Peaches Posted July 20, 2009 Report Share Posted July 20, 2009 17 JulyMassive SQL Injection Ensues7:21 am (UTC-7) | by Det Caraig (Technical Communications) With the growing concern with numerous vulnerabilities, just this afternoon, Trend Micro Research Project Manager, Ivan Macalintal, stumbled on a somewhat regional fallout of this SQL injection in India threading through numerous compromised government, tourism, popular media, and other sites. We have identified the following new URLs leading to more malware that made it into unknowing users’ systems while visiting sites where the malicious script injection was found and identified:http://lsg.kerala.gov.inhttp://www.lsg.kerala.gov.inhttp://www.bangaloremirror.comhttp://www.mumbaimirror.comhttp://www.kolkatamirror.comhttp://www.mumbaipluses.comhttp://education.indiatimes.comhttp://www.kolhapurbusiness.comhttp://www.bizxchange.inhttp://timesascent.inhttp://www.studio3india.comhttp://www.timesascent.co.inhttp://www.mumbaibusinessdirectory.inhttp://www.tourindianow.orghttp://www.bizxchange.inhttp://www.maharashtradirectory.comBased on Trend Micro threat analyst Joseph Pacamarra’s initial findings, the Trojan detected as TROJ_AGENT.HOZZ has only been seen so far in two domains, jatrja.com and js.tongji.linezing.com. Figure 1 below shows how users can get infected.More details at trendlabs - http://blog.trendmicro.com/ Quote Link to post Share on other sites
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.