Comments on: Harnessing Ingenuity

By: Chris Wysopal

Chris Wysopal — Mon, 14 Jan 2008 19:18:23 +0000

The trend of legitimate sites being attacked as malware delivery points is growing. I talk about this problem in my latest podcast on CNET.

Security Bites Podcast: When Web apps attack
http://www.news.com/Security-Bites-Podcast-When-Web-apps-attack/2324-12640_3-6225817.html?tag=item

Many small site owners don’t have the resources to keep their web sites secure. They often build these sites out of open source components and open source web apps that have checkered security records. In addition when a vulnerability is found in something they are using they don’t get wind of it so they don’t upgrade. The bad guys have an easy time of finding a vulnerable site and modifying its content to attack the people who browse the site. They then install their spyware or bots.

By: Jim Cropcho

Jim Cropcho — Sun, 13 Jan 2008 01:28:32 +0000

Wow; I would assume that a Civic engine would be too heavy for a helicopter. I am happily mistaken- this seems like a very cool group.

By: Christien Rioux

Christien Rioux — Sat, 12 Jan 2008 19:10:18 +0000

I don’t get that problem at all when visiting the site with latest Firefox. Nothing tries to get downloaded… Maybe it’s already fixed

By: Simeon Simeonov

Simeon Simeonov — Sat, 12 Jan 2008 18:45:31 +0000

Chris, I don’t see any ads there, which is why I assumed that a hacker has made a mod to the site. If you have a few spare minutes (yeah, you can laugh) I’d appreciate it if you hit the site and see for yourself.

By: Christien Rioux

Christien Rioux — Sat, 12 Jan 2008 18:41:54 +0000

sure looks like it. Downloader is a precursor to other trojans and viruses being installed on your machine. Could easily be a script injection attack via some bad advertisement SSI that’s been put on the page. Haven’t browsed over there to check, but that’s my wager.