Circuit City Support forum serving up trojan….



Embarrasing…. and a big pain in the neck for any of their visitors… It seems as though if you’ve visited Circuit City’s Support Forum with an unpatched Internet Explorer, you likely have a trojan/backdoor of some sort on your pc. (Assuming Explorer hasn’t been patched since January. In reality – if you haven’t updated explorer since then, there are likely SEVERAL backdoors. Call someone to work on it….)


It’s really embarrasing I’m sure for the company to have been serving this up in their support forum, but what’s amazing is that their site was hacked May 13th. They were notified today and have taken steps to remove the exploit. (2 weeks and 5 days….) In all fairness the forum is not hosted on the same server as circuitcity.com but is reachable from their homepage.

It looks like the backdoor was served up from Russian IP addresses (this in particular seems to be a particularly bad neighborhood.) Also, the backdoor itself was a spam sender apparently changing the messages every 10 minutes or 70,000 messages (whichever comes first????). Who knows how many pc’s have picked up this bug from Circuity city’s support forum.

Folks – update your antivirus, keep windows patched, if you don’t think you can do that on your own, get somebody else to help with that. (sigh… this batch of news today has been pretty depressing… I just finished cleaning out a trojaned laptop (Antivirus had expired August of 2004) and am picking up a machine tomorrow for a wipe and factory reinstall…. at least you feel like you’re making some headway like that) What’s depressing is wondering how many people out there are backdoored and don’t have a clue. (Like I say, the laptop hadn’t had updated AV since August of 2004. How many junk mails had it sent?)

Related Posts

Blog Traffic Exchange Related Posts
  • Microsoft releases official VML patch!! The big news this afternoon is that Microsoft HAS gone out of the routine patch cycle to release a security fix for the VML vulnerability that's been actively exploited in recent days for everything from sneak keylogger installs to massive spyware installs. Sans has a few links, if you de-registered......
  • System patching 0-days and ancient-day vulnerabilities There's a good article at Michael Sutton's Blog which points out something that really makes sense and I think many people are aware of, but with all the buzz that a new previously undisclosed vulnerability has, we forget. The point is this, there are plenty of machines online vulnerable to......
  • Microsoft June Patch Cycle heads up It's about that time again folks.... Monthly Microsoft patch cycle - June patches will be released on the 13th (next Tuesday) and it looks like a big batch. There should be 12 patches this time and at least one of the Windows updates is Critical and at least one of......
Blog Traffic Exchange Related Websites
  • Shopping Fun Facts - The Day After Thanksgiving Black Friday - is the name given to the busy shopping day the Friday after Thanksgiving. This term, which began in the mid 1970s, most likely refers to retailers’ sales moving from the red into the black (making a profit). Not the busiest shopping day?! The day after Thanksgiving is......
  • Battle of the Mini Laptops Last night, Phaw went to Park Sqaure Makati to check out 4 different mini laptops that have hit the Philippine market both officially and unofficially. Here are the 4 mini-laptops he checked out: Asus EEE PC Neo Explore X1 Astone UMPC Deep Blue H1 Here is a 4-way spec comparison......
  • [How To] Jailbreak iPad 2 on iOS 4.3.3 Using JailbreakMe 3.0 A couple of days back, JailbreakMe 3.0 was leaked by a private beta tester. The jailbreak was buggy and did not work for many iPad 2 users. Now, @Comex has released the final version of JailbreakMe 3.0 which enables users to jailbreak their iPad 2 on iOS 4.3.3 and install......
www.pdf24.org    Send article as PDF   

Similar Posts


See what happened this day in history from either BBC Wikipedia
Search:
Keywords:
Amazon Logo

Comments are closed.


Switch to our mobile site