Malware Distributors Target Imageshack.us
Investigators from Kaspersky the security company disclose that they've detected one fresh drive-by download assault targeting imageshack.us, which destructive cyber-criminals have launched.
Importantly, ImageShack is an Internet site, which presents video-sharing, photo-sharing and image-hosting free-of-charge.
A malicious advertisement from the assault is taken down from a hidden URL Web-domain namely mediagroup.com, while it produces an attack code for a known vulnerability CVE-2010-4452 within Java, which already has a patch.
The attack code reportedly, tries to load Trojan.Win32.TDSS.cgir onto computers accessing the website, while Trojan.Win32.TDSS.cgir belongs to a rootkit family, which's capable of accessing Windows, but proves very hard for eliminating.
Incidentally, the security expert who detected the assault is David Jacoby of Kaspersky Lab who was probing one hacking incident, which occurred recently, while it dealt with graphics harbored on ImageShack.
Moreover, nothing is known as to how the malvertizement managed to infiltrate the widely visited ImageShack website; however a few very frequent techniques involve hijacking of a target's ad-server or imitation of an authentic advertiser.
Nonetheless, given that this assault abuses a known Java code, it becomes apparent that several obsolete Java loadings are into existence. Often, users aren't even aware that there's Java loaded onto their systems alternatively they require updating that may result in malware installation onto their computers.
Eventually, it's because of the above kinds of assaults that one can say of cyber-criminals going for Java attack codes for executing malware assaults. This observation is further emphasized with Kaspersky's May 5, 2011 news release in which the company listed the 20 most prevalent malware for March 2011 of which 3 comprised exploits for Java security flaws. Now, the assault under discussion shows that online crooks have not altered their attack device during May 2011 as well.
In any case, according to the specialists on Internet security, end-users require perceiving that even going to ImageShack type of popular websites may make their computers susceptible to infection.
However, for self-defense from these kinds of assaults, end-users must always ensure that their security software is up-to-date and that their anti-virus application is running in order that Web-based exploits can be prevented.
Related article: Malware Authors Turn More Insidious
» SPAMfighter News - 5/11/2011
We are happy to see you are reading our IT Security News.
We do believe, that the foundation for a good work environment starts with fast, secure and high performing computers. If you agree, then you should take a look at our Business Solutions to Spam Filter & Antivirus for even the latest version of Exchange Servers - your colleagues will appreciate it!