CyberInsecure.com

Daily cyber threats and internet security news: network security, online safety and latest security alerts
September 19th, 2008

Texas National Guard Website Remains Unavailable After Malware Infection

The website for the Texas National Guard remained unreachable on Friday, two days after security researchers said it had been hacked by miscreants who were using it to install malware on visitors PCs. Some pages on the website were probably SQL injected.

On Wednesday, Roger Thompson, chief research officer of anti-virus provider AVG, reported that selected pages on the site were attempting to install a rootkit on machines that were not fully patched. The ruse starts by silently redirecting visitors to a site called add-block-plus.net, which in turn bounces visitors to several other sites.

The attack comes as the Texas National Guard responds to Hurricane Ike, which earlier this week ravaged the gulf coast of Texas. Someone answering the guard’s public affairs line said the person responsible for the website was busy with relief efforts.

Not only Texas has been hammered so hard by the hurricane, the guys that are probably helping out the most have been hacked in return. Now Texas National Guard needs to find how the Bad Guys got in, and then fix the flaw, which will most likely pop on other gov related websites. According to Sophos researchers, the Texas National Guard is only one of many sites to be hit in the attack. The malware residing on the site is detected as Mal/ObfJS-A.

Share this item with others:

More on CyberInsecure:
  • Data Breach At Texas Comptroller Office, 3.5 Million People Details Publicly Accessible For Over A Year
  • One Of CNN Sports Websites Hacked By Chinese Anti-CNN Group
  • Whirlpool’s Kitchenaid.com Remains Malware Infected For 5 Months
  • NSA Goes Offline Due To A DNS Glitch
  • Camelot Denies SQL Injection Vulnerability On UK National Lottery Website National-Lottery.Co.Uk

    • Posted in Breaches And Incidents, Hacked, Malware, SQL Injections, Trojans & Worms | Print This Post Print This Post

    This entry was posted on Friday, September 19th, 2008 at 5:08 pm and is filed under Breaches And Incidents, Hacked, Malware, SQL Injections, Trojans & Worms. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.

    If you found this information useful, consider linking to it from your own website.
    Just copy and paste the code below into your website (Ctrl+C to copy)
    It will look like this: Texas National Guard Website Remains Unavailable After Malware Infection

    Leave a Reply

    Comments with unsolicited links to other resources will be marked as spam. DO NOT leave links in comments. Please leave your real email, it wont be published.

    *
    To prove you’re a person (not a spam script), type the security word shown in the picture. Click on the picture to hear an audio file of the word.

    « «
    » »