***VIRUS WARNING***Large-Scale Attack Hits Thousands of Web Sites NAME: Download.Ject/Scob

[Amused]

Originally posted by: Strang

Originally posted by: Stark
has anyone seen this one yet? just wondering how cautious i need to be.

I'm curious too -- I hadn't heard anything about it until seeing this post, but it'd be nice to know what to look for if/when it hits my company's network.

I'd like to know what it's called, and what are the warning signs or how to know you're infected.

And why isn't this stickied yet???

 

[Ilmater]

Originally posted by: PanzerIV
I wish we could chop off the fingers of these losers who keep releasing this stuff. I am sick to death of it. Of course there are a lot of very successful companies whose very livlihood depends on this sh!t to continue indefinitely.

Where do you think they come from?

 

[Zee]

this is only for IE users. look on the top of nynewsday.com

 

[Amused]

Originally posted by: Lazee
this is only for IE users. look on the top of nynewsday.com

And the vast majority of people use IE. So this is very important.

 

[Zee]

Originally posted by: Amused

Originally posted by: Lazee
this is only for IE users. look on the top of nynewsday.com

And the vast majority of people use IE. So this is very important.

True... but then a better post to sticky would be "Will everyone stop using IE and use Firefox until further notice"

 

[Ilmater]

sticky

 

[Amused]

Originally posted by: Ilmater
sticky

 

[skyking]

I got hit with it, and NAV found it in a systemwide scan. It comes in and infects temporary internet files, posing as gifs and jpegs.
Norton does not catch it on the way in. It identifies it as "trojan horse", a very generic reference at best.
I t has infected many mainstream sites, as far as I could tell by looking at the titles of the images.

 

[Aharami]

bump

 

[MAME]

so there's no fix for this yet?


GO FIREFOX!

 

[sandorski]

Originally posted by: Lazee
this is only for IE users. look on the top of nynewsday.com

Oh, no worries here then.

 

[Amused]

Originally posted by: Aharami
bump

 

[fs5]

YARTUF

 

[Amused]

MS info page:

http://www.microsoft.com/security/incident/download_ject.mspx

 

[Platypus]

IMPLANT HACKER SOFTWARE?!?! HEAVENS NO!

 

[Nikamichi]

OMGN0RT0NAVS4V3DM3!

 

[Amused]

bump

 

[tk149]

ttt - maybe if the OP asked for a sticky in forum issues?

 

[NogginBoink]

There are two things you can do:

If you run an IIS 5.0 server, make sure you have MS04-011 installed. (And that you've rebooted since you installed it.) Make sure the 'enable document footer' isn't unexpectedly checked on any of your websites.

If you run IE, you can tighten the security in the local computer zone.

 

[ViRGE]

The only problem with tightening security, Noggin, is that you have to disable JavaScript to plug the hole. These forums, in turn, are a casualty of disabling JavaScript.

 

[Amused]

Originally posted by: tk149
ttt - maybe if the OP asked for a sticky in forum issues?

I did that already. :|

 

[Amused]

Morning bump...

 

[Schadenfroh]

Originally posted by: Amused
Morning bump...

looks like you got your sticky :beer:

 

[InlineFive]

I should get all my computers using FireFox instead of Internet Explorer.

 

[Amused]

Originally posted by: Schadenfroh

Originally posted by: Amused
Morning bump...

looks like you got your sticky :beer:

Yep. Nothing works like a morning bump.