RSS Alerts

Related Links

  • Finjan
  • Elsevier Ltd is not responsible for the content of external websites.

Related Stories

  • GoldenCashWorld botnet, malware and hacker data exchange portal revealed
    Security researchers with Finjan have uncovered a highly sophisticated online botnet, malware and hacker exchange network for buying and selling access to infected PCs.
  • Search for security
    With more than 30 000 web pages being infected every day, search engine results could increasingly lead to malware infection. Kari Larsen asks what the search engines are doing to mitigate security threats, and how users can protect themselves.
  • Trend Micro expert releases internet security best practice schedule
    Hard on the heels of the unveiling of its new enterprise management services, Trend Micro's TrendLabs IT security research operation has revealed some interesting figures that show a dramatic rise in ID theft and associated malware infection rates.
  • Islamist hackers block Kosovo website
    The problem of religiously-motivated hacker attacks raised its ugly head again this month with an attack on the Express newspaper in Kosovo. Newswire reports suggest that Islamist hackers attacked the paper's website using a combination of simple malware and distributed denial of service (DDOS) attack vectors.
  • Check Point adds browser security to end point suite
    Check Point Software Technologies has released a new suite of end point software - R72 - to its range of software-based security offerings.

News

Finjan reports Iframes attack on Indian government website

10 May 2009

The secure web gateway solutions provider Finjan has reported that a major Indian government website - which averages around three hits per minute (source: Alexa) - has been hit by an Iframes injection exploit.

According to a blog item from California-based Finjan, the website appears to route users to a malware infected site in Poland, which has been coded using the infamous Fiesta hacker toolkit.

Infosecurity notes that the Fiesta toolkit generates 25 different malware attack vectors against the unsuspecting users' PC, and, says Finjan, the obfuscated code on the Indian site - operated by the Indian Union Public Service Commission - is only detected by three of 40 of the virus engines on the Virustotal.com malware detection portal.

Finjan says that its malicious code research team has notified the CERT Indian team and they should be dealing with the situation shortly.

Infosecurity understands that the site has been flagged by Google and Yahoo's search engines as infected.
 

 

This article is featured in:
Internet and Network Security Malware and Hardware Security

 

Comment on this article

You must be registered and logged in to leave a comment about this article.

Copyright © 2010
Elsevier Ltd. All rights reserved.
Terms & Conditions | Privacy | Website Design Working with water