Slashdot Mirror

← Back to Stories (view on slashdot.org)

Mass Website Hack Compromises 200,000 Sites

Posted by Zonk on from the that-is-a-lot-of-angry-pr0n-bots dept.

Stony Stevenson writes "Hot on the heels of a recent hack in which 10,000 sites were compromised, researchers have disclosed a new large-scale attack. Researchers at McAfee estimated that the attack has been active for roughly one week, and in that time frame has managed to place itself on roughly 200,000 web pages. Most of the infected pages are running the phpBB forum software, said McAfee. The compromised pages are embedded with a Javascript file that links to the site hosting the attack."

3 of 153 comments (clear)

  1. Please be more forthcoming by BadAnalogyGuy · · Score: 5, Insightful

    Back in the later months of 2001 we experienced a gradual realization that there was something quite amiss about our government's response to terrorist threats which resulted in the disaster of September of that year. It turns out that not only did we know that there would be a terrorist attack, but we had credible leads indicating who and how it would be carried out. But the lack of information sharing led to disaster.

    Here too, we have a threat which is already running wild. Thousands of websites are being attacked. Unfortunately, this article, like many which abound in the security theatre online media, is long on consequences and short on details. Someone knows how the attack spreads, but they aren't sharing the means of stopping the attack.

    This article and its lack of content does as much to spread fear and chaos among computer users as the actual attack. These are technical problems which can be fixed. By not being clear about the threat, the article turns hackers into bogeymen that can't be stopped. Give some better info, tell us how to close the hole, and let us get back to work.

  2. Language is a Virus by Detritus · · Score: 5, Insightful

    200,000 web pages is not the same thing as 200,000 web sites.

    --
    Mea navis aericumbens anguillis abundat
  3. Re:Good news for us, I guess... by mcrbids · · Score: 5, Insightful

    It's the same reason hackers devote so much time exploiting Windows - more bang for your buck. phpBB is everywhere.

    Except that popularity != exploitability. Many people think that software is like a safe - if you grind at it long enough, eventually it'll open. Software isn't like that. You can grind at software forever and it won't change anything unless you actually find a vulnerability - a case not handled by the software.

    For example, MySQL is much more popular online than Microsoft SQL. Yet MS-SQL gave rise to the slammer worm while the vastly-more-commonly-installed MySQL has not ever been infected by anything anywhere near the same magnitude. (Yes, there have been a few. They didn't get very far)

    The formula is NOT:
    Popularity = Exploited.

    It's more like
    Popularity * Bad Design = Exploited.

    And even bad software can eventually be cleaned up. Sendmail used to be a security nightmare. But despite its position as the #1 mail server software on the Internet, it's been quite a few years since any serious vulns were exploited.

    --
    I have no problem with your religion until you decide it's reason to deprive others of the truth.