Slashdot Mirror

← Back to Stories (view on slashdot.org)

Worm Exploit Distributed by Advertising Network

Posted by michael on from the you-thought-you-were-safe dept.

Zocalo writes "Given that a lot of Slashdot readers also check The Register, it's important to note that their Internet advertising provider, Falk AG, was compromised by the BOFRA exploit yesterday. The Falk AG service has been suspended by The Register and a statement from Falk AG is due on Monday. The upshot is that if you visited the Register yesterday morning and use IE as your browser, then you probably need to run a full virus scan with up to date data files. Of course, those of us running other browsers and something like AdBlock have nothing to worry about. Again." You're OK for now if you're running SP2. There's also a good security writeup about the problem.

11 of 478 comments (clear)

  1. The First Thing That Comes To Mind by Anonymous Coward · · Score: -1, Troll

    Is Fist Fuck.

  2. So what's new here? by Anonymous Coward · · Score: -1, Troll

    We all know that The Register is as anti-Microsoft as they come.

    So they deliberately spread a worm to push the point home.

    Big deal.

    1. Re:So what's new here? by Anonymous Coward · · Score: -1, Troll

      Yeah, that's why they stopped serving ads for a day and lost the ad revenue

      Sure. Once people started to notice what they were up to, they had no choice but to "come clean" and stop serving the worm. If they didn't, it would be obvious what they were doing.

      No. Do you get paid to post here for The Register? Is that why you're standing up for them?

  3. AdBlock is unethical by MaelstromX · · Score: -1, Troll

    Why was it necessary to praise AdBlock in the writeup considering it would not have made a difference if the user had it installed or not? Even if AdBlock were responsible for preventing a user from getting a virus this time, that's hardly enough to make up for the theft of services and fraud that people who use it commit every day.

    Web pages like slashdot are available to you on the following basis: load our advertisements which bring us revenue that allow us to pay for bandwidth, salaries, etc., and we will also make available to your our content, free of charge. Extensions and programs like AdBlock are tantamount to theft; you are acquiring the content but not "paying" for it by loading the advertisements.

    If you find a site's ads to be so intrusive as to make the page unviewable, don't go back. I doubt anyone forced you to go there in the first place.

    --
    audioLibre - freedom of music
    1. Re:AdBlock is unethical by Anonymous Coward · · Score: -1, Troll

      I don't care what you say, you are not forced to view The Register or any other website. There are alternative ways to acquire any information that you claim is so crucial to your life. However if we were to be so bold as to accept that statement, that your life depends on visiting www.theregister.co.uk, guess what, you'd better be viewing the ads, because those are the terms under which The Register makes available its web site to web users.

    2. Re:AdBlock is unethical by Anonymous Coward · · Score: -1, Troll

      Um, it is clearly *your* problem if your website's cash flow relies on wasting my bandwidth with advertisements.

      It will become your problem when the only free websites in existence are constantly displaying the message "This site is unavailable because the user's bandwidth quota has been exceeded", and everyone else wants donations or subscriptions.

      Your supposed 'right' to profit does not extend to the point where I have to bend my life around your profit model.

      Unfortunately, you are the one bending over backwards just to avoid a small portion of space on the screen displaying advertising. It's not like it took some sort of 'effort' on your part when your browser downloaded the ad automatically.

  4. IE by Anonymous Coward · · Score: -1, Troll

    The Register is targetted at an audience of IT professionals. Any IT professional who's dumb enough to still be using Internet Explorer in November 2004 deserves whatever he gets.

  5. Re:LOL by jerw134 · · Score: 1, Troll

    Or, yet another reason to use the latest version of IE. You'd have problems using old versions of Firefox, too. Do you think that Firefox has never had security issues?

  6. Re:IE -- sexist and wrong by Anonymous Coward · · Score: -1, Troll

    Interesting... the majority of business desktops are still Windows, so I suspect a majority of business users and admins are still using Windows on some level. And WTF do you get off saying, "he". There are a few female IT professionals.

  7. Re:"You're OK for now if you're running SP2." by Mnemia · · Score: 0, Troll

    Y'know, Windows really, really, really sucks as an operating system if it's not capable of updating itself while running other software (ESPECIALLY since you can't easily exit the GUI). Does anyone know exactly why this is? Is Windows incapable of updating files while they are open, or does its scheduler suffer from major, serious bugs? What particular aspect of Windows precludes it from updating without devoting my entire computer to the (overly lengthy) process?

    I know it's gotten better, but it's still absolutely laughable compared to Linux, Solaris, etc. Why exactly is the data stored on the filesystem seemingly not independent of the currently running processes, until they are restarted? It seems like Windows has some serious fundamental technical failings that should have been addressed like 10 years ago.

  8. Re:Wow by plumby · · Score: 0, Troll

    How about blame the person/people that actually developed the exploit, and the societies that breed this kind of destructive mentality.

    I resent having to have my choice of OS/Browser/whatever dictated to me not on the grounds of functionality, but by how easily it's going to get attacked (not that in this case I'd choose IE over FireFox anyway, but that's beside the point), and having my valuable system resources taken up by having to have a virus scanner run permanently in the background.