According to statistics released by a Web security vendor, the third quarter of 2009 was characterized by a spike in Web-based malware infections. In total, over 640,000 sites, amounting to 5.8 million web pages, were infected by 52,000 distinct threats during this period. The report was released by Dasient, a compa... |
28 October 2009
08:15 GMT |
 |
|
Security researchers warn that a new injection attack has infected thousands of websites with malicious IFrames. In order to avoid detection, the rogue IFrames get their src attribute through an onload JavaScript event. The infection was first spotted by malware analysts from antivirus vendor Sophos on the website o... |
26 October 2009
10:40 GMT |
|
|
A hacker broke into the database of the UK Parliament website by exploiting an SQL injection vulnerability. The incident reveals very poor and questionable password security practices on behalf of the website administration.The security hole on parliament.uk was discovered by a Romanian greyhat hacker going by the on... |
31 August 2009
07:02 GMT |
|
|
The Apache Project's Infrastructure Team was forced to take its primary servers offline yesterday, after discovering that unknown hackers uploaded and executed malicious code on them. The attackers apparently used a stolen SSH authentication key associated with a backup account to break in. The attack started d... |
29 August 2009
04:01 GMT |
|
|
Security researchers advise that a new mass compromise attack is underway and has affected over 62,000 URLs to date. A rogue IFrame injected into the compromised Web pages loads a cocktail of exploits and malware from other domains.Web security company ScanSafe has been monitoring this new threat and advises that the... |
25 August 2009
05:52 GMT |
|
|
The official websites of at least eighteen U.S. Representatives were defaced this month by an Indonesian hacker who sprayed e-graffiti over them. The Chief Administrative Officer for the House of Representatives blames a web design company, which issued weak administrative passwords.Each Representative in the U.S. Co... |
7 August 2009
06:22 GMT |
|
|
Torrentreactor, one of the largest torrent indexers, has been compromised by unknown attackers who injected a hidden IFrame into its pages. The IFrame loads malicious code from a remote server that attempts to exploit software on visitors' computers and infect them with malware. The incident has been reported b... |
2 July 2009
06:04 GMT |
|
|
Security researchers from web security vendor Finjan report that the website of India's Institute of Remote Sensing has been compromised by hackers. An injected IFrame loads exploits from the LuckySploit attack toolkit against visitors. "Last week, we detected that another website from the Government of India &... |
30 June 2009
06:23 GMT |
|
|
Security researchers from antivirus vendor Prevx have uncovered a major security breach that affects more than 68,000 websites, including some high-profile ones. FTP credentials belonging to the likes of Amazon, Cisco, BBC, Symantec, McAfee, Monster, or even Bank of America have been found on a Zbot dumping site host... |
27 June 2009
06:32 GMT |
|
|
Security researchers from Websense warn that a new wave of web injection attacks is rapidly making thousands of victims. The new complex threat, dubbed Nine-Ball, features obfuscated code, multi-level redirection, visitor filtering and attempts to exploit multiple vulnerabilities found in popular applications. This ... |
19 June 2009
08:11 GMT |
|
|
Researchers from net security company Websense warn that a particular section of the MSN Canada website has fallen victim to hackers who injected rogue code into a page used for redirection. The code is obfuscated and loads content from a domain associated with malware distribution. The msn.ca website redirects to s... |
12 June 2009
09:01 GMT |
|
|
Researchers from Internet security vendor Websense warn of a new wave of web attacks that has resulted in 40,000 websites being compromised. The new threat injects malicious obfuscated JavaScript code, which subsequently loads and attempts to execute numerous exploits from a third-party server. According to the comp... |
3 June 2009
06:25 GMT |
|
|
ScanSafe, a global provider of SaaS Web security, has announced that the official website of multiple Grammy Award-winning artist Paul McCartney has been compromised by hackers. The cybercrooks injected a malicious hidden IFrame into the pages, which was serving multiple exploits. The incident took place shortly bef... |
9 April 2009
08:59 GMT |
|
|
The website of the Embajada de la India en España has been compromised by attackers who injected malware serving code into its pages, warn security researchers. The malicious application served contains a rootkit component, which attaches itself to the svchost.exe process. Initially reported by Ismael Valenzu... |
30 January 2009
06:07 GMT |
|
|
