“Today as I surf to GSC.com.my - place where most Malaysians make their bookings for cinema tickets, AVG Security Toolbar alerted me of a JS/Downloader.Agent threat coming from 2117966.net!”
All Malaysian’s should take the necessary step not to visit this site at the moment until this problem is fix.
Update: GSC has removed the exploit. You can now surf GSC.com.my without any worries.
Continue reading ‘Malaysia’s GSC website hacked with 2117966.net’
SANS Internet Storm Center made an alert on their website concerning a huge number of legitimate websites being hijacked by malicious iframe that will direct users to 2117966.net. Those who are using an unpatched Internet Explorer is vulnerable to this attack. According to McAfee, majority of the infected websites are running phpBB - a popular forum software. But now it seems that the attack is shifted towards .ASP pages. Further reading at SANS and McAfee.
How to protect from malicious iframe exploitation?
