Author Topic: MS software allows massive web attacks  (Read 879 times)

Xeen

  • VIP
  • Member
  • ***
  • Posts: 1,065
  • Kudos: 55
MS software allows massive web attacks
« on: 26 June 2004, 03:55 »
A big internet attack this week has INFECTED many web sites.

 
quote:
The attack is more dangerous than most, because infection is possible just by visiting affected Web sites


 
quote:
The attackers, whose identities are unknown, targeted a flaw in Web sites powered by Microsoft's Internet Information Services Web server (IIS). The sites hit by the attack were programmed to redirect the Explorer browser to another Web site that contains code that hackers use to record what people type on their keyboards -- including data such as passwords, credit card and Social Security numbers. The code then e-mails that information back to the attackers. Computers that run Microsoft's Internet Explorer browsers are vulnerable to infection


Great job as always, Bill.      


Cyber security departments are also concerned that terrorists might attempt to do some kind of internet attack. If that happens, I wonder if we can invade Microsoft Corp for some regime change for "sponsoring" terror.

Article

[ June 25, 2004: Message edited by: xeen ]


Orethrius

  • Member
  • **
  • Posts: 1,783
  • Kudos: 982
MS software allows massive web attacks
« Reply #1 on: 26 June 2004, 06:37 »
I find it particularly choice that after this:
 
quote:
*snip*
 CERT recommends that Internet Explorer users consider different browsers such as Mozilla Firefox, Netscape Communicator or Opera. For people who continue to use Internet Explorer, CERT and Microsoft recommend setting the browser's security setting to "high."
*snip*



they would go on to detail the method for protecting MSIE against the problem.  MSIE *IS* the problem, and you have the foremost in government agencies telling you that in legalese!

Edit: Actually, upon more careful review, it's worse - you have the foremost in government agencies TELLING YOU to switch from MSIE.  What more do you need, a written invitation - signed, sealed, and delivered?

[ June 25, 2004: Message edited by: Midnight Candidate ]


Proudly posted from a Gentoo Linux system.

Quote from: Calum
even if you're renting you've got more rights than if you're using windows.

System Vitals

solarismka

  • Member
  • **
  • Posts: 598
  • Kudos: 0
MS software allows massive web attacks
« Reply #2 on: 26 June 2004, 07:45 »
Wow thats just priceless.  

So much for it being the endusers3rdpartyhardwaresoftware's fault.

  :D
"Regime Change" starts at home!<p>Islam IS NOT the enemy! Against American Terrorism since Sept/11/2001<p>Jihad:<p>http://www.islamanswers.net/jihad/meaning.htm <p>new SuSE Linux User!<p><p>If your gonna point a finger at someone then at least have the proof to back you up!<p>trolls are idiots that demand attention by posting whatever is opposite to the theme to ruffle feathers to make people upset!<p>Often these same trolls always mention grammar/spelling since they have no intelligence of their own.

WMD

  • Global Moderator
  • Member
  • ***
  • Posts: 2,525
  • Kudos: 391
    • http://www.dognoodle99.cjb.net
MS software allows massive web attacks
« Reply #3 on: 26 June 2004, 07:47 »
A single attack hitting two MS products.  Damn, this is a good one...

So an IIS site gets attacked...the site then reroutes IE users to a site that 0wns their computers.  :D
My BSOD gallery
"Yes there's nothing wrong with going around being rude and selfish, killing people and fucking married women, but being childish is a cardinal sin around these parts." -Aloone_Jonez

solarismka

  • Member
  • **
  • Posts: 598
  • Kudos: 0
MS software allows massive web attacks
« Reply #4 on: 26 June 2004, 10:03 »
quote:
Originally posted by WMD:
A single attack hitting two MS products.  Damn, this is a good one...

So an IIS site gets attacked...the site then reroutes IE users to a site that 0wns their computers.   :D  



Its a very clever idea, wish I thought of it  :D    
"Regime Change" starts at home!<p>Islam IS NOT the enemy! Against American Terrorism since Sept/11/2001<p>Jihad:<p>http://www.islamanswers.net/jihad/meaning.htm <p>new SuSE Linux User!<p><p>If your gonna point a finger at someone then at least have the proof to back you up!<p>trolls are idiots that demand attention by posting whatever is opposite to the theme to ruffle feathers to make people upset!<p>Often these same trolls always mention grammar/spelling since they have no intelligence of their own.

Refalm

  • Administrator
  • Member
  • ***
  • Posts: 5,183
  • Kudos: 704
  • Sjembek!
    • RADIOKNOP
MS software allows massive web attacks
« Reply #5 on: 26 June 2004, 14:44 »
My website is hosted on IIS. I'm looking for another hosting company, but I can't find anything better  :(

Orethrius

  • Member
  • **
  • Posts: 1,783
  • Kudos: 982
MS software allows massive web attacks
« Reply #6 on: 26 June 2004, 19:02 »
NBC-11 is going to be doing a story on this very subject.  I'd say that I expect them to blow it out of proportion, but there's really no way to do that (unless, of course, they make the infamous "e-mail subject line virus" connection).  For the most part, however bad they may report this as being, this is actually WORSE.  I expect to hear about a Linux user that has been rounded up in a DoJ movement against "virus authors."  Way to go Microsoft, A-number-one shit here.  If you can't tell that's sarcasm, you might need a CAT scan to check for activity.  Not just unusual, ANY.

Edit: I just got a copy of McLain's "Runner" source - I wonder if this couldn't be reversed and used in conjunction with what we know about the hooks this keylogger uses (assuming I don't have it confused with something possibly unrelated that happened to me whilst browsing shopathome.com) to create an antibody?  Definitely worth looking into...

[ June 26, 2004: Message edited by: Midnight Candidate ]


Proudly posted from a Gentoo Linux system.

Quote from: Calum
even if you're renting you've got more rights than if you're using windows.

System Vitals