3 6 0 The White List is bypassed, Taobao sellers victims-vulnerability warning-the black bar safety net

2016-04-15T00:00:00
ID MYHACK58:62201673651
Type myhack58
Reporter 佚名
Modified 2016-04-15T00:00:00

Description

Checkpoint exposure to malicious software maker to bribe the Chinese game company, by carrying the malicious code file is sent to the odd Tiger 3 6 0, was added to its white list, to achieve any recklessly malicious behavior.

! Once the file by qihoo verification process, was eventually included in the white list, the cyber criminals can achieve load malicious software and is not free of anti-virus products detected. These malicious software to be included in the white list, attackers turned to Taobao, the seller through the Ali wangwang instant messaging send photos(containing malicious code), to achieve the PayPal use. The attacker sends the seller an image that looks harmless, actually contains a Trojan horse program. Because the malicious software has been previously included in the 3 6 0 white list, so it will not be marked as malicious.

! When the seller log in to their PayPal account to process the transaction, the malware can easily steal their log-in credentials, and then cyber criminals will request refunds, and by the victims PayPal account transfers, reaching its real purpose. This event exposed the white list mechanism of the defects, of course, the Google and Apple App stores also will often release carries malware applications. Worth attention of is, the user installed app is not like they want to as security.