The Democratic Party of Hong Kong's website was compromised and malware uploaded to the web server. Interestingly, the server was distributing malicious flash and spyware nearly identical to the compromised UK Amnesty International servers at the beginning of this month. The server is being cleaned up.
The english version of the website did not include injected iframe links pointing to the exploit.html page, which in turn delivers three different version-appropriate malicious variants of flash detected by Kaspersky as 'Exploit.SWF.CVE-2011-0611'. The malicious flash was 0day at the beginning of this month, and will be effective on unpatched systems.
"Source : Google Reader
No comments:
Post a Comment