Malware-Ridden Geek.com Contaminating Visitors, Warns Zscaler
Security researchers from Zscaler the security company warn that Geek.com a technology reviews and news website was lately struck with a malware assault. The perpetrators have been successful in inserting malicious iframes inside the website's different sections, including articles, top page, about us and so on.
States Senior Security Research Engineer Umesh Wanve at Zscaler, a number of infections have occurred, while the iframes lead the website's users onto various malware sites. Softpedia.com reported this on May 16, 2011.
Apparently, a rogue iframe was inserted inside an article say, titled "Call of Duty: Modern Warfare 3" dated May 13, 2011 whose details consequently got exposed, and which also diverted end-users onto a toolkit for attack code. This toolkit would carry out different checks for figuring out the version of a particular application that end-users had loaded onto their PCs followed with delivering attack codes for security flaws inside that application.
Additionally, the security researcher states that the most frequently utilized software such as Adobe Reader, Flash Player, Java Runtime Environment alternatively the Web-browser normally get attacked.
At the moment, drive-by download assaults represent an important channel for malware distribution online. They're extremely perilous as in the majority of instances victims can wholly see the assaults.
Wanve wrote that unfortunately, numerous assaults of the kind could be seen carried out daily. According to him, cyber-criminals were actively compromising several authentic websites via the exploitation of weak codes within Web programs. Moreover, they were continuously watching for widely visited Internet sites or websites providing hot news so they could aim their attacks on those sites, Wanve added. Theregister.co.uk published this on May 17, 2011.
Moreover, the assault similar to others on widely visited websites having intense traffic was risky as it abused Geek.com that enjoyed a brand reputation during the last 15-years among its dedicated visitors, the research engineer observes.
And because the above assaults are extremely malicious, security specialists recommend some easy tips which end-users require following. First, they shouldn't consider any website as totally secured and secondly, they must load reliable malware removal program onto their PCs for foiling and lessening malware-ridden threats.
Related article: Malware Authors Turn More Insidious
» SPAMfighter News - 23-05-2011