See about about it from:
http://securitylabs.websense.com/content/Alerts/3413.aspx
http://securitylabs.websense.com/content/Alerts/3413.aspx
I just want to bring your attention that you should not visit the site and neither should you trust Nettrust or whatever they said they were protected by. It just show that it failed.
Abstract:
Compromised Site: Popular.com.sg
Date:06.05.2009
Threat Type: Malicious Web Site / Malicious Code
Websense® Security Labs™ ThreatSeeker™ Network has discovered that the home page of Popular Bookstore in Singapore has been compromised, and is infecting site visitors with malicious code.
Popular Bookstore Web site:
The homepage at www.popular.com.sg has been injected with malicious code. Normally this page would just redirect users to https://www.popular.com.sg/jsp/index.jsp (where the main site operates), but malicious obfuscated code has been injected into that page.
Screenshot of the malicious injected code:
Popular Bookstore is an integrated business company comprising publishing, distribution, bookstore operations, and franchising. The Web site is very reputable and popular in Singapore.
We have been monitoring this attack because earlier, the obfuscated code resulted in an Iframe leading to the exploit site at karlast.com. Currently, the Iframe has changed and redirects users to the exploit site at suptullog.com.
Websense Messaging and Websense Web Security customers are protected against this attack.
Abstract:
Compromised Site: Popular.com.sg
Date:06.05.2009
Threat Type: Malicious Web Site / Malicious Code
Websense® Security Labs™ ThreatSeeker™ Network has discovered that the home page of Popular Bookstore in Singapore has been compromised, and is infecting site visitors with malicious code.
Popular Bookstore Web site:
The homepage at www.popular.com.sg has been injected with malicious code. Normally this page would just redirect users to https://www.popular.com.sg/jsp/index.jsp (where the main site operates), but malicious obfuscated code has been injected into that page.
Screenshot of the malicious injected code:
Popular Bookstore is an integrated business company comprising publishing, distribution, bookstore operations, and franchising. The Web site is very reputable and popular in Singapore.
We have been monitoring this attack because earlier, the obfuscated code resulted in an Iframe leading to the exploit site at karlast.com. Currently, the Iframe has changed and redirects users to the exploit site at suptullog.com.
Websense Messaging and Websense Web Security customers are protected against this attack.
No comments:
Post a Comment