Computer Associates website hacked: routes visitors to Chinese malware site
Parts of Computer Associates’ main website were hacked last week, with visitors being automatically re-routed to a malware site hosted in China.
Computer Associates has not issued a statement on the hack, but newswire reports suggest that parts of the press section of its Ca.com portal were rerouting visitors to the uc8010.com domain, which has been hosting malware since last month.
Brian Chess, Fortify’s founder and chief scientist, says that the attack vector appears to be similar to a site hack of the Dolphin Stadium Web portal of early last year, with Javascript routines inserted into the body of the relevant pages.
“Unconfirmed reports suggest that the press section of the Ca.com portal is hosted by a third party organisation, but this makes no difference to the visitors, who were being redirected to a malware site in China,” he says...
===================
Watch out for uc8010.com it serves attack code that exploits a recently patched vulnerability in the RealPlayer multimedia software. This is a very dangerous exploit.
The criminals behind this domain have hacked tens of thousands of Web pages and inserted code that redirects visitors to the malicious server. Protect your IT departments by blocking access to this domain asap. ucmal.com is also another site doing this same activity.
Block these domains now to protect your main computer assets.
No comments:
Post a Comment