Security researchers from cloud security provider Zscaler warn that technology website geek.com was compromised and many of its pages are executing drive-by download attacks against visitors.
Geek.com is one of the oldest technology news websites around, dating back to 1996, the dawn of the commercial World Wide Web.
Attackers have managed to inject rogue IFrames into different portions of the site, both within articles and the site's main pages like home, about us, etc.
According to Umesh Wanve, a senior security research engineer at Zscaler, there are multiple infections and the iframes take visitors to different malicious websites.
One example is the rogue code injected into a May 13 article about Call of Duty: Modern Warfare 3 details being leaked, which redirects visitors to an exploit kit.
These kits perform various checks to determine what versions of certain program users have installed on their computers and then serve exploits for vulnerabilities in those products.
The most commonly used applications like Java Runtime Environment, Flash Player, Adobe Reader or the browser itself are usually targeted.
"
As this is first article is highlighted and 'Call of Duty' is a very popular game, one can assume that many people have fallen victim to this attack," Mr. Wanve says.
Drive-by download attacks are currently one of the main malware distribution channels on the Internet. They are very dangerous because in most cases they are completely transparent to victims.
"
Unfortunately, we see hundreds of attacks such as this each and every day. Many legitimate websites are being compromised by taking advantages of poor coding practices in web applications," the Zscaler security researcher says.
Users can protect themselves by keeping all of they software up to date, including the operating system itself, and running antivirus products capable of scanning web traffic. Mozilla Firefox users can also use advanced extensions such as
NoScript.
Find us on Google+
No user comments yet.
Be the first to express your opinion!
