Compromised web sites
The Swiss are known for their prestigious and generous gifts to those who achieve what others can only imagine. SophosLabs managed to impress the committee and earn one of these coveted prizes recently.
Take a look into the latest widespread attack against legitimate websites, in which many sites are hacked in order to redirect users to exploit sites.
Take a dive into some recent blackhat SEO attacks in this post to explore the facts behind the recent rise in reports of this threat. Site administrators in particular may be interested in some of the findings.
Step into the shoes of a site administrators attempting to check if their sites have been hacked or not, by taking a look at a couple of recent attacks against websites.
Have you ever wondered what is meant by the term 'Traffic Direction System' (TDS)?
Well, take a look at a widespread site injection attack that took place earlier today, and see exactly how a TDS server is used to control user traffic.
Investigating a few compromised web sites reveals some interesting behaviour in the PHP hacks that are being used to compromised legitimate web servers in order to redirect unsuspecting users to exploit sites.
Read more about a recent wave of attacks compromising legitimate web sites for the purpose of infecting users with Zeus malware.
With an increasing number of legitimate web sites playing a role in malware distribution, never has it been so important for webmasters and site administrators to understand the threat and respond quickly when alerted to an issue. As Fraser discusses in this post, one of the problems they face is knowing when to trust the security vendor on the end of the phone.