Samsung Telecom hosts bad code

Samsung Telecom has malicious code on its Web site which disables anti-virus programs, modifies registry keys and logs keystrokes when users attempt to download information from the site.

The Samsung Telecom server, which is located in the United States, has been affected for "some time" according to Websense Security Labs, which issued a security report to both its own customers and those of Samsung and Websense two days ago.

No exploit code was discovered on the Web site (www.samsungtelecom.com) so user's are only affected if they download information.

Joel Camissar, Websense manager, was unable to put a figure on the number of computers compromised, but added that there is a high visiting rate to the site as it is "very popular" in Australia.

"As of this morning the Web site is still active with malicious code," Camissar said.

"Organizations generally go to this site to download free e-cards and use the SMS service so hackers have affectively compromised a trusted brand luring users rather than sending out phishing related e-mails.

Samsung Telecom Australia refused to comment directing all inquiries to Samsung HQ in the US.

Join the newsletter!

Error: Please check your email address.

More about SamsungWebsense

Show Comments