Computers OverClocked Forums Computers OverClocked
"Not just another computer help website."

FAQ Search Upgrade Register
Favorite Threads Private Messaging Login

Menu
Forums
RegisterRegister
Over Clocking Guide
Over Clocking Help
Computer Building Help
Virus/Security Alerts
Broadband Tweaks
Computing Guides
Featured Hot Deals
Reviews
Tools


Top 25 reasons to register!

Advertise your link here for $19.99/month!

 
 Computers OverClocked Welcomes You!
 Date/Time is Thu Nov 23, 2017 1:09 am
 Computer Photo Gallery
Computing News Headlines:
New HTC Android Phones Tweaked to Evade Apple Patents
Ivy Bridge Temperatures – It’s Gettin’ Hot in Here
Adobe CS6 on sale today, Creative Cloud coming May 11th

Spreading Web Virus Aims to Steal Financial Data
Post new topic Reply to topic Computers OverClocked Forums - Computing News All times are GMT - 5 Hours - EDT
Author Message
Adam
His Excellency



User is offline 
Send private message
Joined: Jun 15 2003
Posts: 5537
Location: New York

PostPost subject: Spreading Web Virus Aims to Steal Financial Data
Posted: Fri Jun 25, 2004 9:50 pm
Reply with quote

SAN FRANCISCO (Reuters) - A potentially dangerous Internet attack on personal computers by a virus designed to steal financial data and passwords from Web users rippled across the Internet on Friday, computer security experts said.

The attack, which surfaced earlier this week and is known as the "Scob" outbreak, exploits a vulnerability in servers using a version of Microsoft Corp.'s IIS software, and has been called more dangerous than the recent "Sasser" and "Blaster" infections.

The infected servers in turn exploit another vulnerability in Microsoft's Internet Explorer browser to install a Trojan Horse virus on the PCs of Web surfers who visit the infected Web sites, said Alfred Huger, senior director of engineering at Internet security company Symantec Corp.

"All of this takes place while it looks like you're viewing the same Web page," Huger said. "You don't even know that parts of your browser have been redirected to another Web site."

The U.S. Computer Emergency Readiness team warned on its Web site that "any Web site, even those that may be trusted by the user, may be affected by this activity and thus contain potentially malicious code."

The Trojan Horse places a keystroke logger on users' PCs and is designed to capture credit card numbers and passwords and send them back to a server in Russia, said Michael Murray, director of vulnerability and exposure at computer security firm nCircle Network Security.

By late Friday, however, the threat to users' personal data seemed to have diminished, at least for the time being.

"The server appears to have been shut down in the last eight hours," Murray said. "We don't know if it was shut down by authorities or whether it was accidental."

NO PATCHES YET

The attack is more alarming than most because there are no patches available yet from Microsoft to fix the vulnerability in Internet Explorer that lets the hackers take control of computers, security researchers said.

On its Web site, Microsoft said users could search for the files "Kk32.dll" or "Surf.dat" to see if their PCs were infected. The company also suggested that users set their browser security level to "high."

Stephen Toulouse, a security program manager at Microsoft, said there were three vulnerabilities involved in the attack, two of which Microsoft addressed in April with software patches. He said Microsoft was working on a patch to fix this latest vulnerability, which was published about two weeks ago.

Toulouse said that version 5 of Microsoft's Internet Information Services software which had not had an April patch installed was vulnerable to being turned into a virus transmitter.

"The attacker is exploiting a vulnerability and changing the Web pages on the server and turning them around to try and exploit vulnerabilities on Internet Explorer that customers are using to view the (infected) Web sites," Toulouse said.

Experts also urged computer users to update their anti-virus software protection software.

Most anti-virus software has been updated so that it can prevent the Trojan Horse from being installed, but because there is no patch, there's no way to prevent future attacks to install the virus, Huger said.

"The truly alarming part is there is no patch available for that vulnerability," Huger said.

The Macintosh version of Internet Explorer is not affected, nor are non-Microsoft browsers such as Mozilla, Opera and Apple Computer Inc.'s Safari browser, security experts said.

? Reuters 2004. All Rights Reserved.
_________________
Fast computers wanted to cure diseases: Distributed Computing
Do you like the site? Did I help you out?
Please consider upgrading to an Advantage Account. It helps the site's expensive costs. Thanks!
Back to top
 Rate Post
juliyaluis
NEW POSTER


User is offline 
Send private message
Joined: Nov 04 2017
Posts: 1

PostPost subject: Re: Spreading Web Virus Aims to Steal Financial Data
Posted: Sat Nov 04, 2017 9:08 am
Reply with quote

Congrats on the new beginning, Mr. Krebs. You've assuaged me from consistently wanting to visit the site of your previous business once more, and for that I am interminably thankful. Hire Someone to Write Assignment for Me
Back to top
 Rate Post
View previous topic :: View next topic  
Post new topic Reply to topic Computers OverClocked Forums - Computing News Page 1 of 1


Similar Topics
Topic Author Forum Replies Posted
No new posts teresting data blaming the injury gods kjh8901 Build a Computer - Computer Building Help 0 Thu Nov 16, 2017 12:16 am View latest post
No new posts How AVG Web TuneUp Protects Theft of ... ambil123 Hardware/Software Help, Questions and Information 0 Thu Nov 09, 2017 4:15 am View latest post
No new posts How to Restore the Lost Data from Sam... truzhk538 Broadband Tweaks, Tips and Optimization 1 Tue Oct 31, 2017 4:42 am View latest post
No new posts protein or a virus quinraji The General Store 0 Sat Oct 28, 2017 7:30 pm View latest post
No new posts Transfer Data from HTC to Samsung Gal... Lillllian2016 Hardware/Software Help, Questions and Information 0 Mon Oct 16, 2017 2:38 am View latest post