The word of the day is drive-by

Filed Under: Malware, SophosLabs

Drive-by: as in drive-by download the act of malware being installed on a computer while browsing hacked sites.

Earlier this month we saw reports of a dictionary publishers website (Cambridge University Press) having being compromised with Troj/Badsrc-A.

cup-source.jpg

We were alerted to this compromise by feedback from the WS1000 web appliance.

feedback_small.jpg

Cambridge University Press are not the first high profile site to have been compromised (see 1, 2). We contacted the website owners and the site now appears to be clean.

cup-badsrc.jpg

Let us hope that the security holes that allowed this website to be hacked have now been closed.

You might like