All the latest UK technology news, reviews and analysis
|
|
|
17 Aug 2010
An infected widget from web hosting firm Network Solutions could have affected over five million separate domains, according to new research from web app security firm Armorize.
The security firm revealed that the 'Small Business Success Index' widget was infected last week, but the malware could have been operating in some form for months. It soon realised that the problem was much more widespread than at first thought.
"Yesterday I had some time to sit down and study this widget further, and discovered something critical - it's a part of the standard domain parking page of Network Solutions," explained co-founder Wayne Huang.
According to a Google search, the widget in question was available and serving malware on more than 500,000 domains, but according to Yahoo that number rose to over five million, he said.
"I didn't have time to click on every single one of them, but I clicked on enough to conclude that, all of them are indeed infected, via the same widget we blogged about a few days ago," wrote Huang.
"Also, neither Google or Yahoo actually shows all results. Google shows the first 45 pages only, and Yahoo shows the first 100 only. So we couldn't really go through all the domains one by one...and 5 million is too large a number for manual verification anyways."
The drive-by-malware in question, when downloaded, redirects user searches and monitors various search terms, automatically popping up advertising on the user's screen, for which the malware writer will get a fee.
According to Armorize, Network Solutions took down the widget within three hours of being contacted. However it remains worrying how such a large scale drive-by download remained under the radar for so long.
Latest stories from Security
Related articles
Related jobs
Poll
What is the most important IT priority for your company this year?
Preview of the forthcoming handheld projectors with DLP technology
Connect with V3.co.uk
This paper focuses on a series of best practices and techniques for development teams looking to improve their software development processes
Why good data management at all levels is essential in the modern business (video, 6mins)
Contract length: 6 months + Start date: ASAP. Location...
Senior Marketing Executive - Food and Drink industry...
BI Solutions Architect - 3 Months, to £350pd, London...
Junior Drupal Developer - Drupal - Chesterfield - To...
Keep up to date with the latest products, services and technologies from the world's leading IT companies. IThound.com brings you over 2,000 white papers, case studies and analyst reports.
Do you agree?
<p>Hi, I am with Network Solutions and want to assure you that we are working on this issue and have additional clarifications and updates at <a href="http://bit.ly/9g5qv4">http://bit.ly/9g5qv4</a> Please note that this has NOT affected 5M sites as reported online. Our preliminary analysis is that the potential affected under construction web pages was less than 120k around the time of detection of the malware. Please visit <a href="http://bit.ly/9g5qv4">http://bit.ly/9g5qv4</a> for frequent updates and a FAQ on the issue. –Susan Wade</p>
Posted by: Susan Wade 19 Aug 2010