Hackers Compromise Paul McCartney Official Web Page, Use it to Spread Malware
As if the news that Conficker worm has been updated (details on Conficker.E here) was not bad enough, we have more bad news to report from the security world: the official web page of Paul McCartney, former member of The Beatles and Grammy award-winning artist, has been hacked. People with malicious intent used the official site to spread malware to visitors. It must be mentioned that the incident corresponded with the Paul McCartney/Ringo Starr onstage reunion.
It seems that the hackers exploited an XSS (cross-site) vulnerability and injected the official web page with a hidden iframe that would load heavily obfuscated JavaScript code. The code, which is part of the LuckySploit crimeware kit, automatically launched exploits that would download executable programs (rootkit) on the visitor’s machine. Once the user’s machine has been compromised, an attacker can use the executable program to gain access to your person info.
Director of Product Management with ScanSafe, comments: “Once your computer is infected with a rootkit, none of your personal information is safe. This site will have been an extremely attractive target for cyber criminals given the level of attention it will be receiving at the moment. As we see traffic from over 100 countries around the world, our real-time scanners have an unrivalled view of new and as yet unseen threats such as this one. Users should be aware that the majority of malware distribution is now occurring through mass compromise of legitimate and reputable websites.”
It must be said that the Paul McCartney official web page has been cleansed of infection – it is safe to visit it if you wish to do so.
Others musicians that have succumbed to hacker attacks include Kanye West, who’s hacker used his compromised accounts to spread rumors that the singer will star in a bisexual porn movie (details here), and Paris Hilton (yes, I'm counting the “Stars are blind” single), who’s official site was also hacked and used to spread malware (details here).
Tags: ScanSafe, Hacker, Paul McCartney, LuckySploit
It seems that the hackers exploited an XSS (cross-site) vulnerability and injected the official web page with a hidden iframe that would load heavily obfuscated JavaScript code. The code, which is part of the LuckySploit crimeware kit, automatically launched exploits that would download executable programs (rootkit) on the visitor’s machine. Once the user’s machine has been compromised, an attacker can use the executable program to gain access to your person info.
Advertising
Director of Product Management with ScanSafe, comments: “Once your computer is infected with a rootkit, none of your personal information is safe. This site will have been an extremely attractive target for cyber criminals given the level of attention it will be receiving at the moment. As we see traffic from over 100 countries around the world, our real-time scanners have an unrivalled view of new and as yet unseen threats such as this one. Users should be aware that the majority of malware distribution is now occurring through mass compromise of legitimate and reputable websites.”
It must be said that the Paul McCartney official web page has been cleansed of infection – it is safe to visit it if you wish to do so.
Others musicians that have succumbed to hacker attacks include Kanye West, who’s hacker used his compromised accounts to spread rumors that the singer will star in a bisexual porn movie (details here), and Paris Hilton (yes, I'm counting the “Stars are blind” single), who’s official site was also hacked and used to spread malware (details here).
Tags: ScanSafe, Hacker, Paul McCartney, LuckySploit
I Hope you LIKE this blog post! Thank you!
What do YOU have to say about this
blog comments powered by Disqus
Popular News
By George Norman on 28 May 2012
Mozilla introduced a new program meant to educate millions of people, the Mozilla Webmaker program.
By George Norman on 26 May 2012
Piriform updated its products, making CCleaner less annoying and Defraggler a lot faster.Related News
Advertising
Hot Software Updates
Top Downloads
2.
Opera5.
Trillian8.
AIM9.
Skype10.
Ad-Aware12.
Nero13.
Google Earth14.
Picasa15.
Winamp16.
iTunes17.
RealPlayer18.
uTorrent19.
eMule20.
WinRAR21.
BitComet22.
WinZip23.
Shareaza24.
CCleaner25.
Recuva26.
Tweak UI27.
CuteFTP Home29.
Adobe Reader30.
NewsPiperBecome A Fan!
Link To Us!
Hackers Compromise Paul McCartney Official Web Page, Use it to Spread Malware
HTML Linking Code
HTML Linking Code