10,000 sites Hacked!!!

November 2008

10,000 Web sites hacked into, unpatched visitors in danger, says Kaspersky. Hackers have launched a widespread Web site attack, leaving malicious links on up to 10,000 web servers, says security software firm Kaspersky Lab. Kaspersky says the servers hacked into are mainly located in Western Europe and the United States. It is not clear at this stage who has hacked the machines, but the expectation is that the number of infected sites will rise. The cyber criminals are adding a line ofjava_script code onto the sites that redirects hacked site visitors to one of six servers. These sites then redirect the visitor to a server in China. That server can then launch a variety of attacks, targeting known flaws in the Firefox and Internet Explorer browsers, Adobe’s Flash Player and ActiveX management controls, said Kaspersky. Victims who do not have fully patched PCs run the risk of allowing the remote attackers to install spyware on their machines, and then to steal their data.