Samsung Telecom plays unwilling host to Trojan
Print storyStowaway spyware alert
Posted in Anti-Virus, 8th September 2006 13:50 GMT
Free whitepaper – Certify your software integrity with Thawte code signing certificates
The Samsung Telecom's site is inadvertently hosting malware, according to web security firm Websense.
The US-based site contains a number directories and files which, if downloaded and run, install malicious code on end-users' machines. Among the nasties currently housed on the site is a Trojan horse designed to log data submitted to online banking websites.
In mitigation, the site doesn't harbour exploit code that might be used to download malicious files without user interaction. Surfers would have to be tricked into downloading and running hostile code in order to get infected, a process nonetheless facilitated by the trusted nature of Samsung Telecom's site.
Websense has contacted site admins about the problem. "The server appears to have been compromised and has been hosting a variety of [malicious] files for some time", it adds. ®
Free whitepaper – Vulnerability management buyer's checklist
The business case for application security
Reducing messaging and web security costs with managed services
Vulnerability management buyer's checklist
Extended Validation SSL Certificates
The best practices guide for application security
Feds: Hospital hacker's 'massive' DDoS averted
Buggy 'smart meters' open door to power-grid botnet
Microsoft knew of nasty IE bug a year before attacks
BlockMaster SafeStick hardware-encrypted USB drive