Peace be upon you,
    Welcome to Madinat Al-Muslimeen, the City of the Muslims. Please feel free to visit the different hot spots around the Madina and post any discussion, articles, suggestions, comments, art, poetry, events, recipes, etc etc. Basically anything you would like to share with your sisters and brothers!! Non-muslims are also of course quite welcome to share their comments. If this is your first time here, you need to register with the city council. Once you register you have 15 days to post your mandatory introduction and then you will be upgraded to a Madina Citizen, God Willing. Please note that our city does have regulations which are listed in the city constitution. Read them carefully before moving in. P.S. - You can also post anonymously if you wish. P.S.S. - Also be sure to check out our ARCHIVES from 2000, 2001, 2002, 2003, 2004, 2005, 2006 & 2007. :)

Random Quote: "Chi trova un amico, trova un tesoro." ("He who finds a friend finds a treasure") - Italian Proverb
Pages: [1]   Go Down
  Print  
Author Topic: SANS solves mystery of mass Web site infections  (Read 1401 times)
0 Members and 1 Guest are viewing this topic.
Halima
Sis
Hero Member
*

Reputation Power: 39
Halima is working their way up :)Halima is working their way up :)Halima is working their way up :)
Gender: Female
Posts: 1714



« on: Apr 20, 2008 11:58 AM »


Jeremy Kirk  Thu Apr 17, 1:02 PM ET

San Francisco - The SANS Institute has uncovered what they've termed a "rare gem" as far as computer security investigations go that sheds new light on how up to 20,000 Web sites have been hacked since January.
ADVERTISEMENT

They found a sneaky software tool that uses Google's search engine to hunt for Web sites running certain kinds of vulnerable applications, wrote Bojan Zdrnja, on the institute's blog.

"While we had a general idea about what they do during these attacks, and we knew that they were automated, we did not know exactly how the attacks worked, or what tools the attackers used," Zdrnja wrote.

When the tool finds a site that is vulnerable, it kicks into action. "The exploit just consisted of an SQL statement that tried to inject a script tag into every HTML page on the web site," Zdrnja wrote.

That SQL statement was crafted to target Web sites running Microsoft's Internet Information Server and SQL Server. Once compromised, the Web sites were then rigged to serve malicious software to visitors using JavaScript, which tried various exploits based on known software vulnerabilities.

Among the malicious programs served up was a password-stealing program for the game "Lord of the Rings Online," security vendor McAfee said last month.

SANS said the software tool also reports to a server based in China, a feature that may be used to count the number of infections in order for the person using the tool can get paid, Zdrnja wrote. The tool may have other functions, but SANS is still analyzing it.

Among the victims from these attacks were the Web sites of security vendor Trend Micro  as well as CA.

http://news.yahoo.com/s/infoworld/20080417/tc_infoworld/98554
 

The Almighty Allah says,

"When a servant thinks of Me, I am near.
When he invokes Me, I am with him.
If he reflects on Me in secret, I reply in secret,
And if he acknowledges Me in an assembly,
I acknowledge him in a far superior assembly."

- Prophet Muhammad (SAW), as reptd by Abu Huraira
Pages: [1]   Go Up
  Print  
 
Jump to: