Malware Served from Fake SourceForge Website; Zscaler
Cyber-criminals frequently make replication of various prominent sites online for distributing their malicious wares. An absolute instance is the sourceforgechile.net site, which was certain copy of the well-known cache of source codes, called SourceForge, say researchers from Zscaler the security company.
The company's researchers say that only during the 2nd-week of April 2013, registration of the sourceforgechile.net site, came about within USA and it was supported through one Ukraine-based server. Presently it is inactive, however, sometime in mid-April 2013 the site delivered one malware strain associated with ZeroAccess the notorious Trojan virus.
Appearing in a disguised form, the malware across the bogus SourceForge website looked like one .exe file namely "minecraft_1.3.2.exe." It was possible that the cyber-crooks hoped that visitors through an erroneous way would think the file was a Minecraft open-source scheme supported through SourceForge.
And when the particular malware contaminated any PC, it stayed hidden within the Trash Folder from where it began installing malevolent files. It even turned into one Windows service so as for inserting hostile codes inside Dynamic Link Library (DLL) files and other threads.
Notably, websites like those related to SourceForge often become attack points of cyber-criminals as they've innumerable visitors that create an opportunity for contaminating a large number of users quickly.
Disturbingly, it's because of the above kinds of malware assaults that are resulting in an increase in malware online, the researchers from Zscaler remark. They as well depict that assaults which cyber thieves launch are now more advanced, the researchers add.
However, for staying safe from the above unrecognized assaults, it's forever advisable that Internauts take down applications from established online sites. Additionally, they must exercise caution by verifying if the web-address happens to be the right one prior to beginning a download.
In the end, in similar website exploitations for thrusting malware as in the case of sourceforgechile.net, URLs associated with National Broadcasting Company the United States broadcaster remained compromised for hours at stretch during the 3rd-week of February 2013, pushing malware designed for capturing bank account credentials, while cyber crooks hacked into the National Journal Site on 28th February 2013.
Related article: Malware has lesser proximity to your inbox now!
» SPAMfighter News - 24-04-2013