Full Disclosure mailing list archives
Re: Redmond Magazine SQL Injected by Chinese Hacktivists
From: "Stuart Dunkeld" <stuartd () gmail com>
Date: Sun, 18 May 2008 01:22:46 +0100
Funnily enough, I noticed this yesterday when looking for some info on Virtual Server. Google has ~ 45,000 hits for wowyeye.cn/m.js but only a small minority are marked as malicious sites.. Other pages on redmondmag.com - for example http://redmondmag.com/columns/article.asp?EditorialsID=1166&page=3 - reference www.qiqigm.com which is currently alive and attempting MDAC and RealPlayer exploits -- stuart On Fri, May 16, 2008 at 11:29 PM, Dancho Danchev <dancho.danchev () gmail com> wrote:
Hello, It appears that Redmond - The Independent Voice of the Microsoft IT Community, formerly known as Microsoft Certified Professional Magazine is currently flagged as a badware site, and third-party exploit detection tools are also detecting internal pages as exploit hosting ones, in this particular case Mal/Badsrc-A. Redmond Developer News and Redmond Channel Partner Online are also affected. An analysis is available at : http://blogs.zdnet.com/security/?p=1118 Regards -- Dancho Danchev Cyber Threats Analyst/Blogger http://ddanchev.blogspot.com http://windowsecurity.com/Dancho_Danchev _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
_______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Current thread:
- Redmond Magazine SQL Injected by Chinese Hacktivists Dancho Danchev (May 17)
- Re: Redmond Magazine SQL Injected by Chinese Hacktivists Stuart Dunkeld (May 18)
- Re: Redmond Magazine SQL Injected by Chinese Hacktivists Nate McFeters (May 18)
- Re: Redmond Magazine SQL Injected by Chinese Hacktivists Stuart Dunkeld (May 18)