| View previous topic :: View next topic |
| Author |
Message |
Nick
Site Admin
Joined: 27 Feb 2004
Last Visit: 28 Aug 2012
Posts: 3913
Location: California
|
 Posted: Thu Aug 30, 2007 7:34 pm Post subject: Bank of India Website Serving Up Malware |
 |
|
Sunbelt Blog reported that the Bank of India website has been seriously compromised. That was about 8 hours ago. I just checked and it is still infected.
Sunbelt Blog
Webpronews.com
Digg it
Malware reported by Sunbelt being served by infected bankofindia.com
Email-Worm.Win32.Agent.l
Rootkit.Win32.Agent.dw
Rootkit.Win32.Agent.ey
Trojan-Downloader.Win32.Agent.cnh
Trojan-Downloader.Win32.Small.ddy
Trojan-Proxy.Win32.Agent.nu
Trojan-Proxy.Win32.Wopla.ag
Trojan.Win32.Agent.awz
_________________
Nick's Security Ticker
 |
|
| Back to top |
|
 |
tripkill201
Warrior
Joined: 24 Jun 2007
Last Visit: 23 Feb 2008
Posts: 175
Location: Approximately 2.3698 billion light years away.
|
| Posted: Thu Aug 30, 2007 8:52 pm Post subject: |
|
|
Wow. That's just interesting. Although I did laugh at the Webpronews article when it said that both websites ran on Windows. 
_________________
The stakes are immense, the task colossal, the time is short. But we may hope — we must hope — that man’s own creation, man’s own genius, will not destroy him. -Albert Einstein |
|
| Back to top |
|
|
suzi
Site Admin
Joined: 27 Jul 2003
Last Visit: 17 May 2013
Posts: 10271
Location: sunny California
|
| Posted: Thu Aug 30, 2007 9:21 pm Post subject: |
|
|
Actually Apache servers get hacked as often, if not more often, than Windows servers. If the server software and server side scripts are not kept updated and patched, along with any web apps, it leaves the door open for hackers. Just like your PC can get infected and 0wned if your OS and programs are not kept patched and updated.
Personally I don't find any humor at all in websites getting hacked.
_________________
Former Microsoft MVP 2005-2009, Consumer Security
Please do not PM or Email me for personal support. Post in the Forums instead and we will all learn.  |
|
| Back to top |
|
|
paperghost
Site Admin
Joined: 28 Aug 2004
Last Visit: 20 Feb 2012
Posts: 2048
Location: On a ROFLcopter
|
| Posted: Thu Aug 30, 2007 9:28 pm Post subject: |
|
|
| The only comedy here is involved in trying to get the people running the site to get the malware taken offline. Not going too well from the sounds of it. |
|
| Back to top |
|
|
suzi
Site Admin
Joined: 27 Jul 2003
Last Visit: 17 May 2013
Posts: 10271
Location: sunny California
|
| Posted: Thu Aug 30, 2007 9:35 pm Post subject: |
|
|
The problem is the malicious iframe link. The malware is actually coming from the site in the iframe link and sites it links to. The iframe sites are known to belong to a criminal group that routinely hack sites to spread malware.
Now that it's daytime in India, hopefully they will be able to take down the malicious code.
http://www.timeanddate.com/worldclock/city.html?n=176
AND they must patch the site, or it will get hacked again.
_________________
Former Microsoft MVP 2005-2009, Consumer Security
Please do not PM or Email me for personal support. Post in the Forums instead and we will all learn. |
|
| Back to top |
|
|
|
