Wikipedia Blaster 'fix' points to malware
Print storyAchtung!
Posted in Anti-Virus, 3rd November 2006 18:47 GMT
Free whitepaper – Securing your Microsoft Internet Information Services (MS IIS) web server
Hackers have hijacked links on a Wikipedia article to trick users into downloading malware.
A piece on the German edition of Wikipedia was re-written to contain false information about a supposedly new version of the infamous Blaster worm, along with a link to a supposed 'fix'. In reality, the link pointed to malware designed to infect Windows PCs.
Hackers then spamvertised a bogus warning about the new Blaster variant to German users alongside links to the fraudulent Wikipedia entry, in a bid to lend credibility to the bogus warning. The article was quickly edited to remove the bogus information and the attack is not thought to have claimed many victims, reports UK anti-virus firm Sophos.
Nonetheless the assault serves to illustrate how Wikipedia's policy of openness, featuring few controls on who can create or modify articles, lends itself to abuse by malware authors as well as other kinds of mischief-making we've seen in the past. The incident also illustrates the constantly evolving nature of social engineering attacks employed by hackers, VXers and other riff-raff. ®
Free whitepaper – Avoiding 7 common mistakes of IT security compliance
Airport insecurity: the case of lost laptops
Jump start your Application Security initiatives
Reducing messaging and web security costs with managed services
Avoiding 7 common mistakes of IT security compliance
Extended Validation SSL Certificates
Feds: Hospital hacker's 'massive' DDoS averted
Buggy 'smart meters' open door to power-grid botnet
Microsoft knew of nasty IE bug a year before attacks
BlockMaster SafeStick hardware-encrypted USB drive