KezNews.com
DownloadsOther NewsForumBlogsWallpapersJokewareSearch
Downloads:
Download Chrome OS VMware Image
Windows Server AppFabric Beta 1
Office 2010 Beta Public Download Site URL Lives
RemoveWAT or Chew-WGA Bypass Activate Windo..
Office 2010 Beta Available for Download via..
Office 2010 Beta Public Download Site URL Lives
Recent Forum Posts:
Fraps 3.0.2 build 10687 - retail
D3dgear 3.55 build 1230
Windows 7 loader v1.7.7 by daz

News letter:


Enter Your E-mail:
Top Downloads:
Windows 7 32-Bit (x86) Direct Download Links
Windows 7 64-Bit x64 Direct Download Links
Leaked Windows 7 RTM Direct Download Links for Both x86 and x64 Flavors
Windows 7 RTM USB/DVD Download Tool Available
Windows 7 RTM Patches ISO Image for October 2009
Windows 7 ISO Image Edition Switcher Free Download for Direct Convert
RemoveWAT or Chew-WGA Bypass Activate Windows 7 and Server 2008 R2 Forever
Advertisements:

Windows 7 RTM 7600.16385.090713-1255 HERE !

How to activate Windows 7 RC build 7600, 7264, 7231 and olders

Hackers quickly move to exploit Bhutto assassination

section: common, for your questions: KezNews forum, 30.12.2007

    Tip: Click here to update all your PC's outdated drivers

Within hours of yesterday's assassination of former Pakistani Prime Minister Benazir Bhutto, malware makers exploited the breaking news to dupe users into downloading attack code, security researchers said Friday.




Searches for news about Bhutto's killing and the ensuing chaos in Pakistan listed sites pimping a bogus video coder/decoder (codec), said analysts at McAfee Inc., Symantec Corp. and WebSense Inc.

For instance, WebSense found such a site simply by using "benazir" to search on Google. Meanwhile, McAfee quickly located 10 sites hosted on Blogger.com, Google Inc.'s blog service, that were spreading the fake codec.

The sites use the well-worn tactic of promising a video -- in this case one of Bhutto's assassination -- but telling Windows users that they need to install a new high-definition video codec, the program that decodes the digital data stream, to view the clip. Naturally, the so-called codec is no such thing, but is instead rigged code that downloads a variant of the Zlob Trojan horse, a back door that can infect the compromised PC with a wide range of other malware.

"Even death isn't sacred to some," said Symantec researcher Vikram Thakur in a post to the company's security response blog.

Other hackers are relying on the news of Bhutto's assassination to draw users to sites that forgo the codec angle and instead conduct drive-by attacks, said Rahul Mohandas, a security analyst at McAfee's Avert Labs unit. "There are a plethora of sites which attempt drive-by installations when unsuspecting users visit search-engine results for 'Benazir Bhutto,'" said Mohandas in a post to the Avert Labs blog this morning. "Many of these compromised pages have malicious scripts, which point to the 3322 domain. These pages contain obfuscated variants of the MS06-014 exploit, which is perhaps one of the most popular of all the exploits we see on a daily basis."

MS06-014, issued in April 2006, patched a critical vulnerability in an ActiveX control that is part of Microsoft Data Access Components (MDAC), which are packaged with Windows XP and Server 2003.

Shilling bogus codecs is a popular pastime of attackers. The technique has been used to plant malware on PCs from singer Alicia Keys' MySpace page, for example, and was the vector used by hackers who went after Macs last month.

source: computerworld.com

  >> Click Here to Run a Free Scan for PC Errors <<

send email Send link 2 friend  |  Permalink
<< previouse article
A Quick Start with ASP.NET		 next article >>
Top Security Software of 2007

MORE RELATED ARTICLES:
Prevent 1.0 - Stop Unauthorized Copy, Delete, Move & Change of Settings || Move Windows XP Start Button & System Tray on Taskbar || Microsoft confirms detailed Windows 7 exploit || Remote exploit released for Windows Vista SMB2 worm hole || Microsoft Posts $250,000 Reward for PC Hackers

Comments(8)

Hackers

By swandike on 31.12.2007 - 12:12
thats a foul..hackers...leave this wonderful woman's plight alone.

bangingthemaid

By bangingthesheep2 on 31.12.2007 - 21:12
i read that bhutto was conrrupt, and wasn't a angel at all and is related to terrorist supporters inside the army.

you read...

By noname on 02.01.2008 - 00:01
..you may have read somewhere that bhutto was corrupt...me personally i read somewhere today that pigs actally can fly. you can't believe everything you read and certainly shouldn't state so called facts without evidence

...just a passing thought

Mrs Brutto: A beautiful wonderful woman. A Prime Minister

By Mao on 02.01.2008 - 01:01
better than an american man

She and her husband stole money from the nation!

By Johnathon Coachman on 02.01.2008 - 06:01
she stole as well as her husband stole money from the country of pakistan, the only innocent one is the son and if his father is pulling the strings further corruption.

CIA, Mossad hit

By pube on 02.01.2008 - 17:01
she was a yank flunky, who told the world the boogie man 'bin-laden' is dead!

that was her death sentence. the septic tanks (yanks) needed her dead and paki in turmoil, now they have an excuse to illegally invade another country.

Bhutto

By swandike on 03.01.2008 - 13:01
are you sure pube? do you know cia read forums as well?

be scared now lol...

War on terror bull turdies

By pube on 03.01.2008 - 19:01
yes i am sure:

http://www.youtube.com/watch?v=oio8b6fpfsq

the yank 'war on terror' is a load of zionist bullshit. the mossad blew up the wtc's in or to have a new pearl harbour and an excuse to invade iraq after lying about wmd's.


No new comments are allowed for this article.

For your questions use our KezNews Forum