Texas National Guard Website Remains Unavailable After Malware Infection
The website for the Texas National Guard remained unreachable on Friday, two days after security researchers said it had been hacked by miscreants who were using it to install malware on visitors PCs. Some pages on the website were probably SQL injected.
On Wednesday, Roger Thompson, chief research officer of anti-virus provider AVG, reported that selected pages on the site were attempting to install a rootkit on machines that were not fully patched. The ruse starts by silently redirecting visitors to a site called add-block-plus.net, which in turn bounces visitors to several other sites.
The attack comes as the Texas National Guard responds to Hurricane Ike, which earlier this week ravaged the gulf coast of Texas. Someone answering the guard’s public affairs line said the person responsible for the website was busy with relief efforts.
Not only Texas has been hammered so hard by the hurricane, the guys that are probably helping out the most have been hacked in return. Now Texas National Guard needs to find how the Bad Guys got in, and then fix the flaw, which will most likely pop on other gov related websites. According to Sophos researchers, the Texas National Guard is only one of many sites to be hit in the attack. The malware residing on the site is detected as Mal/ObfJS-A.
More on CyberInsecure:
Leave a Reply
Comments with unsolicited links to other resources will be marked as spam. DO NOT leave links in comments. Please leave your real email, it wont be published.