U.S. CitiesCity-Data Forum Index
Go Back   City-Data Forum > General Forums > Science and Technology
 [Register]
Please register to participate in our discussions with 2 million other members - it's free and quick! Some forums can only be seen by registered members. After you create your account, you'll be able to customize options and access all our 15,000 new posts/day with fewer ads.
View detailed profile (Advanced) or search
site with Google Custom Search

Search Forums  (Advanced)
 
Old 04-12-2015, 12:17 PM
 
622 posts, read 398,343 times
Reputation: 556

Advertisements

Researchers at security firm Cyphort have discovered that over 100 user forums running outdated versions of vBulletin or IP board software have been compromised whereby malware redirects users to a site hosting the Fiesta exploit kit according to Softpedia: Over 100 Forum Websites Foist Poorly Detected Malware - Softpedia

The vulnerability appears to be confined to Internet Explorer prior to version 11 and Adobe Flash Player versions prior to 17.0.0.134. You can test your flash player version here: https://www.adobe.com/software/flash/about/

To test which version of Internet Explorer you have installed, click the gear icon top right and then scroll down to: "About Internet Explorer". Users still running Windows XP cannot update Internet Explorer and should switch to using an alternative browser such as Google Chrome, Firefox or Opera. On Google Chrome, Flash Player is integrated and updates itself automatically.

According to Softpedia, none of the 62 virus scanners at VirusTotal.com was capable of detecting the malware at the time the issue was discovered which was last Friday, April 10.

Cyphort researchers believe the ultimate goal to be click-fraud. However, once a machine has been compromised, trojans can be downloaded to try and capture banking passwords and the computer can also be hijacked to form a botnet. If you don't understand what a botnet is, please see this Wikipedia article on the subject: Botnet - Wikipedia, the free encyclopedia

Click-fraud works by increasing the earnings of users hired to click ads as a source of income.

To scan your PC for malware of this type, download the free version of Malwarebytes from here: Malwarebytes | Free Anti-Malware & Internet Security Software

If you have an Android phone, download the free Malwarebytes mobile scanner from here: Malwarebytes | Mobile Security - Free Android Anti-Malware
Reply With Quote Quick reply to this message

Reply
Please update this thread with any new information or opinions. This open thread is still read by thousands of people, so we encourage all additional points of view.

Quick Reply
Message:

Over $104,000 in prizes was already given out to active posters on our forum and additional giveaways are planned!

Go Back   City-Data Forum > General Forums > Science and Technology
Follow City-Data.com founder on our Forum or

All times are GMT -6.

2005-2018, Advameg, Inc.

City-Data.com - Archive 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25, 26, 27, 28, 29, 30, 31, 32, 33, 34, 35 - Top