RE: Bank of India Website Hijacked, Launching Exploits

[Juha-Matti Laurio <juha-matti.laurio () netti fi>]

It's clean now:

Sunbelt
http://sunbeltblog.blogspot.com/2007/08/update-on-bank-of-india-situation_31.html

Exploit Labs
http://explabs.blogspot.com/2007/08/compromised-bank-website.html

Alex, we hope you had a little time to sleep too...

- Juha-Matti

Alex Eckelberry <AlexE () sunbelt-software com> wrote: 
> Well a malware researcher just got a hold of someone there and it was
> rather hopeless... Broken English, etc. Let's hope this spurs some
> action... 
>
> -----Original Message-----
> From: funsec-bounces () linuxbox org [mailto:funsec-bounces () linuxbox org]
> On Behalf Of Paul Ferguson
> Sent: Thursday, August 30, 2007 8:08 PM
> To: funsec () linuxbox org
> Subject: [funsec] Bank of India Website Hijacked, Launching Exploits
>
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> Just in case you haven't heard, this is apparently now being reported in
> the security "blogosphere" press...
>
> Sunbelt:
> http://sunbeltblog.blogspot.com/2007/08/breaking-bank-of-india-seriously
> ht
> ml
>
> Zero Day:
> http://blogs.zdnet.com/security/?p=487
>
> ..and me :-)
> http://fergdawg.blogspot.com/2007/08/bank-of-india-website-hijacked.html
>
> - - ferg
>
> -----BEGIN PGP SIGNATURE-----
> Version: PGP Desktop 9.6.3 (Build 3017)
>
> wj8DBQFG11vbq1pz9mNUZTMRAh+tAJwOwxO2xOxFvDom5BkEaS0JM+3qFQCeIKWP
> uwUYn4Ouo5/GZv5uPVNcgB8=
> =oKZc
> -----END PGP SIGNATURE-----
>
>
> --
> "Fergie", a.k.a. Paul Ferguson
>  Engineering Architecture for the Internet  fergdawg(at)netzero.net
> ferg's tech blog: http://fergdawg.blogspot.com/

_______________________________________________
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.