[ISN] Hacker hits Kaspersky website

From: InfoSec News <alerts_at_private>
Date: Wed, 20 Oct 2010 00:17:53 -0500 (CDT)
http://www.computerworld.com/s/article/9191921/Hacker_hits_Kaspersky_website

By Robert McMillan
IDG News Service
October 19, 2010

Scammers who try to trick victims into downloading fake antivirus 
software can strike almost anywhere. On Sunday they hit the website of 
Kaspersky Lab, a well-known antivirus vendor.

Someone took advantage of a bug in a Web program used by the 
Kasperskyusa.com website and reprogrammed it to try and trick visitors 
into downloading a fake product, Kaspersky confirmed Tuesday. Kaspersky 
didn't identify the flaw, but said it was in a "third-party application" 
used by the website.

"As a result of the attack, users trying to download Kaspersky Lab's 
consumer products were redirected to a malicious website," the antivirus 
vendor said. The website caused a pop-up window to appear that simulated 
a virus scan of the user's PC, and offered to install an antivirus 
program that was in fact bogus.

This is a typical trick for fake-antivirus scammers, who are constantly 
looking for new ways to trick victims into buying their products. In the 
past they've been known to pose as legitimate online advertisers and 
then suddenly switch their ad inventory from legitimate-looking ads to 
these fake pop-up messages.

[...]


___________________________________________________________      
Tegatai Managed Colocation: Four Provider Blended
Tier-1 Bandwidth, Fortinet Universal Threat Management,
Natural Disaster Avoidance, Always-On Power Delivery 
Network, Cisco Switches, SAS 70 Type II Datacenter. 
Find peace of mind, Defend your Critical Infrastructure.
http://www.tegataiphoenix.com/
Received on Tue Oct 19 2010 - 22:17:53 PDT

This archive was generated by hypermail 2.2.0 : Tue Oct 19 2010 - 22:24:51 PDT