Screenshots: Sites harbor Windows Trojan

1 of 6 NEXT PREV

Hiding places for Windows Trojan

A flaw in some versions of Microsoft Windows Meta File is spawning attacks ranging from worms to spam, security experts have warned. The Windows Meta File flaw uses images to execute arbitrary code, according to a security advisory issued by the Internet Storm Center.
Websense Security Labs has posted some examples of sites that appear to have been compromised. This is a Dutch example.

Published: July 19, 2006 -- 11:48 GMT (04:48 PDT)
Caption by: Bill Detwiler
Renovation site hosts Trojan

A vulnerable Windows system could become infected if someone just views what appears to be a malicious image on this compromised Web site, according to Websense's posting.

Published: July 19, 2006 -- 11:48 GMT (04:48 PDT)
Caption by: Bill Detwiler
Sites compromised worldwide

Websense, which has been tracking malicious activity around the flaw, says it has discovered malicious sites in the United States, Russia, Netherlands, the United Kingdom, China and Japan.

Published: July 19, 2006 -- 11:48 GMT (04:48 PDT)
Caption by: Bill Detwiler
Compromised Cosmo site

Another example. Mikko Hypponen, chief research officer at F-Secure, estimates that 99 percent of computers worldwide are vulnerable to an attack using the WMF flaw.

Published: July 19, 2006 -- 11:48 GMT (04:48 PDT)
Caption by: Bill Detwiler
Street IT site could pose a risk

Microsoft has said it plans to release a fix for the WMF vulnerability as part of its monthly security update cycle on Jan. 10.

Published: July 19, 2006 -- 11:48 GMT (04:48 PDT)
Caption by: Bill Detwiler
Knoppix behavior

This is how a machine running Knoppix, a version of Unix, behaves when a malicious Web site is visited using the open-source Firefox browser. It alerts the Web surfer that a file is being opened.

Published: July 19, 2006 -- 11:48 GMT (04:48 PDT)
Caption by: Bill Detwiler

1 of 6 NEXT PREV

Simply by visiting these sites using a vulnerable Windows PC could cause an infection, Websense says.

Hiding places for Windows Trojan

A flaw in some versions of Microsoft Windows Meta File is spawning attacks ranging from worms to spam, security experts have warned. The Windows Meta File flaw uses images to execute arbitrary code, according to a security advisory issued by the Internet Storm Center.

Websense Security Labs has posted some examples of sites that appear to have been compromised. This is a Dutch example.

Published: July 19, 2006 -- 11:48 GMT (04:48 PDT)

Caption by: Bill Detwiler

1 of 6 NEXT PREV

| Community Guidelines

Join Discussion

Add Your Comment

Screenshots: Sites harbor Windows Trojan

Hiding places for Windows Trojan

Renovation site hosts Trojan

Sites compromised worldwide

Compromised Cosmo site

Street IT site could pose a risk

Knoppix behavior

Hiding places for Windows Trojan

Related Topics:

Join Discussion

Related Galleries