Wilders Security Forums  

Go Back   Wilders Security Forums > Other Security Topics > malware problems & news
Reload this Page Hacked BBC streaming websites serve up malware
User Name
Password
Register FAQ Members List Calendar Search Today's Posts Mark Forums Read

 
 
Thread Tools Search this Thread
  #1  
Old February 15th, 2011, 03:40 PM
Malcontent's Avatar
Malcontent Malcontent is offline
Frequent Poster
  
Join Date: Dec 2005
Location: Cleveland, Ohio USA
Posts: 423
Default Hacked BBC streaming websites serve up malware
http://www.theregister.co.uk/2011/02...veby_download/
Quote:
Streaming sites operated by the BBC were hacked on Tuesday so they silently served visitors with malware, researchers from security firm Websense said.

An iframe tag on the BBC's 6 Music and 1Xtra websites injected an exploit that was housed on a website with an address ending in cc, a top level domain for the Cocos Islands. The malicious binary was generated by the Phoenix exploit kit, which dates back to 2007 and streamlines malware infections by collecting detailed statistics.

“If an unprotected user browsed to the site they would be faced with drive-by downloads, meaning that simply browsing to the page is enough to get infected with a malicious executable,” Websense researchers wrote in a blog post.
__________________
Avast + WinPatrol Plus + Router/SPI
  #2  
Old February 15th, 2011, 03:56 PM
Dermot7's Avatar
Dermot7 Dermot7 is offline
Very Frequent Poster
  
Join Date: Dec 2009
Location: Surrey, England.
Posts: 1,847
Default Re: Hacked BBC streaming websites serve up malware
Not the first time they've served up "Mahlerware".......they need to sort it out!

http://www.wilderssecurity.com/showthread.php?t=281632
__________________
A man's pride shall bring him low: but honour shall uphold the humble in spirit: Proverbs 29,23.
"Only the wasteful virtues earn the sun": William Butler Yeats, April 27, 1916.
  #3  
Old February 15th, 2011, 04:27 PM
Rmus Rmus is offline
Exploit Analyst
  
Join Date: Mar 2005
Posts: 3,624
Default Re: Hacked BBC streaming websites serve up malware
Thanks, Malcontent.

Quote:
The malicious binary was generated by the Phoenix exploit kit,...

“If an unprotected user browsed to the site they would be faced with drive-by downloads, meaning that simply browsing to the page is enough to get infected with a malicious executable,”...
Here is the latest Phoenix Kit as of February 4:

Now Exploiting: Phoenix Exploit Kit Version 2.5
http://blog.trendmicro.com/now-explo...t-version-2-5/

It's amazing how these exploits are still snagging victims - two of the most successful target IE6 and have been patched, one in 2006:
Code:
IE MDAC CVE-2006-0003
IE SnapShot Viewer ActiveX Vulnerability CVE-2008-2463
Prevention against the binary executable is secured by SRP or anything similar that blocks unauthorized executables. Unfortunately, the common victims are not aware of such preventative measures.

Nor are they likely to even know about such potential for contaminating web sites, which has been written about for at least 4 years...

Regulars at Wilders are in a unique position to spread the word and help (those who will listen) with patches/security against such exploits.

----
rich
 

Wilders Security Forums > Other Security Topics > malware problems & news « Previous Thread | Next Thread »

Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Settings
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
vB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Forum Jump


All times are GMT -4. The time now is 07:36 AM.

Contact Us - SSL - Wilders Security - Archive - TOS/Privacy - Top

Powered by vBulletin® Copyright ©2000 - 2013, Jelsoft Enterprises Ltd.
Copyright ©2002 - 2013, Wilders Security Forums