Microsoft Network Hijacked to Push Viagra

Searching_ _ _ · Oct 13, 2010

For the past three weeks, internet addresses belonging to Microsoft have been used to route traffic to more than 1,000 fraudulent websites maintained by a notorious group of Russian criminals, publicly accessible internet data indicates.

The 1,025 unique websites — which include seizemed.com, yourrulers.com, and crashcoursecomputing.com — push Viagra, Human Growth Hormone, and other pharmaceuticals though the Canadian Health&Care Mall. They use one of two IP addresses belonging to Microsoft to host their official domain name system servers, search results from Microsoft’s own servers show. The authoritative name servers have been hosted on the Microsoft addresses since at least September 22, according to Ronald F. Guilmette, a researcher who first uncovered the hijacking.
Click to expand...

Microsoft IPs Hijacked - The Register

CloneRanger · Oct 13, 2010

@ Searching_ _ _

Good post

Members are known to infect Linux and Unix machines with custom-written binaries that act as proxy web hosts.
Click to expand...

*

Over the past few weeks, Guilmette said, the IP addresses of several other large organizations have also been observed to be hosting name servers for the same criminal outfit. The University of Houston, the government of India, and City University of New York are just three of the names on the list
Click to expand...

*

See here for possible connections - https://www.wilderssecurity.com/showthread.php?t=284320

Dermot7 · Oct 13, 2010

Pill Gang used Microsoft's Network in attack on KrebsOnSecurity:

http://krebsonsecurity.com/2010/10/pill-gang-used-microsofts-network-to-attack-krebsonsecurity-com/

MrBrian · Oct 13, 2010

Human Error Gave Spammers Keys to Microsoft Systems

Searching_ _ _ · Oct 14, 2010

An inside job, and a Russian one at that. HMMM...

m00nbl00d · Oct 14, 2010

Searching_ _ _ said:

An inside job, and a Russian one at that. HMMM...
Click to expand...

And...

The devices that got hacked were "network devices that run a Linux kernel," Microsoft said.
Click to expand...

Mentioned in the article provided by MrBrian.

I wonder what Microsoft means with that?
Do they mean that Linux is insecure?
Do they mean they don't trust their own Operating System to be run in their own servers, at all, and rather use an insecure Linux?

Log in or Sign up

Microsoft Network Hijacked to Push Viagra

Searching_ _ _ Registered Member

CloneRanger Registered Member

Dermot7 Registered Member

MrBrian Registered Member

Searching_ _ _ Registered Member

m00nbl00d Registered Member

Log in or Sign up

Microsoft Network Hijacked to Push Viagra

Searching_ _ _ Registered Member

CloneRanger Registered Member

Dermot7 Registered Member

MrBrian Registered Member

Searching_ _ _ Registered Member

m00nbl00d Registered Member

Useful Searches