New chinese trojan hunts for WOW accounts
Chinese hackers attacked over 5k western servers in order to spread a new worm. Most of the servers run Microsoft IIS/ASP and thought to have been hit by SQL injection attack, Kaspersky labs reports.
Malicious javascript code has been placed to hacked pages, causes surfers visiting the site to pull content from one of 6 proxty sites, which redirect to a server hosting malware located in China. Hosted malware disgned to exploit recently patched flaws in Internet Explorer, Macromedia Flash Player, ActiveX, and Firefox.
On successful exploitation trojan downloader code is installed and run on surfers PCs. The target of this malware is users who play popular MMORPG World of Warcraft. The trojan steals login credentials and emails them to the attackers. Once they’ve got your info, they’re free to do what they want: auction off your items, change your password and sell your account, etc. So if you’ve noticed anything phishy lately on your PC, it might be a good idea to run the MSRT or your malware removal tool of choice.
Experts recommend to keep system up-to-date with lasted security updates and enchantments as a countermeause. WoW users are targeted by hackers from time to time. In June 2008 worm called "Taterf" stole thousands of accounts and now this...
To learn more about this trojan visit Kaspersky labs.
Posted at 12:39PM Nov 10, 2008 by admin in Offtopic |