A former antivirus analyst ostracized by the AV community for unethical behavior is accusing Kaspersky Lab of injecting malicious code into his newly launched website. Researchers with the Russian antivirus vendor portray the former white hat as a cyber-criminal associated with the Sinowal gang.Peter Kleissner is an ... |
29 October 2009
10:15 GMT |
 |
|
Security researchers warn that a new injection attack has infected thousands of websites with malicious IFrames. In order to avoid detection, the rogue IFrames get their src attribute through an onload JavaScript event. The infection was first spotted by malware analysts from antivirus vendor Sophos on the website o... |
26 October 2009
10:40 GMT |
|
|
Security researchers warn that the Gumblar Web threat has returned with a more potent version. The new iteration features serious changes in architecture, making it more resilient to takedown attempts, and also serves new exploits. In May 2009 the number of websites compromised due to a new mass Web injection attack... |
22 October 2009
07:59 GMT |
|
|
Security researchers advise that a new mass compromise attack is underway and has affected over 62,000 URLs to date. A rogue IFrame injected into the compromised Web pages loads a cocktail of exploits and malware from other domains.Web security company ScanSafe has been monitoring this new threat and advises that the... |
25 August 2009
05:52 GMT |
|
|
Websites belonging to UK's national security agency, the MI5 (Millitary Intelligence, Section 5) and the World Health Organization (WHO) have been found vulnerable to cross-site scripting attacks. The weaknesses allow attackers to inject rogue IFrames, prompt JavaScript alerts or redirect visitors to other poten... |
22 July 2009
07:33 GMT |
|
|
Torrentreactor, one of the largest torrent indexers, has been compromised by unknown attackers who injected a hidden IFrame into its pages. The IFrame loads malicious code from a remote server that attempts to exploit software on visitors' computers and infect them with malware. The incident has been reported b... |
2 July 2009
06:04 GMT |
|
|
Security researchers from Websense warn that a new wave of web injection attacks is rapidly making thousands of victims. The new complex threat, dubbed Nine-Ball, features obfuscated code, multi-level redirection, visitor filtering and attempts to exploit multiple vulnerabilities found in popular applications. This ... |
19 June 2009
08:11 GMT |
|
|
Researchers from net security company Websense warn that a particular section of the MSN Canada website has fallen victim to hackers who injected rogue code into a page used for redirection. The code is obfuscated and loads content from a domain associated with malware distribution. The msn.ca website redirects to s... |
12 June 2009
09:01 GMT |
|
|
A cross-site scripting vulnerability discovered in the website of RBS WorldPay allows attackers to launch efficient phishing attacks against customers. The same flaw can also be exploited to serve malware or prompt rogue alerts. The XSS weakness has been discovered and documented by a Team Elite member, going by the... |
23 May 2009
06:22 GMT |
|
|
Dangerous cross-site scripting vulnerabilities have been discovered in several PayPal websites, potentially facilitating phishing and other attacks. One of the proof-of-concept attacks demonstrates how an arbitrary IFrame can be injected into the PayPal merchant account registration form, over SSL. The vulnerabiliti... |
13 May 2009
06:11 GMT |
|
|
A self-confessed white-hat hacker has published proof-of-concept attacks against websites connected to global IT security vendor McAfee. XSS vulnerabilities allow for an IFrame injection and rogue redirection. Methodman, a member of the Team Elite programming outfit, has published screenshots of the flaws he found i... |
4 May 2009
05:54 GMT |
|
|
Websites belonging to Symantec and Kaspersky Labs, two of the biggest global providers of security solutions, have been found to be vulnerable to cross-site scripting attacks. Ill-intent individuals could have exploited the flaws to steal authentication cookies or inject rogue IFrames and other potentially malicious ... |
16 April 2009
07:08 GMT |
|
|
Researchers from IT communications security company Websense warn that the website of Portugal's Embassy in India has been compromised by malware distributors and is currently attempting to run exploits for no less than six vulnerabilities in different software packages. Several rogue IFrames have been injected... |
21 March 2009
07:30 GMT |
|
|
Security researchers from Sophos anti-virus warn that a malicious IFrame has been injected into the website of the Ethiopian Embassy in Washington, D.C. In an unrelated incident, the Embassies of Republic of Azerbaijan in Hungary and Pakistan have had their websites compromised in a similar manner. "The Embassy of E... |
17 March 2009
08:26 GMT |
|
|
