The Anatomy of a "Drive-by-download"
Results 1 to 3 of 3

Thread: The Anatomy of a "Drive-by-download"

  1. #1
    Join Date
    Apr 2000
    Location
    Friern Barnet, London, England
    Posts
    46,558

    The Anatomy of a "Drive-by-download"

    Thanks to Ecross for finding this excellent article:

    Anatomy of a "Drive-by-download"
    Nick.

  2. #2
    Join Date
    Apr 2000
    Location
    Friern Barnet, London, England
    Posts
    46,558
    There may be some problems with the above link. Here is an alternative in PDF form:

    Anatomy of a "Drive-by download"
    Nick.

  3. #3
    Join Date
    Apr 2005
    Location
    Maryland, USA
    Posts
    17,289

    Exclamation Speaking of which ...

    Hackers Use BBC News as Keylogger Trojan Lure
    http://www.foxnews.com/story/0,2933,190122,00.html
    ... excerpts from actual BBC News stories are being used to lure IE users to Web sites that launch drive-by downloads of bots, spyware, back doors and other Trojan downloaders.

    One version of the spammed e-mail seen by eWEEK contains a portion of a BBC News item published on March 27 about the Chinese yuan hitting a post-revaluation high against the U.S. dollar.

    After the legitimate excerpt, the hackers embedded a "read more" link that points to a Web site that contains a spoofed copy of the BBC News story from the e-mail.

    Websense researchers found that the rigged site exploits the unpatched createTextRange vulnerability to download and install a keystroke logger without any user action.

    ...

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •