It appears as though there's a mass exploitation of a wide variety of web sites injecting malicious code to gain access to visitors' computers. The exploits, once loaded, appear to sniff for passwords. More information here at SANS and the original advisory here, from US CERT.
You are strongly advised to verify that your OS has the most recent patches installed for it, particularly if you're running Windows with MSIE. If you're using Firefox, ensure that you're using the latest version, and consider using the NoScript extension to control what sites you wish to allow JavaScript on. You may also wish to disable all scripting for the next week if you're paranoid. This exploit has the potential to be exceedingly widespread, so be aware of this while you're browsing. Many of the infected sites are government, commercial, and organizational sites.
I'll keep this post stickied until the threat appears to have simmered down. I'll also be copying my request scrubber from the DESTRealm.Org forums once I'm certain that it is working, so if service is interrupted or you're unable to access certain features of the forum, just make a post here or in a separate thread, and I'll see what it's doing.
Edit: Letting this advisory decay since its seems to have passed without much incident.
It is currently Thu Nov 21, 2024 8:10 pm
!!! Important Advisory !!!
3 posts
• Page 1 of 1
!!! Important Advisory !!!
by Zancarius » Fri Apr 25, 2008 9:42 pm
Last edited by Zancarius on Sat May 10, 2008 1:47 pm, edited 1 time in total.
I gave that lich a phylactery shard. Liches love phylactery shards.
-
Zancarius - Site Admin
- Posts: 3907
- Joined: Wed Jul 05, 2006 3:06 pm
- Location: New Mexico
- Gender: Male
3 posts
• Page 1 of 1
Who is online
Users browsing this forum: No registered users and 6 guests