NEW DELHI: Websense
Security Labs today said it has found a new malicious website, which is
distributing malicious code that installs a Trojan Horse on end-users' machines.
This potentially occurs without user interaction. The site appears to be
mirroring a World Cup 2006 Soccer website with the exception that they has a
lead story regarding the Zinedine Zidane head-butt incident from the World Cup
final against Italy.
Upon visiting any of the pages on the site, end-users are potentially
infected with a Trojan Horse downloader. “This Trojan
Horse downloads additional payload code from the site. The site is using the
underground 'Web Attacker" toolkit',” Websense said in a statement.
The Web Attacker toolkit is sold on a Russian website for anywhere from $20 -
$300. This toolkit allows users to install code that exploits users based on
their browser types. The installed code includes one of the five different
variants, including exploits for old and new vulnerabilities.
This site is hosted in the United States and was up and running at the time
Websense issued the alert.
Websense had earlier reported the two Web based attacks that had used the
World Cup as a vehicle.
Web based and email based attacks associated with the World Cup are not new.
During the last two months, Websense had reported two web based attacks that
used the World Cup as a vehicle.
Surendra Singh, head (South East Asia and India) for Websense, explained, “We
have already witnessed how the World Cup has been used by online fraudsters to
plant malicious code as well as an increased sophistication of such attacks.
This incident is a case in point; Cyber
criminals have used the most debated topic of the tournament to launch web
based attacks”. This attack further reiterates the need to promote safe
surfing throughout the year and have the relevant security systems in place to
back this up.”
Products and solutions, which allow organizations to institute flexible
policies to effectively manage employee Internet use are best suited for such
situations.
Software's that give IT administrators the ability to control access to
Internet categories, such as sports, gambling and streaming media, as well as
apply policies for employee Internet use as well as desktop streaming media
applications should be deployed during anticipated high levels of traffic.
© CyberMedia News