Security experts from the Israeli company Finjan discovered a hacking service, selling passwords to FTP- 8. 700 servers, many of which are owned by large companies from the Fortune 100.
These passwords allow you to use the compromised sites to spread Trojans, introducing vrednosny code via iframe. In this way, were infected in the past year, RBC and the Morning. Roux, who then handed his Russian readers to infection.
Businesses for sale passwords to hacked sites exist for a long time, but before we heard of a fully automated service for database password. In fact, this is the first striking example of 'software as a service' with a friendly interface for hackers, which gives you instant access to foreign sites for selection. Service accesses sell at different prices, depending on the Google Page Rank, geographical location and other characteristics of the site. It also offers ' menu' of malicious code that can be immediately implemented at other people's sites.
Tools found in the Russian hacker site, says Finjan. Among the compromised websites offered in this ' mazagine ', the majority of American ( 2.621 ), but the next most popular are Russian ( 1.247 ). There are also Australian (392) and Asian (354). Others - mainly from Eastern Europe (Ukraine, Czech Republic), and only a few dozen - from Germany and the UK.
Suspiciously, however, that the ' researchers ' of Finjan did not disclose the full list of compromised sites. They only promise to confirm whether a site is listed, if the owner of the site would turn to them with such a request. This is very reminiscent of self-promotion - although Finjan claims that dozens of sites ' have been warned '. Another option: a ' store password ' may indeed exist, but he himself, there may be a scam (passwords are sold, but not real ).
However, in order to prevent, you can simply change their passwords frequently FTP- access, as well as an admin to check the computer for Trojans.
stfw. ru.
No comments:
Post a Comment