software. Panda has a month-old report on Mpack (PDF) that provides copious detail about its nefarious ways. Read more of this story at Slashdot.

This is a pretty crazy article, and the indication that 80% of the sites were at the same large italian hosting provider. Well it looks like some script kiddies did something more than just ./obb target. Imagine having access to half or a quarter of an ISP’s machines, for dDoS, spam and phishing. 

Malware Pulls an "Italian Job"A number of readers sent us word about a malware attack that has been underway since Saturday that began with the compromise of more than 1,100 mostly Italian Web sites. Websense claims that more than 10,000 sites have been infected by now, 80% of them in Italy. There are indications that most of the Italian sites are resident at the same large Italian hosting provider. Trend Micro reports on the attack, which is launched from a malicious Iframe tag inserted into pages on compromised sites. For visitors to these sites, this begins a cascade of "drive-by" malware downloads if one of several targeted vulnerabilities is available and unpatched. The first page to which visitors are redirected by the Iframe hosts a recent version of Mpack attack software. Panda has a month-old report on Mpack (PDF) that provides copious detail about its nefarious ways.

Read more of this story at Slashdot.


Did you like this article?


0 Shares:
You May Also Like

KDE 4 Beta 3 – Screenshot Tour

A rather in-depth screenshot tour of the new KDE 4 beta 3 booted from a LiveCD.
Stephan Binner has released a new version of his KDE Four Live CD. This version uses a recent SVN snapshot and works quite well. While I had some trouble testing the newest KDE 4 Beta release on my test machine, the KDE Four LiveCD works surprisingly well. According to Stephan the version used on this LiveCD is KDE 4 Beta 3 plus a set of recent patches.
See the full Screenshot tour
Read More

Error’d: More Like Didgeridon’t! 4G Australian Time Zone Application

Error'd: More Like Didgeridon't! -

If you were tasked with building a time zone synching application, you could probably do it in less than 1MB. Maybe you Linux guys could write it in one line of Perl (or at least brag about having the ability to write it in one line of Perl). Hell, maybe you'd just use the built-in synching functionality in your favorite OS. Anyhow, I can't imagine the crazy Western Australian rules for calculating time that make this software baloon to 4GB.


(submitted by Marty)

 

 

[The Daily WTF]
Read More

CE-Oh no he didn’t, part XXXV: NBC sez piracy hurts ‘corn growers’

CE-Oh no he didn't, part XXXV: NBC sez piracy hurts 'corn growers' -

Filed under: ,

Although some may argue that piracy is (at least on some level) beneficial, it looks like NBC has taken that sentiment to the opposing extreme with its latest comments. In a purported filing with the FCC calling for enhanced regulation of the internet in an attempt to stifle evil P2P activity, NBC blurted out a string of text that it surely hoped would be overlooked. Alas, hardly any ridiculous claims go unseen these days, so now we're faced with this gem: "In the absence of movie piracy, video retailers would sell and rent more titles. Movie theaters would sell more tickets and popcorn. Corn growers would earn greater profits and buy more farm equipment." There's absolutely no need for us to pick apart the aforementioned quote, after all, we're fairly certain the absurdity shines right through on its own.

[Via TechDirt, image courtesy of Monsanto]

 

Read | Permalink | Email this | Comments


Office Depot Featured Gadget: Xbox 360 Platinum System Packs the power to bring games to life!

[EnGadget]
Read More

Dell Refuses to Sell Ubuntu to Business

Dell has only been offering Ubuntu for over a month now. I haven't heard all that much in regards to their Support, I wonder if Microsoft is giving dell $$ to not Support Ubuntu on computers sold for Home Office/Business purposes?
Dell Refuses to Sell Ubuntu to Business - An anonymous reader writes "I had a surreal experience with Dell today. My boss asked me to order a new computer for our small, non-profit business. Wanting to support Dell in their decision to sell computers with Ubuntu installed, I decided to order one. First, I talked to a small business representative, who informed me that I could not order one of the Ubuntu-based computers through the small business department. I had to go through the "home and home office" department. I called the Home office department. I asked the representative if I could buy one of the ubuntu computers for my company. She said (and I quote), "these Dell computers are designed for personal use only, as long as you use it for personal use, you can purchase one." So I lied and said I would.... Next, I tried to buy it on our business credit card. They would have none of that. She told me that I had to buy it through a personal card. Now, as a non-profit, our business does not pay sales tax (10% in Tennessee). Had I bought it with my own card, I would have had to pay tax (~$90), which my company would not have reimbursed me for. So.....no Dell today."

Read more of this story at Slashdot.

[Slasdot]
Read More