Date: Mon, 12 Feb 2007 10:17:18 -0600 (CST)
From: Gadi Evron <ge@linuxbox.org.>
To: [email protected]Subject: defacements for the installation of malcode
Message-ID: <Pine.LNX.4.21.0702121006480.14975-100000@linuxbox.org.>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Greylist: Sender IP whitelisted, not delayed by milter-greylist-1.7.5 (linuxbox.org [127.0.0.1]); Mon, 12 Feb 2007 10:17:22 -0600 (CST)
X-Virus-Scanned: antivirus-gw at tyumen.ru
Websense just released a blog post on how sites get defaced for malicious
purposes other than the defacement itself, such as installing mallicious
software on visiting users.
This is yet another layer of abuse of web server attack platforms.
You can find their post here:
http://www.websense.com/securitylabs/blog/blog.php?BlogID=109
Gadi.
