Skip to comments.
Hackers Use Web Sites, Ads to Infect PCs
washingtonpost.com ^
| Tuesday, November 23, 2004
| Brian Krebs
Posted on 11/24/2004 8:07:41 PM PST by crushelits
click here to read article
Navigation: use the links below to view more comments.
first 1-20, 21-27 next last
To: crushelits
I wonder if that was the same group of half-wits that zonked Free Dominion's web page.
2
posted on
11/24/2004 8:09:32 PM PST
by
fastattacksailor
(This tagline brought to you by Izzy Dunne's tagline virus!)
To: crushelits
Comedycentral.com huh? Ha ha.
3
posted on
11/24/2004 8:15:09 PM PST
by
MisterRepublican
("I must go. I must be elusive.")
To: crushelits
4
posted on
11/24/2004 8:32:35 PM PST
by
macsmind76
(Macsmind.com - Conservative Commentary and Common Sense)
To: crushelits
I have SP2, which block the virus. But I also use Ad Muncher, which I warmly recommend. It's shareware, so you have to pay a little for it, but it's very effective at blocking popups and most banner ads. Since these are not downloaded, it also speeds up loading web pages with ads on them.
5
posted on
11/24/2004 8:39:37 PM PST
by
Cicero
(Nil illegitemus carborundum est)
To: macsmind76
That's a load of crap.
Macs are not usually hacker targets because the install base is not as large as Windows PCs. This does not make them less vulnerable, just not as prone to attacks.
Give me a computer that does more than just display a sad face when something is wrong.
Windows computers are stable and offer a wider selection of software.
Mac "You can buy better, but you can't pay more!"
6
posted on
11/24/2004 8:51:08 PM PST
by
TSgt
(Brunettes, Guns and FR: These are a few of my favorite things...)
To: macsmind76
The answer: Use a Mac That's not an answer. Most of us wouldn't even consider using a Mac.
7
posted on
11/24/2004 8:54:36 PM PST
by
Jorge
To: WestCoastGal
8
posted on
11/24/2004 8:57:41 PM PST
by
ChefKeith
(Life is GREAT with CoCo..........NASCAR...everything else is just a game!(Except War & Love))
To: crushelits
is there a name to this virus or a link to an anti-virus site that is legitimate (Wash Post is not my idea of a tech site). Does the article, which is not posted here en toto contain the "virus" name?
9
posted on
11/24/2004 9:01:49 PM PST
by
steplock
(http://www.outoftimeradio.org)
To: fastattacksailor
Probably the Russian criminals at it again, few months back there was another CC harversting virus going arround off web pages, it was tracked to Russia, but as usual went no further, they made off with half a billion from various bank accounts and Creditcards.
Nowadays its not just hackers anymore these are regular criminals in it just for the money no longer the 'script kiddies' looking for bragging rights.
10
posted on
11/24/2004 9:06:20 PM PST
by
battousai
(HM King Kerry's Royal Decree: Peasants cannot earn more than $200K per year!)
To: steplock
Source:
TechWebAd Banner Attack Involved Comedy CentralNovember 23, 2004
By Gregg Keizer
More details came to light Tuesday about the weekend attack that compromised a German Web advertising company's server and infected users who visited Web sites run by the firm's clients with the MyDoom/Bofra worm.
According to a statement released last Monday night by Falk eSolutions, the attack began early Saturday morning when an attacker managed to infiltrate the server and place code that redirected ad requests to a third-party site.
That site was http://search.comedycentral.com, which had also been compromised by the attacker. Neither Falk nor the SANS Institute's Internet Storm Center, which tracked and helped investigate the attack, have any idea when Comedy Central's site has cracked. As of mid-morning Tuesday, Comedy Central's search site was offline.
"It looks like Comedy Central and perhaps some other sites were compromised first, followed by Falk. Then, Falk's site was configured to redirect visitors to Comedy Central," said Marcus Sachs, the director of the Storm Center, in a statement.
Falk continued to play down the extent of the problem, saying potential redirects to the exploit code on the Comedy Central server were less then 2 percent of the ad requests from European client sites, and under 0.1 percent of those from U.S. clients during the six-hour span of the attack.
To some extent, Falk put the blame on Microsoft, whose Internet Explorer 6.0 browser was exploited by the attack when the redirected requests downloaded the MyDoom/Bofra worm instead of ads to PCs. The bug in IE, dubbed the IFRAME vulnerability, has not yet been patched,
"Users should consider using an alternate browser to Internet Explorer (such as Opera or Firefox) or upgrading their Microsoft operating system [to Windows XP SP2], Falk said in its statement.
Falk also said that it considers the hack a criminal matter, and has notified local authorities in Germany.
11
posted on
11/24/2004 9:30:48 PM PST
by
Eagle9
To: Jorge
That's not an answer. Most of us wouldn't even consider using a Mac. Cuiusvis hominis est errare, nullius nisi insipientis in errore perseverare.
12
posted on
11/24/2004 9:31:46 PM PST
by
solitas
To: crushelits
For those Freepers like GeronL afraid to upgrade to Service Pack 2, well if you don't the nasties get ya. And be sure to keep your anti-virus and firewall software up to date.
13
posted on
11/24/2004 9:33:16 PM PST
by
goldstategop
(In Memory Of A Dearly Beloved Friend Who Lives On In My Heart Forever)
To: crushelits
Time to disinfect.Not that I've visited any of the above mentioned web sites but it never hurts.I use what I call the freeware security suite Spy bot S&D,Adaware,Avg,Zone alarm.By the way Mozilla Firefox is great but it's not "spyware proof" it does pick up less but only a few less than my accessorized version of IE with Spybot S&D resident.
14
posted on
11/24/2004 9:48:39 PM PST
by
edchambers
("Neocon footsoldier of the Haliburton Death squad")
To: edchambers
"...I use what I call the freeware security suite Spy bot S&D,Adaware,Avg,Zone alarm.By the way Mozilla Firefox is great but it's not "spyware proof" it does pick up less but only a few less than my accessorized version of IE with Spybot S&D resident."
SpywareBlaster is a good addition to the above...it has an immunization feature that tries to prevent adware/spyware infections in the first place (it is not resident)
http://www.javacoolsoftware.com/spywareblaster.html
By the way, there is a Java vulnerability that affect IE as well as Firefox. The new version is 1_4_2_06
http://www.java.com/en/download/manual.jsp
(don't forget to remove the older version when done)
15
posted on
11/24/2004 10:06:35 PM PST
by
Tacos
To: crushelits
The fix, if and when these coconuts are caught: beheaded on video, televised on global TV. That'd put the fear of God in any other would-be hackers.
16
posted on
11/24/2004 10:07:42 PM PST
by
wdkeller
To: Tacos
SpywareBlaster is free like the others, and apparently is related with those who designed SpyBot...SpyBot also has an immunization feature (which should also be run even if you have SpywareBlaster) and it notices if SpywareBlaster is on your PC, encouraging you to use it as well.
17
posted on
11/24/2004 10:11:38 PM PST
by
Tacos
To: MikeWUSAF
Give me a computer that does more than just display a sad face when something is wrongThat is soooooo OS 9...
18
posted on
11/24/2004 10:34:38 PM PST
by
D-fendr
To: All
Help for viruses and malware:
19
posted on
11/25/2004 12:47:13 AM PST
by
backhoe
(-30-)
To: MikeWUSAF
Macs are not usually hacker targets because the install base is not as large as Windows PCs. This does not make them less vulnerable, just not as prone to attacks.This bit of FUD is absolutely not true. A few months ago, a vulnerability was announced in a hardware firewall product. I forget which company made them, but could probably look it up if you really want to know. There was an estimated population of about 50000 or so of these devices on the entire internet. An attack was launched against the vulnerability a few days later. Within 5 or 6 hours of the attack starting, it is believed that every one of these firewalls that had not been patched was hacked by the worm.
Keep in mind that this type of target is not the low-hanging fruit of your average computer illiterate windows user.* The people using these things were at least savvy enough to know that they needed a hardware firewall product in addition to their cable modems, routers and whatever. Yet the entire community of these devices was hacked and breached within hours.
Using your logic, the attack would never have happened because the target was so terribly small when compared against most other popular targets on the internet.
The reason MACs and Linux/Unix systems aren't hacked as often as windows machines is not merely the raw number of windows users. The biggest factor in the equation is that windows is so easy to subvert. Windows users can go quite a ways in protecting themselves from adware, spyware, and other stuff that has become so common just by using a different browser - any browser- other than Internet Explorer.
Also, even though Apache runs the vast majority of websites, it is still not the primary target of internet worms, viruses, and malware. That dubious honor goes to microsoft's IIS product. Hmmm....
* I'm not saying that all windows users are computer illiterate. It's just that the sheer number of them makes for a larger population of clueless users than just about any other operating system.
20
posted on
11/25/2004 7:58:37 AM PST
by
zeugma
(Come to the Dark Side...... We have cookies!)
Navigation: use the links below to view more comments.
first 1-20, 21-27 next last
Disclaimer:
Opinions posted on Free Republic are those of the individual
posters and do not necessarily represent the opinion of Free Republic or its
management. All materials posted herein are protected by copyright law and the
exemption for fair use of copyrighted works.
FreeRepublic.com is powered by software copyright 2000-2008 John Robinson
I use Firefox PR1 and IMHO, beats the sox off MS Explorer. Life is good with tabs. Click the link and give it a try.