A new Storm site advertises a networking application. That site looks like this:
However, a mere visit to the site using an unpatched system will trigger an exploit to automatically download and execute a malicious file. Patched systems are protected but only if the users do not choose to download the file (with filename krackin.exe) and execute it themselves.
The webpage is detected as Trojan-Downloader.JS.Agent.kd while the file is detected as Email-Worm.Win32.Zhelatin.ke.
This is one network you wouldn't want to join, so make sure to keep your databases updated.
Posted by Ian @ 20:32 GMT | Comments
http://www.f-secure.com/weblog/archives/00001296.html
However, a mere visit to the site using an unpatched system will trigger an exploit to automatically download and execute a malicious file. Patched systems are protected but only if the users do not choose to download the file (with filename krackin.exe) and execute it themselves.
The webpage is detected as Trojan-Downloader.JS.Agent.kd while the file is detected as Email-Worm.Win32.Zhelatin.ke.
This is one network you wouldn't want to join, so make sure to keep your databases updated.
Posted by Ian @ 20:32 GMT | Comments
http://www.f-secure.com/weblog/archives/00001296.html
全站熱搜
留言列表
