Full Disclosure mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Redmond Magazine SQL Injected by Chinese Hacktivists

From: "Stuart Dunkeld" <stuartd () gmail com>
Date: Sun, 18 May 2008 01:22:46 +0100
Funnily enough, I noticed this yesterday when looking for some info on
Virtual Server. Google has ~ 45,000 hits for wowyeye.cn/m.js but only
a small minority are marked as malicious sites..

Other pages on redmondmag.com - for example
http://redmondmag.com/columns/article.asp?EditorialsID=1166&page=3 -
reference www.qiqigm.com which is currently alive and attempting MDAC
and RealPlayer exploits

-- stuart

On Fri, May 16, 2008 at 11:29 PM, Dancho Danchev
<dancho.danchev () gmail com> wrote:

Hello,

It appears that Redmond - The Independent Voice of the Microsoft IT
Community, formerly known as Microsoft Certified Professional Magazine
is currently flagged as a badware site, and third-party exploit
detection tools are also detecting internal pages as exploit hosting
ones, in this particular case Mal/Badsrc-A. Redmond Developer News and
Redmond Channel Partner Online are also affected.

An analysis is available at :

http://blogs.zdnet.com/security/?p=1118

Regards
--
Dancho Danchev
Cyber Threats Analyst/Blogger
http://ddanchev.blogspot.com
http://windowsecurity.com/Dancho_Danchev

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/



_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
Previous By Date Next
Previous By Thread Next

Current thread: