Slashdot Mirror

← Back to Stories (view on slashdot.org)

Corporate Servers Spreading IE Virus [Updated]

Posted by CowboyNeal on from the ill-and-infectious dept.

uncadonna writes "ZDNet is reporting that corporate web servers are infecting visitors' PCs. The combination of two unpatched IE security holes and hacked corporate websites is apparently distributing malware via several high-credibility sites. ZDNet says users have 'few options' other than alternative browsers or platforms." Update: 06/25 14:50 GMT by J : A reader points out Microsoft's What You Should Know page. Here's the short version for avoiding this Critical severity attack: you must install add-on software, and change multiple settings in multiple programs, thus causing "some Web sites to work improperly." By changing more settings, you can regain functionality for a particular site if "you trust that it is safe to use," which you have no way of knowing. Or try Firefox. Update: 06/25 19:30 GMT by J : Reuters reports the attack installs a keysniffer which can steal credit card numbers, passwords, and so on. The story offers safety tips, but fails to mention that, after patching the hole, many users will be infected without their knowledge. Shouldn't the "fix" include ceasing to type anything important into your computer until you purchase software which can detect and remove the Trojan? And will you be downloading that software with Mastercard or Visa?

25 of 1,028 comments (clear)

  1. yes by mwolff · · Score: 5, Funny

    http://www.mozilla.org

    1. Re:yes by lpret · · Score: 4, Funny

      http://lynx.browser.org/ -- I've yet to see an exploit that's affected me.

      --
      This is my digital signature. 10011011001
    2. Re:yes by atomic-penguin · · Score: 5, Funny

      I've yet to see an exploit that's affected me.

      Perhaps, you've heard of them. It's an affliction called frames.

      --
      /^([Ss]ame [Bb]at (time, |channel.)){2}$/
    3. Re:yes by Zog+The+Undeniable · · Score: 4, Funny
      Up from the depths,
      Thirty storeys high,
      Breathing fire,
      His head in the sky,
      Mozilla! Mozilla!

      (with apologies to the 1980s cartoon)

      --
      When I am king, you will be first against the wall.
    4. Re:yes by fuzzix · · Score: 5, Funny
      Perhaps, you've heard of them. It's an affliction called frames.

      I've heard of them. I've also heard of tables. This is why I use Links
    5. Re:yes by wwwillem · · Score: 3, Funny

      real hackers browse the web with "telnet www.whatever.com 80 [return] [return]" :-)

      --
      Browsers shouldn't have a back button!! It's all about going forward...
    6. Re:yes by johnnyb · · Score: 4, Funny

      Yeah, but remembering the cookies is a pain in the butt.

      --
      Engineering and the Ultimate
    7. Re:yes by Mordaximus · · Score: 3, Funny

      Hehe, maybe they should have called Firefox Mozooky instead!

    8. Re:yes by Anonymous Coward · · Score: 5, Funny

      Up from your swap
      Thirty megs in size
      Leaking memory
      Thrashing your drive
      Mozilla! Mozilla!

  2. This just in... by howman · · Score: 5, Funny

    It has just been brought to our attention at the root of the problem this site

    --
    flinging poop since 1969
  3. Re:Security Advisories by sploo22 · · Score: 3, Funny

    The site which is actually sending the infected file seems to have been slashdotted. Is this the next wave of antivirus technology?

    --
    Karma: Segmentation fault (tried to dereference a null post)
  4. I thought ZD were MS shills by samjam · · Score: 3, Funny

    I have thought for years that Ziff-Davis were Microsoft Shills. [I don't mean all MS software is bad, I just mean Ziff-Davis seemed impervious to facts in their reviews]

    If ZDNet is saying to stop using IE things must be bad.

    I have tried to depart from IE 2 or 3 times but failed. As soon as I type this message I make the move for good. Hello Mozilla.

    Sam

    --
    blog.sam.liddicott.com
  5. What would be funny... by N3koFever · · Score: 2, Funny

    ...is if they infect the Windows Update servers. You go there to fix the vulnerabilities in IE and *BAM* you're infected with the same vulnerabilities you're trying to fix.

  6. Re:Hmmm.... by Mz6 · · Score: 3, Funny
    Yeah... But that's also the excuse I get when I have to clean off XXXToolbars that has infected their computer.

    "I swear, I never go to those sites, only the major ones."

    --
    Hmmm.
  7. 0-day? by maximilln · · Score: 4, Funny

    I can't help but chuckle every time these come out because all I hear in my head is the line,"All viruses are created after the exploit has been announced."

    Keep those 0-day exploits coming, boys.

    --
    +++ATHZ 99:5:80
  8. IE was a great friend... by tobechar · · Score: 4, Funny

    as I quiety tap the nails of the coffin.

    --
    -
  9. Re:This could finally be it by bigberk · · Score: 4, Funny
    The disaster we all knew was going to happen.
    Nope, the disaster hasn't happened yet. When it happens, the economy will collapse and what's left of Microsoft will be hauled before court. The FBI or some other government body will use its existing evidence to show that Microsoft knew about the risks posed by its monoculture OS/desktop yet failed to take the necessary measures to protect consumers and businesses. It will be a grey area but it won't matter, since mainstream IT will be shattered. The nerds will rebuild, and will be filthy rich. Women will throw themselves at us.
  10. The best "Fire-" name? by LondonLawyer · · Score: 5, Funny

    Surely it has got to be:

    "FireBillGates"

    1. Re:The best "Fire-" name? by Anonymous Coward · · Score: 1, Funny

      my firesomething labels my browser Andy's SuperSlashdotReader, (or 1337BoobFinder)

  11. Re:But How Many People Will Switch? by lewp · · Score: 2, Funny

    And while they're recovering from your assault the top-notch assistive technologies in the latest GNOME releases would allow them to continue to get work done. Another Linux convert!

    Maybe getting the Linux revolution in full swing requires geeks to start beating people mercilessly for their own good. What Microsoft can do with billions of marketing dollars, we can do with a board with a nail in it.

    (Most of us are rather weak, so I recommend teaming up 3-4 geeks per regular person you're trying to... um... educate.)

    --
    Game... blouses.
  12. How ironic.... by SwedishChef · · Score: 2, Funny

    that the page for reading the responses included a large banner ad for Microsoft that claimed they take your security seriously and saying, "visit microsoft.com/it/security/IT today.

    --
    No one ever had to evacuate a city because the solar panels broke!
  13. You know ... by joel_archer · · Score: 2, Funny

    Microsoft just isn't ready for the Enterprise. Perhaps in a few years. Plus there all those nasty rumours about stealing the TCP/IP stack from BSD.

  14. Re:This could finally be it by GPLDAN · · Score: 3, Funny

    The nerds will rebuild, and will be filthy rich. Women will throw themselves at us.

    This implies that all nerds are men. Or lesbians.

  15. Re:Firefox by Anonymous Coward · · Score: 1, Funny

    Wow, another Opera user, that's two this year alone. I guess it's ddefinitely and "up and comer" and "one to watch"!

  16. Re:Wonder How Microsoft Will React by Anonymous Coward · · Score: 5, Funny

    Oh yeah right. Like my friends and family don't think I'm *enough* of a loser.

    Now I'm supposed to sit down with them for a "face-to-face" about two browsers which are *identical* from their point of view?

    "Susan, come here for a minute."

    "Why? I've got to go in 10 minutes, I'm really busy."

    "No this is really important."

    "Oh okay"

    "I wanted to show this web browser"

    "Yeah, explorer, so what?"

    "No!!! This is FIREFOX!! AN ADVANCED OPEN-SOURCE WEB BROWSER!! MUCH MORE SECURE!!!"

    "It looks like explorer to me."

    "Well, it LOOKS like explorer but it's better. Look here, this is etrade.com, it looks just like explorer right? open source rules!"

    "Uhh, yeah, it looks exactly the same to me. Well don't mess up my computer I have to go."

    "WAIT!!! If there had been a virus there on etrade.com you WOULDN'T HAVE GOTTEN IT!! ISN'T THAT AWESOME!!!!!!!!"

    "You are such a loser."