Gamers beware-keyloggers inc!
From Yahoo! News:
San Francisco - Hackers looking to steal passwords used in popular online games have infected more than 10,000 Web pages in recent days.
The Web attack, which appears to be a coordinated effort run out of servers in China, was first noticed by McAfee researchers on Wednesday morning. Within hours, the security company had tracked more than 10,000 Web pages infected on hundreds of Web sites.
Source: Yahoo!
So watch your machines, your passwords etc. EQ2 has had a rash of stuff getting stolen, as can be seen in this thread up on the official forums:
http://forums.station.sony.com/eq2/posts/list.m?topic_id=411665
There are a number of players reporting that they have watched their friends and guildmates get cleared out, completely. Don’t let this happen to you.
Make sure you grab something like Spybot Search and Destroy, Adaware, or Hijack This! and scan your system for possible problems if you think you might have succumbed to this recent outbreak of infected web pages.
Here’s a bit of info from sans.org:
Situation:
Over 10,000 legitimate websites have been compromised and now have a javascript link that will direct visitors to a malicious website hosted on 2117966.net. The malicious website attempts to exploit the vulnerability described in MS06-014 MS07-004, MS06-067, MS06-057and a number of ActiveX vulnerabilities.Successful exploitation result in the installation of a password-stealing malicious program that attempts to steal the logon credentials from websites and online games.
Recommended immediate action:
Block 2117966.net at your web proxy.
Leave a Reply