Wikipedia Blaster 'fix' points to malware
PrintAchtung!
Posted in Malware, 3rd November 2006 18:47 GMT
Hitachi IT Operations Analyzer: 30-day free trial
Hackers have hijacked links on a Wikipedia article to trick users into downloading malware.
A piece on the German edition of Wikipedia was re-written to contain false information about a supposedly new version of the infamous Blaster worm, along with a link to a supposed 'fix'. In reality, the link pointed to malware designed to infect Windows PCs.
Hackers then spamvertised a bogus warning about the new Blaster variant to German users alongside links to the fraudulent Wikipedia entry, in a bid to lend credibility to the bogus warning. The article was quickly edited to remove the bogus information and the attack is not thought to have claimed many victims, reports UK anti-virus firm Sophos.
Nonetheless the assault serves to illustrate how Wikipedia's policy of openness, featuring few controls on who can create or modify articles, lends itself to abuse by malware authors as well as other kinds of mischief-making we've seen in the past. The incident also illustrates the constantly evolving nature of social engineering attacks employed by hackers, VXers and other riff-raff. ®
Systems management simplified
Total cost of ownership of Dell, HP and IBM blade solutions
Out-of-box comparison between Dell, HP, and IBM blade servers
Optimizing the data center for cost and efficiency
The easiest Siebel CRM installation on the market today