I thought these two prior posts needed to be brought to all members' attention, as they are a new warning about entering the ratings part of the CFC website ! EKG apparently did clean the last infection ( or didn't ), but now it has been hacked anew. So I am reposting the two posts:
Quote:
Originally Posted by Egidijus Zeromskis
Sorry to say, but seems that the site (rating part) was hacked again.
Now it has a link to "a0v.org/x.js"
Posted by Steve Karpik:
This is very sad. There are two possibilities. Either the contractors hired by the CFC to clean the database of infected strings didn't do a very good job. Or equally as bad they didn't implement a filter on input data to prevent further injection attacks. In either case, the CFC web site is still in bad shape.
Some browsers like Chrome and Firefox will warn you not to visit the CFC web site. Internet Explorer won't do you that service. For the time being, I would recommend that CFC members don't query the web site for their ratings. After conducting a limited and unscientific survey of the CFC database, it seems that only some portion of the database has been infected but that's scant comfort if the data you're looking up is polluted with links to malware.
It looks right now that a fully patched computer will block the malware that is being distributed through the link to "a0v.org/x.js"; however, it is probably best to be safe rather than sorry.
As of mid-August, over 55,000 web sites worldwide had been compromised by this attack. That doesn't excuse the fact that the CFC web site is a mess -- it just shares its mess with 55,000 other badly maintained web sites.
I'm sure the executive will have a statement on this shortly.
Bob
Quote:
Originally Posted by Egidijus Zeromskis
Sorry to say, but seems that the site (rating part) was hacked again.
Now it has a link to "a0v.org/x.js"
Posted by Steve Karpik:
This is very sad. There are two possibilities. Either the contractors hired by the CFC to clean the database of infected strings didn't do a very good job. Or equally as bad they didn't implement a filter on input data to prevent further injection attacks. In either case, the CFC web site is still in bad shape.
Some browsers like Chrome and Firefox will warn you not to visit the CFC web site. Internet Explorer won't do you that service. For the time being, I would recommend that CFC members don't query the web site for their ratings. After conducting a limited and unscientific survey of the CFC database, it seems that only some portion of the database has been infected but that's scant comfort if the data you're looking up is polluted with links to malware.
It looks right now that a fully patched computer will block the malware that is being distributed through the link to "a0v.org/x.js"; however, it is probably best to be safe rather than sorry.
As of mid-August, over 55,000 web sites worldwide had been compromised by this attack. That doesn't excuse the fact that the CFC web site is a mess -- it just shares its mess with 55,000 other badly maintained web sites.
I'm sure the executive will have a statement on this shortly.
Bob
Comment