Amnesty International Site Serving Java Exploit

Status
Not open for further replies.
Jack

Jack

Administrator
Thread author
Verified
Staff Member
Well-known
Jan 24, 2011
9,378
Krebs on Security said:
Amnesty International‘s homepage in the United Kingdom is currently serving malware that exploits a recently-patched vulnerability in Java. Security experts say the attack appears to be part of a nefarious scheme to target human rights workers.

The site’s home page has been booby trapped with code that pulls a malicious script from an apparently hacked automobile site in Brazil. The car site serves a malicious Java applet that uses a public exploit to attack a dangerous Java flaw that I’ve warned about several times this past month. The applet in turn retrieves an executable file detected by Sophos antivirus as Trojan Spy-XR, a malware variant first spotted in June 2011.

A woman who answered the phone this morning at Amnesty International’s research and policy branch in the U.K. declined to give her name, but said she would pass on the information about the break-in. The site remains compromised.

Read more...
Click to expand...
 
win7holic

win7holic

New Member
Apr 20, 2011
2,079
Exploit seasons now?
several months earlier about Ransomware. lately it feels Fake AV and Exploit.
 
moonshine

moonshine

Level 7
Verified
Apr 19, 2011
1,264
Exploits any threats out there doesn't choose a time for it to be released. They are around all year long. This is nothing new.
 
Gnosis

Gnosis

Level 5
Apr 26, 2011
2,779
Frankly, I have been all over the internet lately. I don't think I could find a trojan, virus or other malware if I tried. I don't know if it is the calm before the storm, or illegitimate hackers have found another way to make money and get their kicks. I was thinking of starting my own malware removal gig, but now I am not sure I could stay busy enough to generate a steady income.
 
Prorootect

Prorootect

Level 69
Verified
Nov 5, 2011
5,855
@ZOU1,

Quote:
'I don't think I could find a trojan, virus or other malware if I tried. I don't know if it is the calm before the storm, or illegitimate hackers have found another way to make money and get their kicks.'

- I think that for this new situation (as there is almost no malware on the Web) - we can thank: especially the SmartScreen Filter in Internet Explorer (which ended with the sickly spread of the Russian Fake AV, Chinese also), and also Google's efforts last time ..:cool:
 
Status
Not open for further replies.

Similar threads

Gandalf_The_Grey
    • Like
    • Wow
    • +Reputation
Amnesty International Canada breached by suspected Chinese hackers
Replies
0
Views
603
News Archive
Gandalf_The_Grey
Gandalf_The_Grey
silversurfer
    • Like
    • +Reputation
    • Thanks
Beware of Fake Amnesty International 'Anti Pegasus' Software
Replies
0
Views
760
News Archive
silversurfer
silversurfer
upnorth
    • Like
Critical RCE Lexmark Printer Bug Has Public Exploit
Replies
1
Views
714
News Archive
Gandalf_The_Grey
Gandalf_The_Grey

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top