Geek.com Hacked, Found Hosting Exploit Kit

2011-05-16T17:06:00
ID GEEKCOM-HACKED-FOUND-HOSTING-EXPLOIT-KIT-051611/75238
Type threatpost
Reporter Chris Brook
Modified 2013-04-17T16:34:33

Description

Geek.comThe security geeks at Geek.com were busy this weekend, after Web security firm zScaler found evidence that an exploit kit was using malicious iframe attacks to try to attack visitors to the company’s Web site, according to a Zscaler report Sunday.

A post on the web security firm’s blog indicated the iframe was found at the bottom of the Geek.com site, subsequently redirecting users to a suspicious website hosting the kit. From there, the site’s obfuscated JavaScript was programmed to target vulnerabilities. The malicious code was also found injected inside an article about Call of Duty: Modern Warfare 3, from May 13.

Related Posts

Inside the Demise of the Angler Exploit Kit

August 30, 2016 , 2:25 pm

$2.5 Million-a-Year Ransomware-as-a-Service Ring Uncovered

August 16, 2016 , 9:55 am

Popular Anime Site Infected, Redirecting to Exploit Kit, Ransomware

June 24, 2016 , 7:00 am

Geek.com, a technology, software and gadget news site that was founded in 1996, is just the latest reputable site to be found serving exploit kits – a kind of Swiss Army Knife of Web attacks that allows hackers to customize attacks to the particular software a visitor is using. Sports site Goal.com and even some BBC sites were found dispensing malware to their site’s visitors after being hacked in a similar fashion earlier this year. As poor coding procedures, responsible for browser-based attacks like these, persist, drive-by downloads will continue to run rampant.