[pchelpers] News:New Wave of "Gumblar" Hacked Sites Installs Google-targeting Malware

By Erik Larkin - Thu May 14, 2009 3:38PM EDT

A new round of Web sites hijacks is attempting to install malicious,
Google-focused software on unpatched PCs, according to security company
ScanSafe, further cementing the drive-by-download approach as a bad-guy
tactic of choice.

The attack, dubbed "Gumblar" by ScanSafe, starts by hijacking legitimate
sites and inserting attack code. The more than 1,500 hacked sites,
including Tennis.com and Variety.com, don't represent an especially huge
number, but it's growing rapidly. Since last week, the attack has grown
by 80 percent, according to the company, and has spiked 188 percent
since yesterday.

The inserted attack code attempts to identify old, unpatched
vulnerabilities on a victim PC that browses a hacked site, and will take
advantage of any discovered hole to install malware. These kinds of
drive-by-download attacks are sneaky and dangerous, but the good news is
that while the actual exploits used vary as time passes, the company
says none have yet gone after zero-day holes that don't yet have a fix
available.

More here:
http://tech.yahoo.com/news/pcworld/20090514/tc_pcworld/newwaveofgumblarhackedsitesinstallsgoogletargetingmalware
-- 
John Durham
Site http://modecideas.com
Server hosted on Ubuntu 4.10
Good advice is like good paint. It only works when applied.



-- 
-------list-services-below-----------
Regards, John Durham (list moderator) <http://modecideas.com/contact.html?sig>
Freelists login at http://www.freelists.org/cgi-bin/lsg2.cgi
List archives at http://www.freelists.org/archives/pchelpers
PC-HELPERS list subscribe/unsub at http://modecideas.com/discuss.htm?sig
Latest news live feeds at http://modecideas.com/indexhomenews.htm?sig
Good advice is like good paint- it only works if applied.

Other related posts: