/>
X

Screenshots: Sites harbor Windows Trojan

Simply by visiting these sites using a vulnerable Windows PC could cause an infection, Websense says.
bill-detwiler.png
By Bill Detwiler on
13468.jpg
1 of 6 Bill Detwiler/ZDNET

Hiding places for Windows Trojan

A flaw in some versions of Microsoft Windows Meta File is spawning attacks ranging from worms to spam, security experts have warned. The Windows Meta File flaw uses images to execute arbitrary code, according to a security advisory issued by the Internet Storm Center.

Websense Security Labs has posted some examples of sites that appear to have been compromised. This is a Dutch example.

13469.jpg
2 of 6 Bill Detwiler/ZDNET

Renovation site hosts Trojan

A vulnerable Windows system could become infected if someone just views what appears to be a malicious image on this compromised Web site, according to Websense's posting.

13470.jpg
3 of 6 Bill Detwiler/ZDNET

Sites compromised worldwide

Websense, which has been tracking malicious activity around the flaw, says it has discovered malicious sites in the United States, Russia, Netherlands, the United Kingdom, China and Japan.

13471.jpg
4 of 6 Bill Detwiler/ZDNET

Compromised Cosmo site

Another example. Mikko Hypponen, chief research officer at F-Secure, estimates that 99 percent of computers worldwide are vulnerable to an attack using the WMF flaw.

13472.jpg
5 of 6 Bill Detwiler/ZDNET

Street IT site could pose a risk

Microsoft has said it plans to release a fix for the WMF vulnerability as part of its monthly security update cycle on Jan. 10.

13473.jpg
6 of 6 Bill Detwiler/ZDNET

Knoppix behavior

This is how a machine running Knoppix, a version of Unix, behaves when a malicious Web site is visited using the open-source Firefox browser. It alerts the Web surfer that a file is being opened.

Related Galleries

Hyundai Ioniq 5 and Kia EV6: Electric vehicle extravaganza
img-8825

Related Galleries

Hyundai Ioniq 5 and Kia EV6: Electric vehicle extravaganza

26 Photos
A weekend with Google's Chrome OS Flex
img-9792-2

Related Galleries

A weekend with Google's Chrome OS Flex

22 Photos
Cybersecurity flaws, customer experiences, smartphone losses, and more: ZDNet's research roundup
shutterstock-1024665187.jpg

Related Galleries

Cybersecurity flaws, customer experiences, smartphone losses, and more: ZDNet's research roundup

8 Photos
Inside a fake $20 '16TB external M.2 SSD'
Full of promises!

Related Galleries

Inside a fake $20 '16TB external M.2 SSD'

8 Photos
Hybrid working, touchscreen MacBook hopes, cybersecurity concerns, and more: ZDNet's tech research roundup
Asian woman working at a desk in front of a computer and calculator

Related Galleries

Hybrid working, touchscreen MacBook hopes, cybersecurity concerns, and more: ZDNet's tech research roundup

8 Photos
Developer trends, zero-day risks, 5G speeds, and more: Tech research roundup
Person seated at a booth in a cafe looks at their phone and laptop.

Related Galleries

Developer trends, zero-day risks, 5G speeds, and more: Tech research roundup

10 Photos
Drive Electric Day: A dizzying array of EVs in sunny Florida
ca3b4019-26c5-4ce0-a844-5aac39e2c34b.jpg

Related Galleries

Drive Electric Day: A dizzying array of EVs in sunny Florida

16 Photos