Software > Security

10,000 sites hijacked

Because Microsoft hasn't fixed a flaw

By Nick Farrell

Tuesday, 16 December 2008, 08:02

MORE THAN 10,000 Web sites were hijacked last week because Volish security experts did not release a patch for a serious flaw.

The flaw is the usual security story. It lets the bad guys take over victims' machines merely by tricking them into visiting poisoned websites.

According to AV software outfit Trend Micro more than 10,000 sites were poisoned with code that exploits the flaw last week.

The sites are mostly Chinese and will steal passwords for computer games, which are sold. Not a big problem if you are not in China, but Paul Ferguson, a Trend Micro security researcher warned that the hole could be "adopted by more financially-motivated criminals for more serious mayhem - that's a big fear right now."

Vole said that it is investigating the flaw and is considering fixing it through an emergency software patch. Currently it has a system of workarounds which are a bit too complicated for most users.

Trend has gone as far as saying that punters should probably use another browser until the threat is gone. µ

L'Inq
AP

ICANN plan slammed Suffix too far, says US Commerce Department Tuesday, 23 December 2008, 09:34 AM Read more	Intel settles with the University of Wisconsin Secret deal comes unstuck Tuesday, 6 October 2009, 11:10 AM Read more
Microsoft releases emergency patch IE flaw spreading fast Wednesday, 17 December 2008, 11:52 AM Read more	SQL Server vulnerability warning Vole issues workarounds Tuesday, 23 December 2008, 12:57 PM Read more
Ebay blames Canada Shuts customer service outfit Wednesday, 6 May 2009, 11:52 AM Read more	Microsoft warns of a security hole The Vole hasn't fixed it yet Tuesday, 7 July 2009, 09:36 AM Read more

< Previous article| Next article >

Comments

LEADING BLOODY EDGE....

Welp, As Ronnie Would of Stated: Nothing Valuable Was Lost.
STeWie Drashek

posted by : Microasoft_Ultee', 16 December 2008 Complain about this comment

sounds bad.. but

but then again why not take the 2 minutes to put useful info like "IE7 not affected" into the 'article', if you could call it that.

posted by : anotherpunter, 07 February 2009 Complain about this comment

Most read
Most commented
Most popular

INQ Whitepapers

Will you be buying a new computer this Christmas?

Yes, a new computer will be under the tree

Yes, a netbook will fit my stocking nicely

No, but will be upgrading some components / building my own

No, my computer works fine if I change the oil often enough

Bah humbug, I'll wait for the January sales to decide

View other polls

©Incisive Media Limited, Haymarket House, 28-29 Haymarket, London SW1Y 4RX, is a company registered in the United Kingdom with company registration number 04038503

SEARCH :

Site Credentials:

Business & Technology websites:

Business research resources:

Products:

Investment Market IT websites:

Find out what you are worth:

Search for a job:

Recruitment Agency A-Z Directory: All
A B C D E F G H I J K L M N O P Q R S T U V W X Y Z

10,000 sites hijacked

Share this:

Business Intelligence Software

Customer Relationship Management (CRM)

Enterprise Accounting Software

Enterprise Resource Planning (ERP)

Enterprise Systems Management

DATA CLEANSER

Our Client is urgently look...

Read more

Java Support Developer Bri

I am currently recruiting f...

Read more

Sales Engineer-Technical A

Sales Engineer-Technical Ar...

Read more

Sales Executive - Nordics

This is a fantastic opportu...

Read more

Senior Software / Web Deve

Senior Software / Web Devel...

Read more