US Department of Labor Site Hacked, Send Visitors to Malware

www.himstar.info

AlienVault experts are currently analyzing an hacking attack on the website of the US Department of Labor (dol.gov). 
According to the security department, when users visit the Department of Labor website, a script is executed. This script is designed to probe the victim’s computer to see what versions of Flash, Java, Microsoft Office and Acrobat Reader are running.
It also checks for the presence of several antivirus solutions, including ones from Avira, Bitdefender, AVG, ESET, Avira, Dr. Web, Sophos, F-Secure and Kaspersky. 
Once the information is collected and sent to a remote location, a malicious payload is downloaded by exploiting what appears to be CVE-2012-4792, an Internet Explorer vulnerability addressed by Microsoft in January.
The payload is currently detected by 13 of the 46 antivirus engines used by VirusTotal.
Experts have found that the command and control communication protocol used by the malware is the same as the one used by a known Chinese entity dubbed “DeepPanda”.

Himanshu is a young engineer living in India. Currently working at Cognizant as a Senior Engineer. He is an ethical hacker & blogger too, doing lots of crazy stuff... If you seem interesting, go through his portfolio: www.himstar.info : "Open Source. Millions of open minds can't be wrong!

One comment: On US Department of Labor Site Hacked, Send Visitors to Malware

Leave a reply:

Your email address will not be published.

This site uses Akismet to reduce spam. Learn how your comment data is processed.

Site Footer

Sliding Sidebar

We are India’s largest Startup Community


We are team of ' Delhi Startups ' , most active startup community with strict spam policy.
We are making !deas happen..for future, business and jobs without charging anything, with connecting entrepreneurs.. It's a reason to trust on us.
Come and join or subscribe, we will defiantly give a reason to like us.

Our Facebook Page