Malware Pulls an “Italian Job”

This is a pretty crazy article, and the indication that 80% of the sites were at the same large italian hosting provider. Well it looks like some script kiddies did something more than just ./obb target. Imagine having access to half or a quarter of an ISP’s machines, for dDoS, spam and phishing.  Malware Pulls an "Italian Job" – A number of readers sent us word about a malware attack that has been underway since Saturday that began with the compromise of more than 1,100 mostly Italian Web sites. Websense claims that more than 10,000 sites have been infected by now, 80% of them in Italy. There are indications that most of the Italian sites are resident at the same large Italian hosting provider. Trend Micro reports on the attack, which is launched from a malicious Iframe tag inserted into pages on compromised sites. For visitors to these sites, this begins a cascade of "drive-by" malware downloads if one of several targeted vulnerabilities is available and unpatched. The first page to which visitors are redirected by the Iframe hosts a recent version of Mpack attack software. Panda has a month-old report on Mpack (PDF) that provides copious detail about its nefarious ways. Read more of this story at Slashdot.

This is a pretty crazy article, and the indication that 80% of the sites were at the same large italian hosting provider. Well it looks like some script kiddies did something more than just ./obb target. Imagine having access to half or a quarter of an ISP’s machines, for dDoS, spam and phishing. 

Malware Pulls an "Italian Job"A number of readers sent us word about a malware attack that has been underway since Saturday that began with the compromise of more than 1,100 mostly Italian Web sites. Websense claims that more than 10,000 sites have been infected by now, 80% of them in Italy. There are indications that most of the Italian sites are resident at the same large Italian hosting provider. Trend Micro reports on the attack, which is launched from a malicious Iframe tag inserted into pages on compromised sites. For visitors to these sites, this begins a cascade of "drive-by" malware downloads if one of several targeted vulnerabilities is available and unpatched. The first page to which visitors are redirected by the Iframe hosts a recent version of Mpack attack software. Panda has a month-old report on Mpack (PDF) that provides copious detail about its nefarious ways.

Read more of this story at Slashdot.


Did you like this article?


0 Shares:
You May Also Like

ZAP announces mysterious high-performance electric car

ZAP announces mysterious high-performance electric car -

Filed under:


ZAP (which stands for Zero Air Pollution) announced another new entry to its electric car stable, an as-yet-unnamed sedan that will apparently sell for $30,000. The California based company claims their new model will reach a top speed of 100 mph, and will have a 100-mile range between charges. But here's where this story gets really interesting: ZAP announced a different model back in January which still hasn't seen the light of day, and AutoblogGreen questions whether the company has been using press releases as a method of increasing their stock price for short term cash-flow. Competitors like Tesla have prototypes on the road, but no such luck with ZAP, which certainly raises a number of questions, and definitely gets you thinking about the word vaporware.

Read -- ZAP press release
Read -- AutoblogGreen's take on ZAP

 

Permalink | Email this | Comments


Office Depot Featured Gadget: Xbox 360 Platinum System Packs the power to bring games to life!

[EnGadget]
Read More

MySpace to launch a casual gaming area.

MySpace is trying to drive more visitors to its site, or rather keep the visitors from leaving them for Facebook. It looks as though the games will be provided by a 3rd Party company that has private label games.
MySpace is set to launch a new casual games area on the site early next year, reports The Wall Street Journal. The games will be provided by Oberon Media, a company that specializes in developing private label gaming sites for major Internet brands including Yahoo and Microsoft.
Read More

Goverment Employee uses On Call IT firm to destroy Goverment data

A Goverment Employee used an On Call IT service to perform a "seven level" format on his hard drive that possibly contained federal evidence.
Scott Bloch runs the Office of Special Counsel, an agency charged with protecting government whistleblowers and enforcing a ban on federal employees engaging in partisan political activity.
Read More