Infected websites list tops 66,000
,----[ Quote ]
| The method reminded him of a particularly widespread wibbling infection back
| in February named for the Superbowl due to its timing, so he investigated a
| bit. Indeed, he found that the same malicious websites that were used then as
| redirection targets are again implicated.
`----
http://www.theinquirer.net/gb/inquirer/news/2007/11/12/infected-websites-list-tops-66
It's like Russian roulette. Just make sure you're never redirected to one among
66,000+ (e.g. via ads; see news below). Try to teach and explain this to
someone who never used the Internet before.
DoubleClick caught supplying malware-tainted ads
,----[ Quote ]
| DoubleClick, the massive internet advertising network that recently agreed to
| be bought by Google, has been caught serving rogue ads designed to trick
| users into buying unneeded software, according to an article on eWeek.
`----
http://www.theregister.co.uk/2007/11/13/doubleclick_distributes_malware/
Another reason to use Linux. Don't even visit IndiaTimes or check your bank
account in the Bank of India. Virtually any site can attack Windows.
Related:
IndiaTimes website 'attacks visitors'
,----[ Quote ]
| Visitors to the IndiaTimes website are being bombarded by malware, some of
| which appear to target previously unknown vulnerabilities in Windows, a
| security researcher warns.
|
| [...]
|
| She said most pages on the IndiaTimes site are clean. Those that are
| infected, however, contain a potent cocktail of downloader and dropper
| Trojans and other binaries. They contain a script that points to remote
| sites, some of which link to still other sites. The malicious files exploit
| multiple vulnerabilities, and some appear to be previously unknown flaws in
| Windows, according to Landesman, who used to be a security researcher for
| Microsoft.
|
| A Microsoft spokesman said he was looking in to the report.
`----
http://www.theregister.co.uk/2007/11/10/india_times_under_attack/
How the Online Trust Model is Broken - The Bank of India.com attack
,----[ Quote ]
| Manually entering the addresses into a browser will load some of them,
| suggesting that those upstream malware sources are active (others have
| already been shut down).
`----
http://www.beskerming.com/commentary/2007/08/31/265/How_the_Online_Trust_Model_is_Broken_-_The_Bank_of_India.com_attack
|
|