IndiaTimes website 'attacks visitors'
,----[ Quote ]
| Visitors to the IndiaTimes website are being bombarded by malware, some of
| which appear to target previously unknown vulnerabilities in Windows, a
| security researcher warns.
|
| [...]
|
| She said most pages on the IndiaTimes site are clean. Those that are
| infected, however, contain a potent cocktail of downloader and dropper
| Trojans and other binaries. They contain a script that points to remote
| sites, some of which link to still other sites. The malicious files exploit
| multiple vulnerabilities, and some appear to be previously unknown flaws in
| Windows, according to Landesman, who used to be a security researcher for
| Microsoft.
|
| A Microsoft spokesman said he was looking in to the report.
`----
http://www.theregister.co.uk/2007/11/10/india_times_under_attack/
...Also Affected Bank of India just a couple of months ago (hijacked and then
served malware). It's not India Times that uses Windows
When will the country's authorities just drop Windows and use a real operating
system?
Recent:
London Stock Exchange blames outage on Infolect
,----[ Quote ]
| She said the problem appeared to lie with Infolect’s three interactive
| gateways, which send out about 10 million separate pieces of market
| information daily, including share prices, to about 100,000 terminals.
|
| Infolect was launched two years ago in place of the exchange’s London Market
| Information Link platform. It uses Microsoft .net technology and a SQL Server
| database, and runs on more than 100 Intel-based 32-bit Proliant servers.
`----
http://www.cio.co.uk/concern/security/news/index.cfm?articleid=2248&pagtype=allchantopdate
.----[ Quote ]
| Hackers infiltrated the systems of Commerce Bank and accessed the
| records of 20 customers, the US regional bank said today.
|
| The attack by persons unknown was partially thwarted - but not
| before a database of 3,000 records was hacked into and the data of
| 20 exposed. Compromised data included personal information such as
| names, addresses, Social Security numbers, phone numbers and, in a
| few cases, Commerce Bank account numbers, the Columbia Business
| Journal reports.
|
| Security staff shut down the attack and called in police to
| investigate after uncovering the breach a week ago. The FBI is
| investigating.
|
| The method used in the attack is unclear, and something the bank
| will be keen that it stays unclear
`----
http://www.theregister.co.uk/2007/10/11/commerce_bank_hack/
Related:
Breaking: Bank of India seriously compromised
http://sunbeltblog.blogspot.com/2007/08/breaking-bank-of-india-seriously.html
How the Online Trust Model is Broken - The Bank of India.com attack
,----[ Quote ]
| Manually entering the addresses into a browser will load some of them,
| suggesting that those upstream malware sources are active (others have
| already been shut down).
`----
http://www.beskerming.com/commentary/2007/08/31/265/How_the_Online_Trust_Model_is_Broken_-_The_Bank_of_India.com_attack
|
|
