Jump to content


Photo

Skype vouchers themed site serving client-side exploits and malware


  • Please log in to reply
No replies to this topic

#1 TheSentinel

TheSentinel

    The man in the dark

  • General Admin
  • 24,046 posts

Posted 17 March 2012 - 07:24 PM

QUOTE
Skype vouchers themed site serving client-side exploits and malware

By Dancho Danchev | March 16, 2012, 5:43pm PDT

Summary: According to security researchers from GFI Labs, skypevouchers(dot)com is currently serving client-side exploits and malware to its visitors.

Looking for Skype vouchers? Bargain deals?

Make sure you don?t land on skypevouchers(dot)com.

According to security researchers from GFI Labs, the typosquatted domain is currently serving client-side exploits and malware to its visitors.

The malware is served via a tiny iFrame tag, loading the legitimate manjakuhappy(dot)com web sites, which has been compromised to participate in the malicious campaign. The domain is serving CVE-2011-3544, with the following MD5?s corresponding the exploits served at the site: MD5: d3f933524c85c96a76f7ffd516d335c0 served from halloffam(dot)bee(dot)pl, and MD5: 58db6e6e25d9b8e4742f2ef9b43c3818 served from themettco(dot)bee(dot)pl.

End and corporate users are advised to ensure that they?re using the Internet with the latest versions of their third-party software and browser plugins.

Source: http://www.zdnet.com...d-malware/10895



0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users