Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Focus-Virus
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

RE: Virus that inserts links into web pages

from [p.nolan] Network Security [Permanent Link]
Subject: RE: Virus that inserts links into web pages
Date: Mon, 4 Oct 2004 08:48:20 -0700 
-----Original Message-----
From: bsec@cotse.net [mailto:bsec@cotse.net]
Sent: Thursday, September 30, 2004 10:04 AM

Greetings lists,

Has anyone seen a virus that creates links on certain keywords on web
pages that then sends the user to a spam/virus infected
web-site?  At the
company I work for we've had a few customers call in stating
that there is
a link for each instance of the word "credit" on our web
pages and when
they click on the link they are presented with a credit card pop-up
advertisement.  When we have the user visit the same pages


The user that viewed the pages and saw the hyperlink has some form of adware
installed.


from another
PC, the links do not appear.  We're guessing that this might


Yep, this other pc does not have the adware installed. One website that uses
server-side scripts to check for known adware is www.doxdesk.com - view the
link "parasites".


be some kind
of virus modifying the web page presented to the user.  Has
anyone else
seen this?  Any idea what malcode might be causing this behavior?

Thanks in advance,
Brett



Regards,

Patrick Nolan
Virus Researcher - Fortinet Inc.
http://www.fortinet.com

To Submit A Virus:
pkzip/winzip password infected to
submitvirus at fortinet dot com
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Virus that inserts links into web pages, bsec
Next by Date:  Re: Virus that inserts links into web pages, Wade Woolwine
Previous by Thread:  Virus that inserts links into web pages, bsec
Next by Thread:  Re: Virus that inserts links into web pages, Wade Woolwine
Indexes:  [Date] [Thread] [Top] [All Lists]