Slashdot Mirror

← Back to Stories (view on slashdot.org)

Mass Website Hack Compromises 200,000 Sites

Posted by Zonk on from the that-is-a-lot-of-angry-pr0n-bots dept.

Stony Stevenson writes "Hot on the heels of a recent hack in which 10,000 sites were compromised, researchers have disclosed a new large-scale attack. Researchers at McAfee estimated that the attack has been active for roughly one week, and in that time frame has managed to place itself on roughly 200,000 web pages. Most of the infected pages are running the phpBB forum software, said McAfee. The compromised pages are embedded with a Javascript file that links to the site hosting the attack."

9 of 153 comments (clear)

  1. Well, by Tablizer · · Score: 5, Funny

    It's a good think slashdot is immu PENI5 PILLS FREE WITH DISCOUNT MORT6A6ES! PENISFREE@OFFER.COM NOW!

    --
    Table-ized A.I.
    1. Re:Well, by XnavxeMiyyep · · Score: 2, Funny

      Pen fifteen? What's that?

      --
      I put the 't' in electrical engineering.
    2. Re:Well, by glwtta · · Score: 2, Funny

      Pen fifteen? What's that?

      Must be a special offer from Pen Island.

      --
      sic transit gloria mundi
  2. Re:Good news for us, I guess... by Tablizer · · Score: 5, Funny

    It's the same reason hackers devote so much time exploiting Windows - more bang for your buck. phpBB is everywhere.

    Perhaps they should rename it to PenguinBB so that hackers ignore it. Better yet, EmacsBB (or does it already have one builtin?)

    --
    Table-ized A.I.
  3. Re:Why is it always porn? by Anonymous Coward · · Score: 5, Funny

    Please tell us more about this whole free porn thing that you mentioned.

  4. Re:Please be more forthcoming by whitehatlurker · · Score: 2, Funny
    Parent post says it's already sacrificing a kitten

    Ewww. Too much information.

    --
    .. paranoid crackpot leftover from the days of Amiga.
  5. 200,000 Sites Hacked by ponraul · · Score: 4, Funny

    And nothing of value was lost.

  6. Re:'social engineering' by McFadden · · Score: 5, Funny
    From another site I read regularly, a forum member posted the following (the link was recently taken down, but I checked it at the time and it's absolutely true):

    Some years ago I registered www.confuse.me.uk with some intention of doing something or other with it. Part of that was going to be a forum which I set up, then never had time to do anything more with it.

    I took a look today and I have 14,140 members, 8,358 threads and 22,914 posts and each and everyone one of them is spam. Spammers replying to spambots replying to spammers.
  7. The twist by Thanshin · · Score: 5, Funny

    And then, you read the top of the report and discover that all this is old news, that you've been only reading spam for the last two years.

    For a second, you think that humanity may not be the mass of morons you thought. That patching the bug will let you access the real, intelligent, acute comments of human forums.

    Then, as the patch starts to work, you see those comments; the beauty of human forums brings a tear to your eye. As you start posting, you feel unable to write, your keyboard doesn't seem to work.

    You then understand you were just another spam generator, and the patch is killing you.

    Fade to black.