Go to the Softpedia homepage


NEWS CATEGORIES:



NEWS ARCHIVE >>
SOFTPEDIA REVIEWS >>
Home / News / Security / Hacking News

Hacking News

"Silent Love China" Launches Massive Web Attack

Serious attack launched from China

By Bogdan Popa, Security and Search Engines Editor

21st of May 2008, 09:01 GMT

Adjust text size:


Hackers are now hunting for IE and RealPlayer vulnerabilities
Enlarge picture
A new attack has been detected on the Internet, no less than 9,000 websites being already affected by an exploit codenamed "Silent Love China". SiliconRepublic.com
writes that the infection attempts to inject some sort of malicious code into popular websites and steal usernames and passwords belonging to visitors. Similar iFrame attacks were spotted in the past but this time, hackers are especially focused on stealing users' information and not on harming the website, Damian Saunders, Citrix official, told the source mentioned above.

"The virus doesn't threaten the owner of the site, it threatens the user. What happens with this type of attack is rather than destroy a website, the hacker plants a code using SQL injection," explains Damian Saunders, manager of Citrix's applications networking group.

What's worse is that the attack is not meant to affect a certain website or, at least, a group or category of websites. Hackers are simply looking for popular vulnerable pages which could bring them an acceptable amount of information. For instance, subscription-based websites which work on a username and password login basis could be among the ones targeted by the attacks, so extra-care is recommended these days for both webmasters and visitors.

And more interesting is the fact that the iFrame injection searches for Internet Explorer and RealPlayer vulnerabilities which, once found, could be used to deploy a Trojan horse on the visitors' computers.

"The problem with this kind of attack is that site owners need to adapt the security of the site almost as continually as the content changes on the site. This can be frustrating. Firms that want to protect themselves and their users from this kind of attack should look to infrastructure-based solutions and make sure their web applications are properly firewalled," Saunders added.

TAGS:

 hack | china | security | iframe


Rating:
Good (3.0/5) 5 vote(s) so far    

Read by 841 user(s) | Add comment | Link to this article
Subscribe to news | Print article | Send to friend

© Copyright 2001-2008 Softpedia
Contact:

 

 

SEARCH THE NEWS ARCHIVE :




Today's News | Yesterday's News | News Archive


MORE RELATED ARTICLES:


Google Users Played for Fools by Cyber Criminals

Anti-Virus Maker Trend Micro Infects Users with Malware via Hacked Website

Mass Web-Based Attacks Prey on Windows

UK and Australian Zombies Pay Better

New SQL Injection Worm Found Loose on the Web

User opinions:

No user comments yet.
Be the first to express your opinion using the form below!

Share your opinion:

Your Name:
Your Email Address:
(will not be used for commercial purposes)
Solve this to prove you're not a bot: =
Your review/opinion:

 






SUBMIT PROGRAM   |   ADVERTISE   |   GET HELP   |   SEND US FEEDBACK   |   RSS FEEDS   |   ENTER NEWS SITE   |   ENGLISH BOARD   |   ROMANIAN FORUM
© 2001 - 2008 Softpedia. All rights reserved.
Softpedia™ and the Softpedia™ logo are registered trademarks of SoftNews NET SRL.		 Copyright Information | Privacy Policy | Terms of Use | Update your software | Archive