Hundreds of thousands of websites, including ones owned by the UK Government and the United Nations have been hacked into and infected with malicious code that attempts to install malware on visitors’ computers.

The attackers are reported to be exploiting a security vulnerability in Microsoft’s Internet Information Services (IIS) web servers. Microsoft said last week that it was investigating reports of an unpatched flaw in IIS servers, but wasn’t aware of anyone trying to exploit the weakness at the time.

Malicious code

According to online security firm F-Secure visitors to infected sites are being silently redirected via JavaScript to three different domains hosting malicious code. These domains secretly attempt eight different exploits to install an online gaming Trojan on target machines.

Although the attack appears to be limited to websites using Microsoft IIS Web Server and Microsoft SQL Server, F-Secure are not laying the blame solely at the feet of Microsoft.

“So far we’ve only seen websites using Microsoft IIS Web Server and Microsoft SQL Server being hit. Do note that this attack doesn’t use vulnerabilities in any of those two applications. What makes this attack possible is poorly written ASP and ASPX (.net) code,” F-Secure said in an update.

Source: TechRadar

Recent Entries

• World’s Largest Dinosaur Grave Unearthed in China
• Foxit PDF Suite, Simple & Powerful
• Unmasking the “hidden potential” of Windows XP
• Studying the Chameleon-like Properties of Giardia Parasite
• FTP Error Codes
• Review: ThinkDigit.com
• BAM! It’s More Slippery Than Teflon (And Greener)
• Using the Auto Shutdown Feature In Windows XP
• Optimizing The RAM Speed Windows XP Style
• Turning Off the Useless Services In Windows XP

This entry was posted on Monday, April 28th, 2008 at 10:16 am and is filed under Security News. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.