Spyware Warrior Spyware Warrior
Help with Spyware, Hijacking & Other Internet Nuisances
 
FAQ :: Search :: Memberlist :: Usergroups :: Register
Profile :: Log in to check your private messages :: Log in

New Adware Scheme Takes Advantage of IE Vulnerabilities

 
Post new topic   Reply to topic    Spyware Warrior Forum Index -> Spyware/Adware in the News
View previous topic :: View next topic  
Author Message
wawadave
Warrior Obsessed


Joined: 25 Jan 2004
Last Visit: 24 Jul 2009
Posts: 3448
Location: Illegitimus non carborundum

PostPosted: Thu Jun 10, 2004 8:54 am    Post subject: New Adware Scheme Takes Advantage of IE Vulnerabilities Reply with quote

New Adware Scheme Takes Advantage of IE Vulnerabilities
A malicious adware creator is taking advantage of two
vulnerabilities in Microsoft Internet Explorer (IE) to surreptitiously
install adware products and pop-up ad generators on users' computers
as they browse the Web. The flaws, which let attackers run code on
victims' machines and let malicious code bypass IE's security zones,
were only recently discovered.
"We consider that any use of an exploit to run a program is a
criminal use," Microsoft Security Program Manager Stephen Toulouse
said. "We are going to work aggressively with law enforcement to
prosecute individuals or companies that do so." Toulouse said that the
company is now working with the Federal Bureau of Investigation (FBI)
to track down the culprits and that Microsoft will likely issue an IE
patch to fix the problem soon instead of waiting for next month's
regularly scheduled batch of security fixes.
Although reports vary, the malicious code apparently installs an
ILookup search toolbar that changes IE's home page and connects to
adware-related sites, generating pop-up windows and, occasionally,
even desktop shortcuts. The effects are similar but not identical to
the behavior I saw during a recent Trojan horse attack, which I've
documented in three parts in Windows & .NET Magazine UPDATE (see the
URLs below). In my case, my machine was infected after I inadvertently
turned off Windows Firewall in Windows XP Service Pack 2 (SP2) and
used Google to search for video game hints. One of the pages that came
up in the Google search results loaded the offending code.
_________________
RFID tags! SPYWARE
Tired of proprietary Cor-pirationware?
http://www.openoffice.org/
Installing Vista http://tinyurl.com/2l9qyd
Back to top
View user's profile Send private message Send e-mail Visit poster's website
iceblue
Warrior Guru


Joined: 18 Jan 2004
Last Visit: 11 Apr 2006
Posts: 392
Location: Sydney

PostPosted: Thu Jun 10, 2004 1:54 pm    Post subject: Reply with quote

That link does go to >> Grid.org is a single destination site for large-scale research projects powered by the United Devices grid computing solution, Grid MP Global, but not to the article.
However I found the Grid.org project pretty fascinating. Are you involved with this Dave and want to tell some more?
_________________
Smile Travel safely ! Smile
Back to top
View user's profile Send private message
wawadave
Warrior Obsessed


Joined: 25 Jan 2004
Last Visit: 24 Jul 2009
Posts: 3448
Location: Illegitimus non carborundum

PostPosted: Thu Jun 10, 2004 2:12 pm    Post subject: Reply with quote

ice
yes i,m involved in the project. by using my computer as one of the thousands involved in crunching for cancer.
pc911 is the group i crunch for.is a forum i have been a member of for a few years. but only been crunching 45 days so far. my old cpu is slow 800mhz i know most have fsb that fast. but at least i,m helping. and so can you. why waste unused cpu cycles when you can help fight cancer!
jmho

_________________
RFID tags! SPYWARE
Tired of proprietary Cor-pirationware?
http://www.openoffice.org/
Installing Vista http://tinyurl.com/2l9qyd
Back to top
View user's profile Send private message Send e-mail Visit poster's website
suzi
Site Admin


Joined: 27 Jul 2003
Last Visit: 24 Oct 2014
Posts: 10331
Location: at the beach

PostPosted: Mon Jun 14, 2004 8:45 pm    Post subject: To Skooby Reply with quote

Skooby - I move your post to it's own thread in the Spyware Removal forum here:

http://www.spywarewarrior.com/viewtopic.php?t=3070
_________________
Former Microsoft MVP 2005-2009, Consumer Security
Please do not PM or Email me for personal support. Post in the Forums instead and we will all learn. Smile
Back to top
View user's profile Send private message Visit poster's website
xaanru
Warrior


Joined: 02 Jul 2004
Last Visit: 14 Jun 2013
Posts: 77

PostPosted: Tue Jul 20, 2004 7:50 am    Post subject: Reply with quote

I ran into this same problem on the EZboard that I admin.

Article is at:

http://news.com.com/Pop-up+toolbar+spreads+via+IE+flaws/2100-1002_3-5229707.html?tag=nefd.top

Into on the virus/exploit is at:

http://us.mcafee.com/virusInfo/default.asp?id=description&virus_k=101033

My virus scanner blocked this garbage, and after reading the description on Mcafee, I added the listed site to my restricted sites.

I have complained to EZboards about the fact they are infected. I'll have ot see if they respond.
Back to top
View user's profile Send private message
Display posts from previous:   
Post new topic   Reply to topic    Spyware Warrior Forum Index -> Spyware/Adware in the News All times are GMT - 8 Hours
Page 1 of 1

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum



smartBlue Style © 2002 Smartor
Powered by phpBB © 2001, 2002 phpBB Group