Asus.com hacked, serving up .ANI exploits

Asus.com hacked, serving up .ANI exploits

Summary: The official Web site of Asustek Computer has been hijacked and used to serve up exploit code for the recently-patched animated cursor (.ani) vulnerability.

SHARE:
TOPICS: Browser
8
The official Web site of Asustek Computer has been hijacked and used to serve up exploit code for the recently-patched animated cursor (.ani) vulnerability.


  Photo Gallery: Catch a glimpse of the animated cursor exploit in action. The image gallery includes screenshots of rigged sites and an exploit timeline that shows the rapid escalation of the attacks.  

An embedded iFrame HTML element was planted on the Asus.com site (currently offline) and used to point visitors to other malicious sites hosting the ANI exploit code.

The Asus.com hijack was first reported on Dynamoo's Blog and verified by Kaspersky Lab's Roel Schouwenberg.

Asustek Computer, a well-known mother board manufacturer, also produces cell phones, desktop and notebook computers, graphics cards, optical drives, servers, and networking devices.

This is not the first malware-related site breach affecting Asus.com. Last December, the site was launching drive-by downloads of password-stealing spyware programs on unsuspecting surfers.

Asustek officials could not be reached for comment.

Topic: Browser

Kick off your day with ZDNet's daily email newsletter. It's the freshest tech news and opinion, served hot. Get it.

Talkback

8 comments
Log in or register to join the discussion
  • Is it any wonder why Asus is getting hacked?

    They're using Windows and IIS...

    http://toolbar.netcraft.com/site_report?url=http://www.Asus.com
    YinToYourYang-22527499
    • Indeed...

      One begins to wonder how long before M$ starts dishing these out too...

      They are actually foolish enough to be using their own software!

      Even eBay has this goofed!

      At least amazon.com seems to be using something potentially securable... as is Apple, of course!
      fde101
    • According to zone-h.org's database, Linux gets hacked more

      "The Linux servers were actually getting hacked and defaced far more often than the Windows server and Apache was also being hacked and defaced more than Microsoft IIS"

      http://blogs.zdnet.com/Ou/?p=77
      georgeou
      • Poor Admins

        I have never had either hacked, hijacked or defaced; although many have tried according to the logs.

        What I dislike about IIS is you have to manually update your extras i.e mysql, php, perl,python etc.. too much work, not to mention getting hardened php on windows is a PITA.

        Ill put a hardened Linux LAMP system up against 2003, IIS, .NET anyday of the week. Even if apache had a buffer overflow vuln the most it would do is crash apache.
        Suicida|
        • IIS6

          [i]"Even if apache had a buffer overflow vuln the most it would do is crash apache."[/i]

          Same for IIS6, as it runs in a process that has near zero privileges on the system.

          IIS5 however...
          toadlife
    • (nt)So did you have something to say?

      ...
      toadlife
  • Microsoft wants to rule the SOFTWARE world!

    If you have ANYTHING to do with software (SAP. IBM and even HP) Microsoft is out to get you! They will stop at nothing less than total ownership of all bits and bytes!

    The danger is Real! The Danger is Microsoft!...
    nomorems
  • They need to increase their support for Vista anyways.

    They need to increase their support for Vista anyways - I'm sure a lot of people are pissed at them for not offering drivers for older motherboards such as the A8N-SLI Deluxe, even though it's perfectly capable of running Vista.
    CobraA1