The Register reports that an attack on ad-serving company Falk that redirected some Reg readers on Saturday towards a site running malicious code may be part of a much bigger attack.
Vital Security report that "a group of hackers (perhaps even a criminal gang) is hacking web servers all over the Net and installing root kits that dynamically inject code into the pages served from the compromised web servers".
It is "similar to Download_Ject, only this time it works on Apache Servers rather than Windows.Using Iframes, a number of sites install anything up to 8MB worth of exploits on a users machine - viruses, trojans, scripts, malware packages - you name it, you'll end up with it."
Spyware warrior: Major exploit underway
Thursday, November 25, 2004
Bofra exploit tied to 'massive botnet'
Posted by chunkybacon at 11:13 am