|Warning: More Websites Under Attack by Hackers|
Trend Micro, Archive.org, Medicare Sites Among Affected
| 6:22 pm on Mar 14, 2008 (gmt 0)|
According to this report in Computerworld [computerworld.com], Security vendor TrendMicro was downloading trojans to site visitors via a SQL injection attack.
|"When users viewed any of the modified pages, they were reconnected to other sites without realizing it, and a type of virus was installed on their computer that causes them to download other viruses in a series," said the Yomiuri Shimbun. |
Security rival Sophos added more details late Thursday in a post to its blog. There, Graham Cluley, a Sophos senior security consultant, claimed that the hack had been an SQL injection attack...
The other attack [computerworld.com], that has been traced back to the Russian Business Network, a site that hosts "criminal's web sites" involves poisoning the cache of a site's recent searches, via an iFrame redirect. This attack has affected the sites of the Miami Dolphins, the US government's medicare site, the library site of the North California State University, among others.
|Hackers using a new scam continue to subvert hundreds of thousands of Web pages with IFrame redirects that send unwary users to malware-spewing sites, researchers said today. |
The attacks, which began about a week ago, show no signs of slowing, said Dancho Danchev in a posting to his blog yesterday. "The group is continuing to expand the campaign," said the Bulgarian researcher. "These are the high-profile sites targeted by the same group within the past 48 hours, with the number of locally cached and IFrame-injected pages within their search engines."