Circuit City Support forum serving up trojan….



Embarrasing…. and a big pain in the neck for any of their visitors… It seems as though if you’ve visited Circuit City’s Support Forum with an unpatched Internet Explorer, you likely have a trojan/backdoor of some sort on your pc. (Assuming Explorer hasn’t been patched since January. In reality – if you haven’t updated explorer since then, there are likely SEVERAL backdoors. Call someone to work on it….)


It’s really embarrasing I’m sure for the company to have been serving this up in their support forum, but what’s amazing is that their site was hacked May 13th. They were notified today and have taken steps to remove the exploit. (2 weeks and 5 days….) In all fairness the forum is not hosted on the same server as circuitcity.com but is reachable from their homepage.

It looks like the backdoor was served up from Russian IP addresses (this in particular seems to be a particularly bad neighborhood.) Also, the backdoor itself was a spam sender apparently changing the messages every 10 minutes or 70,000 messages (whichever comes first????). Who knows how many pc’s have picked up this bug from Circuity city’s support forum.

Folks – update your antivirus, keep windows patched, if you don’t think you can do that on your own, get somebody else to help with that. (sigh… this batch of news today has been pretty depressing… I just finished cleaning out a trojaned laptop (Antivirus had expired August of 2004) and am picking up a machine tomorrow for a wipe and factory reinstall…. at least you feel like you’re making some headway like that) What’s depressing is wondering how many people out there are backdoored and don’t have a clue. (Like I say, the laptop hadn’t had updated AV since August of 2004. How many junk mails had it sent?)

Related Posts

Blog Traffic Exchange Related Posts
  • Big Windows June update day Updates for Windows for the month of June are out today and it looks like some list! 12 updates covering 20 or more vulnerabilities. MANY of these are tagged as critical. (Critical vulnerabilities are considered remotely exploited or with little (or no) user interaction.) Sans has a good listing of......
  • More on Explorer vulnerability Among other things... Sans has lowered the infocon to green, NOT that the threat is diminished, but there have been no new developments with regards to the announcement yesterday of a major Internet Explorer security vulnerability. Sans recommends browsing the web with firefox (with the noscript extension, so you can......
  • Microsoft Releasing out of Cycle Patch for Internet Explorer Exploit Take a look at the official announcement. They've moved outside the usual update cycle for this one. VERY good move Microsoft to get this patch in before the holidays as it looks as though there's been a spike in the use of this particular exploit and with people doing a......
Blog Traffic Exchange Related Websites
  • [How To] Jailbreak iPad 2 on iOS 4.3.3 Using JailbreakMe 3.0 A couple of days back, JailbreakMe 3.0 was leaked by a private beta tester. The jailbreak was buggy and did not work for many iPad 2 users. Now, @Comex has released the final version of JailbreakMe 3.0 which enables users to jailbreak their iPad 2 on iOS 4.3.3 and install......
  • Dreamhost Promo Code June 2011 - It Works Last month, i published a complete review of Dreamhost web hosting covering its features and usage. I also shared a huge list of Dream host promo code for 2011 which you could use any time, when you do a purchase with Dreamhost. To keep things alive, i am planning to......
  • Shopping Fun Facts - The Day After Thanksgiving Black Friday - is the name given to the busy shopping day the Friday after Thanksgiving. This term, which began in the mid 1970s, most likely refers to retailers’ sales moving from the red into the black (making a profit). Not the busiest shopping day?! The day after Thanksgiving is......
PDF24    Send article as PDF   

Similar Posts


See what happened this day in history from either BBC Wikipedia
Search:
Keywords:
Amazon Logo

Comments are closed.


Switch to our mobile site