
Latest variant exploits website guestbooks...
Published: 17 August 2004 09:20 GMT
A new variant of the MyDoom worm discovered on Tuesday downloads malware from an MP3 download site and a personal website, according to security experts. The experts claim hackers have compromised these sites by exploiting scripting vulnerabilities in their guestbooks.
Security company F-Secure is trying to close down the hacked sites but has not yet managed to contact the US-based site administrators or ISPs hosting the threat. Mikko Hyppönen, director of antivirus research at F-Secure, warned that until the sites are brought down and the security holes closed, the worm, MyDoom.S, will continue to cause problems.
"As long as the sites are up and running we have to keep monitoring them," says Hyppönen. "The hackers can keep changing what is on the sites - if we block a data-stealing Trojan, they can simply replace that with a different application."
Many web developers use standard scripts to add features to their sites such as guestbooks or feedback forms. Hyppönen warns that these scripts create security problems.
"If a script is very popular and lots of sites use it, then it is vulnerable to being hacked," he says. "Hackers can quickly scan a large number of different websites to find those which have vulnerable applications."
F-Secure recommends that companies protect themselves by setting their firewalls to block the URLs of the compromised websites, www.richcolour.com and www.zenandjuice.com. More details of the MyDoom.S can be found here.
Ingrid Marson writes for ZDNet UK
No terminology in this advert is intended to discriminate on the grounds of age, and we confirm that we will gladly accept applications from SQL ...
Appreciate partnership working as essential to promote the welfare and protect children & vulnerable adults. The role will involve:- *Appreciate the ...
Your responsibilities will include: - design & implementation of unit test scripts to support modem development and validation - performing initial ...
Agenda Setters 2009
Welcome to the ninth annual Agenda Setters poll – silicon.com's list of the top 50 most influential individuals in the technology and IT industries, from techies and CIOs to entrepreneurs and business leaders. Find out more in our latest special report.
Stories from the web...
Copyright © 2008 CBS Interactive Limited. All rights reserved. Top of page
Bob Tarzey Why you must rein in your power users When they do damage, it can be catastrophic to your business
Jon Collins Is losing a mobile device really such a big deal? How to minimise the damage to your business