Hacked embassy websites found pushing malware
Back to the articleNot the first, and sadly probably won't be the last.. #
Posted Thursday 24th January 2008 14:54 GMT
Last September webpages of the US Consulate General in St Petersburg were compromised by hackers. On that occasion cybercriminals planted the Mal/ObfJS-C malicious code, that then attempted to download further malware from a remote server.
As is the norm these days, it was all a ruse to steal business and personal data from unwary visitors. More info was posted on the Sophos blog at http://www.sophos.com/news/2007/09/consulate.html
With something like 6000 new webpages discovered each day carrying malicious code (and over 80% of those being legit websites that the bad guys have hacked) it's becoming clear that you can't trust *anyone* these days to have a squeaky clean site.
I think it's time for the website owners and webhosts to take some responsibility for the security and patching of their sites, rather than just hoping that Joe Public will ensure that their browser and visiting computer are properly defended.
Sign up, sign up for The Register's weekly IT security newsletter - click here
Top stories
Popular Whitepapers
- Thermal design of the Dell PowerEdge T610, R610, and R710 servers
Monolithic thermal design overview - Seven ways to lower storage costs
Using a highly integrated, feature-rich data storage solution - Hosted CRM Can Be Your Secret Weapon to Success!
Hosted CRM comparison guide - Enterprise PBX buyer's guide
Access to expert research on all aspects of the IP PBX market - 10 Strategies for Choosing a Midmarket ERP Solution
Find out how to use the changing ERP market to your advantage - Best practices for optimizing performance and availability in virtual infrastructures
Solutions for the complete physical and virtualized IT infrastructure
