Hackers Rig ASUS Web Site
ASUStek Computer did not have too good a Good Friday. Hackers rigged the most important Web site of the hardware maker from Taiwan to install malicious software by exploiting a Windows flaw. ASUS is known for its branded PCs and motherboards. News published this on April 6, 2007.
The exploit, which hides in an HTML code on the home page of the Taiwanese website attempts to install the malware from a different server, said Roger Thompson, chief technology officer at Exploit Prevention Labs Inc. Computerworld published this on April 6, 2007.
On Friday April 6, 2007, the server downloading the exploit code stopped working in the afternoon lessening the attack risk. However, the hackers redirected their assaults to another live server, Roger said.
The attackers strategically added 'iframe' implying to an invisible frame to the home page of the ASUStek Web site. When a victim visits the site, his/her browser would connect to a different website that attempts to download the malicious program.
The malware exploits a critical Windows flaw and that makes it particularly concerning. However, Microsoft released a patch last week. The exploit code targeting this flaw has been making rounds in the wild for over a week. Users who have not installed the MS07-017 fix but visit the Asus.com site could cause compromise of their PCs.
A researcher at Kaspersky Lab wrote on the Viruslist.com site of the company that they had confirmed several reports about the ASUS site being compromised. News published the statement on April 6, 2007.
Spokesman for ASUS branch office in the US, David Ray could not say for sure if hackers attacked the main site of the company. But, he said that the U.S. sub-site was working fine.
The SANS Internet Storm Center that keeps a watch on network threats too confirmed the hacking attack. But it believed the malicious software did not try to exploit the Windows security hole.
Recently in a similar hacking case attackers targeted the Miami Dolphins stadium much before the Super Bowl event was scheduled to take place there. Another similar hack had targeted Microsoft's MSN Korea site.
Related article: Hackers Redirect Windows Live Search to Malicious Sites
» SPAMfighter News - 13-04-2007