Lumension® Endpoint Intelligence Center

Intelligence Center » News Archive » Over 100 forum websites foist poorly detected malware

Over 100 forum websites foist poorly detected malware

2015/04/09

Softpedia - (International) Security researchers at Cyphort discovered a supposed click-fraud campaign that exploits Web forums running outdated versions of vBulletin or IP Board software to use malicious code to direct visitors to a landing page hosting the Fiesta exploit kit (EK) to deliver Gamarue and FleerCivet malware that steals information and injects backdoor trojans. The malware ensures persistence by avoiding virtual environments and disabling security settings on compromised systems, and exploits vulnerabilities found in Internet Explorer and in Adobe Flash Player version 16.0.0.296 and earlier.

Source: http://news.softpedia.com/news/Over-100-Forum-Websites-Foist-Poorly-Detected-Malware-478020.shtml

Note: This news synopsis is taken from the DHS Daily Open Source Infrastructure Report, a daily [Monday through Friday, except US Federal holidays] summary of open-source published information concerning significant critical infrastructure issues; a 10-day archive of the DOSIR can be found at: http://www.dhs.gov/dhs-daily-open-source-infrastructure-report.


Last Updated: 27 May 2016 10:24:02