Lilupophilupop tops 1million infected pages

Discussion in 'malware problems & news' started by ronjor, Dec 31, 2011.

Thread Status:
Not open for further replies.
  1. ronjor

    ronjor Global Moderator

    Joined:
    Jul 21, 2003
    Posts:
    57,763
    Location:
    Texas
    https://isc.sans.edu/diary.html?storyid=12304
     
  2. G1111

    G1111 Registered Member

    Joined:
    May 11, 2005
    Posts:
    2,127
    Location:
    USA
    Checked out the site and get multiple warnings. Interesting so many infections. Thanks Ron.

    edit - On URLVoid only 5 of the 23 scanners detect the website mentioned in the ISC article as dangerous.
     
    Last edited: Dec 31, 2011
  3. Rmus

    Rmus Exploit Analyst

    Joined:
    Mar 16, 2005
    Posts:
    3,943
    Location:
    California
    Note these comments by ISC Handler, Mark, in his original Diary from December 1:

    SQL Injection Attack happening ATM
    https://isc.sans.edu/diary.html?storyid=12127
    This has been noted many times in the past, that it's a user (server administrator) problem.

    These "code issues" (entry points) are easy for cybercriminals to find, using automated script tools to search the internet for weaknesses. Likewise, it should be easy for an administrator to check/validate all data input to reveal possible weaknesses in any code.


    ----
    rich
     
    Last edited: Dec 31, 2011
Loading...
Thread Status:
Not open for further replies.