2 Apr
Windows Stability Center [Lizamoon attack]
“<script src=http://*/ur.php” is the code that has compromised hundreds of thousands of websites via SQL injection security holes.
These attacks were engineered so that visitors who landed on the attacked page were informed that their machines were infected with many viruses. They were then redirected to download a fake software called ‘Windows Stability Center‘.
The security firm known as Websense has been tracking the attacks since they’ve started 3 days ago and counted sum 28,000 attacked sites with numbers having grown these past days. It has been dubbed the most successful SQL injection attack ever seen by security experts as attackers have managed to inject code that displays links to 21 different domains.
Most (if not all) websites which were infected were shut down, these websites were mainly mid-tier organizations.
Are you infected with Windows Stability Center? It can be removed with Malwarebytes or RKill.
Source – BBC
0 Responses