Finjan Finds a Thousand Websites Infected by Asprox
According to Finjan, there are over 1,000 Websites infected by Asprox, an attack toolkit that exploits known vulnerabilities in a site's programming software and then inserts an attack code. This attack code subsequently hunts for vulnerabilities on the user's browser, and if it finds any, it would download malicious programs onto that user's computer.
Furthermore, the toolkit first do a Google search for Webpages with the .asp file extension. On finding one, it launches an SQL injection to add a direction to the malicious program with the help of an iframe (SCRIPT) tag. The most severe attack in the recent past was in April when IT PRO reported that such an SQL attack had affected a massive number of Websites.
In the current series of Web attacks, Finjan said that the sites...
» SPAMfighter News - 29-07-2008