Resultados 1 a 2 de 2
  1. #1
    WHT-BR Top Member
    Data de Ingresso
    Dec 2010
    Posts
    14,995

    [EN] Malware Injects Ads and Porn via Google Analytics

    As part of an ad-fraud scheme, attackers are using router malware to make it so advertisements and pornography are injected into every website a user visits – so long as the website uses Google Analytics.


    “In this case, the fraudsters are using the hijacked DNS to intercept requests to the google-analytics.com domain, then directing the victim to a fake Google Analytics site,” Sergei Frankoff, a researcher with Ara Labs, wrote in a Wednesday post.


    He explained, “When the victim requests the Google Analytics [JavaScript] from the fake site they are served malicious [JavaScript] that injects ads into the site they are browsing.”



    http://aralabs.com/blog/2015/03/25/a...gle-analytics/

  2. #2
    WHT-BR Top Member
    Data de Ingresso
    Dec 2010
    Posts
    14,995

    Variação / Baidu

    GitHub hit by Massive DDoS Attack From China


    Github – a popular coding website used by programmers to collaborate on software development – was hit by a large-scale distributed denial of service (DDoS) attack for more than 24 hours late Thursday night.

    It seems like when users from outside countries visit different websites on the Internet that serve advertisements and tracking code from Chinese Internet giant Baidu, the assailants on Chinese border quietly inject malicious JavaScript code into the pages of those websites.

    The code instructs browsers of visitors to those websites to rapidly connect to GitHub.com every two seconds in a way that visitors couldn't smell, creating "an extremely large amount of traffic," according to a researcher who goes by the name A nthr@x.
    "A certain device at the border of China’s inner network and the Internet has hijacked the HTTP connections went into China, replaced some JavaScript files from Baidu with malicious ones," A nthr@x wrote at Insight Labs.
    "In other words, even people outside China are being weaponized to target things the Chinese government does not like, for example, freedom of speech."

    The attack specifically targets two popular Github projects – GreatFire and CN-NYTimes – anti-censorship tools used to help Chinese citizens circumvent The Great Firewall Of China, the government's censorship of Internet access in China.
    GreatFire – A well-known group on Github that fights against Chinese government censorship of the Internet.
    CN-NYTimes – A group that hosts New York Times mirrors to allow Chinese citizens to access the news website, which is normally blocked in China.

    Since Baidu search engine is extremely popular, the attack results in the massive flood of traffic on the Github website which begun around 2 AM UTC on Friday and last for more than 24 hours.

    GitHub said yesterday that the flood of traffic, a continuous string of distributed denial-of-service attacks, caused irregular outages and that their admins have been working to mitigate the attack with periodic success.

    ...
    Última edição por 5ms; 28-03-2015 às 14:19.

Permissões de Postagem

  • Você não pode iniciar novos tópicos
  • Você não pode enviar respostas
  • Você não pode enviar anexos
  • Você não pode editar suas mensagens
  •