Latest variant exploits website guestbooks...
Published: 17 August 2004 09:20 GMT
A new variant of the MyDoom worm discovered on Tuesday downloads malware from an MP3 download site and a personal website, according to security experts. The experts claim hackers have compromised these sites by exploiting scripting vulnerabilities in their guestbooks.
Security company F-Secure is trying to close down the hacked sites but has not yet managed to contact the US-based site administrators or ISPs hosting the threat. Mikko Hyppönen, director of antivirus research at F-Secure, warned that until the sites are brought down and the security holes closed, the worm, MyDoom.S, will continue to cause problems.
"As long as the sites are up and running we have to keep monitoring them," says Hyppönen. "The hackers can keep changing what is on the sites - if we block a data-stealing Trojan, they can simply replace that with a different application."
Many web developers use standard scripts to add features to their sites such as guestbooks or feedback forms. Hyppönen warns that these scripts create security problems.
"If a script is very popular and lots of sites use it, then it is vulnerable to being hacked," he says. "Hackers can quickly scan a large number of different websites to find those which have vulnerable applications."
F-Secure recommends that companies protect themselves by setting their firewalls to block the URLs of the compromised websites, www.richcolour.com and www.zenandjuice.com. More details of the MyDoom.S can be found here.
Ingrid Marson writes for ZDNet UK
We are looking for Oracle Application Support people who needs to know PL/SQL well, ORACLE at the database level running on LINUX, and have used 11g, ...
No terminology in this advert is intended to discriminate on the grounds of age, and we confirm that we will gladly accept applications from SQL ...
Essential Skills* Web Applications (ASP.NET)* Windows Forms applications (VB6)* Workflow* Citrix / Remote Desktop* Excel* T-SQLMy client is looking ...
Agenda Setters 2009
Welcome to the ninth annual Agenda Setters poll – silicon.com's list of the top 50 most influential individuals in the technology and IT industries, from techies and CIOs to entrepreneurs and business leaders. Find out more in our latest special report.
Is Your Enterprise Architected for Tomorrow's Growth?
Improving IT service delivery through an integrated approach to software asset management...
TechRepublic Resource Guide: Software as a Service (SaaS) for Small and Midsize Businesses...
Download a Free Trial of SmartDraw: Learn why SmartDraw is the ideal alternative...
Stories from the web...
Copyright © 2008 CBS Interactive Limited. All rights reserved. Top of page
Digg
Slashdot
Del.icio.us
Stumble
Reddit
RSS Feeds
Clive Longbottom Windows 7: Not perfect - but ready for prime time Microsoft's latest OS fixes most of Vista's ills - but still has challenges ahead
Stephen Kleynhans Mind the details with Windows 7 Just because it might work better than Vista, it doesn't mean you can be sloppy