Web site hijack morphs, continues to grow

Gumblar has switched to using a "martuz" domain

Erik Larkin (PC World (US online))
20 May, 2009 06:21
Comments

In an attempt to stay one step ahead of security companies, the Gumblar web attack has jumped over to using a new domain to pull its malicious software.

Gumblar, so-named because it infected benign Web sites with attack code that attempted to install malware from a "gumblar" domain onto visitor's computers, has switched to using a "martuz" domain instead, according to ScanSafe, which originally reported the attack. Symantec confirmed the switch in its own post.

The attack, which primarily uses stolen FTP logins to spread itself to new sites, continues to spread according to US-CERT, but ScanSafe says its growth appears to be slowing down. If you run your own Web site, the company suggested using a free scanning service that can help identify whether your site has been hijacked by Gumblar or another drive-by-download attack. The useful Unmask Parasites service is still in beta, and will only report Gumblar-hijacked sites as suspicious, according to Gumblar, but it will catch an infected site.

To guard your own PC against the Gumblar attack code, see my earlier post about the exploits used in the assault. Most importantly, make sure you have the latest Adobe, Flash and Windows patches.

Bookmark this page
Share this article
- facebook
- slashdot
- digg
- Reddit
- stumbleupon
- linkedin
- twitter
Got more on this story? Email Computerworld
Follow Computerworld on twitter

More about: Adobe, CERT, Google, Symantec

References show all

Comments

Post new comment

Share
Share this article
- google+
- facebook facebook
- slashdot slashdot
- digg digg
- Reddit Reddit
- stumbleupon stumbleupon
- linkedin linkedin
- twitter twitter
print
email
Bookmark

Related Coverage

Related Whitepapers

Oracle x86 Rack Servers Optimized for Rapid Deployments and Operational Efficiency

Business-critical and mission-critical workloads demanding applications and databases require stable and secure environments. When these types of workloads are deployed on x86 servers, the need to ensure business continuity, maximum uptime, and consistent processing means that IT managers and business unit managers are looking at enterprise x86 servers in a new way: They realize that the business depends on these servers and that x86 server platforms for the enterprise are no longer expendable, as they might have been when servers were dedicated to a single application or when they were deployed as small Web servers that could be easily taken offline and replaced.

Featured Download

CDex

CDex can extract the data directly (digital) from an Audio CD, which is generally called a CD Ripper or a CDDA utility.

Zones

Most Popular Whitepapers

Process-Driven Master Data Management for Dummies

We wrote this book to introduce you to the subject of processdriven MDM. It’s a big topic, one that far outstrips the ability of a brief book to cover. However, our hope is that by reading this book you will gain a fundamental understanding of processdriven MDM, how it works, and what it takes to make it a success in your organisation.

Popular tags: Business Management, Security, Data Centre, Storage, Master Data Management

Latest Jobs

FTSenior Network Engineer - Cisco / Nexus / UCS / - Routing / Switching / WirelessNSW
FTQM Trainer and ConsultantNSW
FTSenior Citrix EngineerNSW
CCAvaya Engineer - ERS 8600 4.1NSW
FTIT Account Manager - System Integrator - Career Progression - Start ImmediatelyNSW
CCSAP FICO ConsultantNT
FTTechnical Services Engineer - ShoreTel/MitelVIC
FTSenior Network Field Engineer - Cisco R&S / Wireless SolutionsNSW
FTChange Management ProfessionalsNSW
CCSAP PM ConsultantNSW
CCOBIEE ConsultantWA
CCSystem Engineer - Lync and Exchange - CONTRACTSWA
FTSenior Network Field Engineer - Cisco R&S / Wireless SolutionsNSW
FTSenior Citrix EngineerNSW
FTSAP Basis ConsultantACT
FTProduct Manager Strategist - Enterprise ApplicationsNSW
FTSAP Basis ConsultantNSW
CCSystem Engineer - Exchange - CONTRACTSWA
FTiPhone Developer DeveloperNSW
FTiPhone App DeveloperNSW
CCPC Relocation Technicians - Multiple Roles availableSA
FTiPhone App DeveloperNSW
FTIT Service Desk EngineerNSW
FTIT Service Desk EngineerNSW
FTiPhone App DeveloperNSW

Market Place

Web site hijack morphs, continues to grow

Comments

Post new comment

Preview: LG Optimus LTE2

Coalition NBN better or worse?

A comparison of Telstra's 4G phones

Which tablet should I buy? iPad 2 vs Sony Tablet S

Bredolab botnet author sentenced to 4 years in prison in Armenia

NBN ISS could pose capacity constraints

NBN service plans won't cost consumers more: Conroy

Microsoft at a loss over Event Viewer scam

Stallman: If you want freedom don't follow Linus Torvalds

Coalition NBN better or worse?

Conroy turns the attack to Hockey

Oracle x86 Rack Servers Optimized for Rapid Deployments and Operational Efficiency

Securing SOA and Web Services with Oracle Enterprise Gateway

Customer Case Study: Yarra Valley Water Turns to Enterprise Software to Improve Information Flow

IBM agility@scale™: Become as Agile as You Can Be

CDex

Avaya Air Cover Zone

Application Lifecycle Management

HP Converged Storage Zone

HP Business Efficiency - Money Payback Guarantee Resource Centre

The Australian Cloud

Process-Driven Master Data Management for Dummies

Business Intelligence Best Practices for Dashboard Design

Learning To Compete: IT’s Next Transformation

Seven Steps to Effective Data Governance

Guidance for Calculation of Efficiency (PUE) in Data Centers

Computerworld newsletter

Don't have an account?

Web site hijack morphs, continues to grow

Comments

Post new comment

Computerworld newsletter