Must Read: No niche for iPad: Why I returned mine

Topic: Browser

Amnesty International UK compromised, serving exploits and malware

Summary: Researchers from Barracuda Labs have detected a drive-by malware campaign currently embedded at the web sites of Amnesty International UK.

Dancho Danchev

By for Zero Day |

Researchers from Barracuda Labs have detected a drive-by malware campaign currently embedded at the web site of Amnesty International UK.

Based on historical data, the researchers conclude that the compromise took place on, or before Friday, December 16.

Once users visit the site, a malicious script will load from 3max[.]com serving CVE-2011-3544.

Detection rate for the malicious payload is low.

UPDATE: Emerson Povey from Amnesty International comments:

We have been working with our hosting service to resolve the problem. They have cleaned both servers, rebooted, and removed the script. At 2pm today they confirmed that the issue is now resolved.

Topics: Browser, Malware, Security, Software Development

Kick off your day with ZDNet's daily email newsletter. It's the freshest tech news and opinion, served hot. Get it.

Talkback

1 comment
Log in or register to join the discussion

  • It's nice to know that they have cleaned their servers, but...

    that is only half the story. Why doesn't this article inform the reader of how to clean the malware off of an infected client machine which may have visited that site?

    Lazy writing, just plain lazy. Frankly, I expect more from a tech site like ZDN.

    Regards,
    Jon
    JonathonDoe
    Reply Vote
CNET Join | Log In | Privacy | Cookies Close