A new attack was' poison 'search results in Google Search. Infection in the form of the 'evil' that can spread quickly, as submitted by the Computer U.S. Emergence Response Team (Cert), Monday (18 / 5) yesterday. Attack is found in some of the legitimate website. Malware is the weakness in the Adobe software and use it to install the program 'evil' in the computer of the victim.
The program is named Gumblar, because it comes from the domain Gumblar.cn. The program is Gumblar akan FTP login steal the victim and then use confidential information to be logged. Gumblar program will also hijack the browser of the victim, with the change in Google's search results with links that go directly to the attacker.
According to security company, ScanSafe, the program is the first time Gumblar present in March, and then menginfeksi some websie, but several weeks of infection is increasing dramatically. ScanSafe mengihtung there are more than 3.000 websites infection, and increased 800 website again since a week ago. According to Mary Landesman, senior security researcher at ScanSafe, the growth rate Gumblar infection is very unusual, because the new few months alone, the total number of infected websites has been increasing, and the webmaster must immediately clean up their server.
"The attacker Gumblar after stealing FTP login, and then use them in a folder permission changes ... and make every crevice menginfeksi back to the server." Landesman said. Landesman added, if users continue to update the system and security software, the user can be protected from this attack Gumblar.
Tidak ada komentar:
Posting Komentar