http://www.infosecblog.org/2009/11/real-or-false-positive/ Mon, 06 Feb 2012 07:04:18 +0000 hourly 1 http://wordpress.org/?v=3.3.1 http://www.infosecblog.org/2009/11/real-or-false-positive/comment-page-1/#comment-417 Paul Mon, 16 Nov 2009 20:49:30 +0000 http://www.infosecblog.org/2009/11/real-or-false-positive/#comment-417 Gumblar has been a massive thing this year, infecting more than hundred thousand websites. If I remember right it originally infected users PCs on the fly by exploiting an acrobat reader bug; when the users read a malicious pdf document the pc was infected. It then took ftp passwords stored at the users PC and sent these to the hackers. The hackers then infected the web sites by ftp... I might err in some detail, I guess you find enough info in the web. Make sure to clean your system! Gumblar has been a massive thing this year, infecting more than hundred thousand websites. If I remember right it originally infected users PCs on the fly by exploiting an acrobat reader bug; when the users read a malicious pdf document the pc was infected. It then took ftp passwords stored at the users PC and sent these to the hackers. The hackers then infected the web sites by http://ftp... I might err in some detail, I guess you find enough info in the web. Make sure to clean your system!

]]> http://www.infosecblog.org/2009/11/real-or-false-positive/comment-page-1/#comment-416 Paul Mon, 16 Nov 2009 20:47:33 +0000 http://www.infosecblog.org/2009/11/real-or-false-positive/#comment-416 Gumblar has been a massive thing this year, infecting more than hundred thousand websites. If I remember right it originally infected users PCs on the fly by exploiting an acrobat reader bug; when the users read a malicious pdf document the pc was infected. It then took ftp passwords stored at the users PC and sent these to the hackers. The hackers then infected the web sites by ftp... I might err in some detail, I guess you find enough info in the web. Make sure to clean your system! Gumblar has been a massive thing this year, infecting more than hundred thousand websites. If I remember right it originally infected users PCs on the fly by exploiting an acrobat reader bug; when the users read a malicious pdf document the pc was infected. It then took ftp passwords stored at the users PC and sent these to the hackers. The hackers then infected the web sites by http://ftp... I might err in some detail, I guess you find enough info in the web. Make sure to clean your system!

]]> http://www.infosecblog.org/2009/11/real-or-false-positive/comment-page-1/#comment-415 jitsu wan Wed, 11 Nov 2009 18:23:25 +0000 http://www.infosecblog.org/2009/11/real-or-false-positive/#comment-415 hmmmmmm... hmmmmmm…

]]>