Go to the Softpedia homepage


NEWS CATEGORIES:



NEWS ARCHIVE >>
SOFTPEDIA REVIEWS >>
Home / News / Security / Incidents

Incidents

Over 1,000 Trusted, Government and NHS Sites Compromised

Warning issued by security company Finjan

By George Craciun, Security News Editor

17th of July 2008, 13:29 GMT

Adjust text size:


Finjan issues warning in regard to trusted sites
Enlarge picture
With the aid of its in-the-cloud security tool named SecureBrowsing, Finjan has discovered that sites belonging to the Government, NHS, and numerous respectable businesses have been compromised, the total number of such sites detected this month alone exceeding the 1,000 mark.

It seems that a massive attack has been launched on the Internet at the beginning of May, to which vulnerable sites have fallen victim. Finjan has identified the tool used by the hackers as Asprox, which became popular back in 2007.

"The attack toolkit is designed to first search Google for webpages with the file extension [.asp] and then launch SQL injection attacks to append a reference to the malware file using the SCRIPT tag," says Ayelet Heyman.

Out of the 1,000 unique sites that have been infected, 13% were Government pages and 12% belonged to the Health Care system. Here are some examples of institutions that had their official web page compromised: Marysville PD; the Bahia, Brazil Department of Culture and Tourism; the City of San Francisco; the UK NHS (National Health Service); Coca Cola Brazil; the University of California, and so on.

It must be stated that some of the infection has been dealt with in part of the examples presented above, but there are still numerous other sites that continue to spread malware.

Yuval Ben-Itzhak, Chief Technical Officer with Finjan Israel, comments: "Since the list of these malware serving domains increases every day, we believe this is just the tip of the iceberg for the scope and impact of this attack. Among the compromised websites we found were those of respectable organizations, governmental institutes, healthcare organizations as well as high-ranked websites. It shows again the resourcefulness and flexibility of cybercriminals. It requires proactive security solutions to safeguard organizations against these kinds of mass Web attacks."

TAGS:

 Finjan | malware | SQL | security


Rating:
NOT RATED 0 vote(s) so far    

Read by 422 user(s) | Add comment | Link to this article
Subscribe to news | Print article | Send to friend

© Copyright 2001-2008 Softpedia
Contact:

 

 

SEARCH THE NEWS ARCHIVE :




Today's News | Yesterday's News | News Archive


MORE RELATED ARTICLES:


RPG Thriller Announced by Obsidian

E-mail Message Gets Woman Fired

Private Profile Info Leaked by Facebook

Firefox 3.0.1 Is Available for Download

New York Spammer to Serve a 2.5-Year Sentence

27 Out of 28 Business E-Mails Are Spam

Insider Security Threat on the Increase

Nigella Lawson Web Page Spreads Malware

ScanSafe Reports an Increase in Infected Trusted Sites

The Most Spammed American States Awards

User opinions:

No user comments yet.
Be the first to express your opinion using the form below!

Share your opinion:

Your Name:
Your Email Address:
(will not be used for commercial purposes)
Solve this to prove you're not a bot: =
Your review/opinion:

 






SUBMIT PROGRAM   |   ADVERTISE   |   GET HELP   |   SEND US FEEDBACK   |   RSS FEEDS   |   ENTER NEWS SITE   |   ENGLISH BOARD   |   ROMANIAN FORUM
© 2001 - 2008 Softpedia. All rights reserved.
Softpedia™ and the Softpedia™ logo are registered trademarks of SoftNews NET SRL.		 Copyright Information | Privacy Policy | Terms of Use | Update your software | Archive