Best of the Week
Most Popular
1. Gold vs Cash in a Financial Crisis - Richard_Mills
2.Current Stock Market Rally Similarities To 1999 - Chris_Vermeulen
3.America See You On The Dark Side Of The Moon - Part2 - James_Quinn
4.Stock Market Trend Forecast Outlook for 2020 - Nadeem_Walayat
5.Who Said Stock Market Traders and Investor are Emotional Right Now? - Chris_Vermeulen
6.Gold Upswing and Lessons from Gold Tops - P_Radomski_CFA
7.Economic Tribulation is Coming, and Here is Why - Michael_Pento
8.What to Expect in Our Next Recession/Depression? - Raymond_Matison
9.The Fed Celebrates While Americans Drown in Financial Despair - John_Mauldin
10.Hi-yo Silver Away! - Richard_Mills
Last 7 days
Dow Long-term Trend Analysis - Coronavirus Triggering a Stocks Bear Market? - 27th Feb 20
Trump or Sanders? Both will pile up the Debt - 27th Feb 20
Oil Price Is Now More Volatile Than Bitcoin - 27th Feb 20
A Digital “Fedcoin” May Be Coming… And It Would Be Terrifying - 27th Feb 20
India's Nifty 50 Stocks: Does the Bad Jobs Outlook Spell Trouble for Stocks? - 27th Feb 20
How Crypto Currencies Are Helping Players Go Private - 27th Feb 20 -
Gold and Silver The Die Is Cast - 27th Feb 20
US Economy Permanently Addicted to Zero Interest Rates - 27th Feb 20
Has the Stock Market Waterfall Event Started Or A Buying Opportunity? - 27th Feb 20
Advantages of Enrolling in a Retirement Plan - 27th Feb 20 - LS
South Korea Coronavirus Outbreak Data Analysis Warning Rate of Infection is Exponential! - 26th Feb 20
Gold Price Long-term Trend Analysis Forecast 2020 - 26th Feb 20
Fake Markets Are on Collision Course with Reality - 26th Feb 20
Microsoft is Crushing the S&P 500, Secret Trait Of Stocks That Soar 1,000%+ - 26th Feb 20
Europe's Best Ski Resorts For The Ultimate Adventure - 26th Feb 20
Samsung Galaxy S20+ vs Galaxy S10+ Which One to Buy? - 26th Feb 20
Gold Is Taking on $1,700 amid Rising Coronavirus Fears - 26th Feb 20
Is This What Falling Through the Floor Looks Like in Stocks? - 26th Feb 20
Gold Minsky Moment Coming - 26th Feb 20
Why Every Student Should Study Economics - 26th Feb 20
Stock Market Correction Over? - 26th Feb 20
US Bond Market Yield Curve Patterns – What To Expect In 2020 - 25th Feb 20
Has Stock Market Waterfall Event Started Or A Buying Opportunity? - 25th Feb 20
Coronavirus IN Sheffield! Royal Hallamshire Hospital treating 2 infected Patients, UK - 25th Feb 20
Dow Short-term Trend Analysis - Coronavirus Trigger a Stocks Bear Market? - 24th Feb 20
Sustained Silver Rally Coming? - 24th Feb 20
Should Investors Worry about Repo Market and Buy Gold? - 24th Feb 20
Are FANG Technology Stocks Setting Up For A Market Crash? - 24th Feb 20
Gold Above $1,600 Amid FOMC Minutes and Coronavirus Impact - 24th Feb 20
CoronaVirus Pandemic Day 76 Trend Forecast Update - Infected 540k, Minus China 1715, Deaths 4920 - 23rd Feb 20 -
Ways to Find Startup Capital - 23rd Feb 20
Stock Market Deviation from Overall Outlook for 2020 - 22nd Feb 20
The Shanghai Composite and Coronavirus: A Revealing Perspective - 22nd Feb 20
Baltic Dry, Copper, Oil, Tech and China Continue Call for Stock Market Crash Soon - 22nd Feb 20
Gold Warning – This is Not a Buying Opportunity - 22nd Feb 20
Is The Technology Sector FANG Stocks Setting Up For A Market Crash? - 22nd Feb 20
Coronavirus China Infection Statistics Analysis, Probability Forecasts 1/2 Million Infected - 21st Feb 20
Is Crude Oil Firmly on the Upswing Now? - 20th Feb 20
What Can Stop the Stocks Bull – Or At Least, Make It Pause? - 20th Feb 20
Trump and Economic News That Drive Gold, Not Just Coronavirus - 20th Feb 20
Coronavirus COVID19 UK Infection Prevention, Boosting Immune Systems, Birmingham, Sheffield - 20th Feb 20
Silver’s Valuable Insights Into the Upcoming PMs Rally - 20th Feb 20
Coronavirus Coming Storm Act Now to Protect Yourselves and Family to Survive COVID-19 Pandemic - 19th Feb 20
Future Silver Prices Will Shock People, and They’ll Kick Themselves for Not Buying Under $20… - 19th Feb 20
What Alexis Kennedy Learned from Launching Cultist Simulator - 19th Feb 20
Stock Market Potential Short-term top - 18th Feb 20
Coronavirus Fourth Turning - No One Gets Out Of Here Alive! - 18th Feb 20
The Stocks Hit Worst From the Coronavirus - 18th Feb 20
Tips on Pest Control: How to Prevent Pests and Rodents - 18th Feb 20
Buying a Custom Built Gaming PC From Overclockers.co.uk - 1. Delivery and Unboxing - 17th Feb 20
BAIDU (BIDU) Illustrates Why You Should NOT Invest in Chinese Stocks - 17th Feb 20
Financial Markets News Report: February 17, 2020 - February 21, 2020 - 17th Feb 20
NVIDIA (NVDA) GPU King For AI Mega-trend Tech Stocks Investing 2020 - 17th Feb 20
Stock Market Bubble - No One Gets Out Of Here Alive! - 17th Feb 20
British Pound GBP Trend Forecast 2020 - 16th Feb 20
SAMSUNG AI Mega-trend Tech Stocks Investing 2020 - 16th Feb 20
Ignore the Polls, the Markets Have Already Told You Who Wins in 2020 - 16th Feb 20
UK Coronavirus COVID-19 Pandemic WARNING! Sheffield, Manchester, Birmingham Outbreaks Probable - 16th Feb 20
iShares Nasdaq Biotechnology ETF IBB AI Mega-trend Tech Stocks Investing 2020 - 15th Feb 20
Gold Stocks Still Stalled - 15th Feb 20
Is The Technology Stocks Sector Setting Up For A Crash? - 15th Feb 20
UK Calm Before Corona Virus Storm - Infections Forecast into End March 2020 - 15th Feb 20

Market Oracle FREE Newsletter

Coronavirus-bear-market-2020-analysis

Iframes Injection Trojan Downloader Virus Hacking Sites and Desktops Protection

sitenews / Strategic News Aug 28, 2008 - 12:11 AM GMT

By: Nadeem_Walayat

sitenews

Best Financial Markets Analysis ArticleThe Market Oracle web site was the victim of being hacked on Saturday the 23rd of August 2008 at 10.42am (CST)

The site was brought down for 5 hours on Saturday, following which we managed to bring the site back online, following which we attempted to determine exactly what had happened to bring the site down.


Server Glitch or Hack ?

Our initial reaction was that some of the sites system files on the server had become corrupted due to a server error as the server has one of the best anti-virus packages installed (Kaspersky) , and additional mod security and protection against brute force hacking attempts that have thus far prevented any successful hacking of the web site for several years.

On investigation of what had happened we found that the site was definitely brought down as a consequence of malicious action rather than a server glitch as we found code had been injected into some of the sites pages the aim of which was to redirect visitors to the hackers own site via iframes.

On the realization of this we immediately suspended the site whilst we worked on how to cleanse the site of injected code and ascertain who hacked us and how.

The Market Oracle site system files were replaced from a clean back up which enabled us to bring the site back online during the 27th of August 08.

Desktops Compromised Not Server

After extensive analysis, we managed to ascertain that the most probable route for the successful hack was via a compromised desktop that enabled ftp access onto the server, therefore this implies that the server itself was not directly hacked. The most probable route of the virus was via one of the three desktop systems that we use to maintain the web site, and that despite anti-virus software installed the route was probably via visiting a compromised web site that was unaware of the fact that they had been compromised.

We took the action to wipe all three computers which has disrupted our ability to maintain the Market Oracle web site with new content for 4 full days.

Additionally content update during 27th of August was limited as we suspended ftp access to the server.

Who hacked us and Why ?

Initially we thought that the hacking was a consequence of our recent articles on the New Cold War brewing over the Russia / Georgia conflict. However we tracked the source of the virus down to South Korea and further to the Chung-Ang University.

The aim of the attack appears to be to spread a trojan dowloader virus that attempts to infect more desktops with the aim to eventually infect more web sites via ftp access and therefore propagating itself. Furthermore the Chung-Ang University source of the virus attempts to download numerous additional viruses via the trojan downloader onto desktops.

Research has revealed that thousands of web sites are being compromised on a daily basis including government web sites, with many of the web sites unaware that they have been compromised. A search for iframe injection reveals the extent of the problem.

Defence Against Iframes compromised Websites

Immediate action can be taken to prevent iframes code compromised websites from executing the code within iframes by the following procedure -

In internet explorer navigate to - Tools - Internet Options - Security Tab - Custom Level

Under Miscellaneous

Launching programs and files in an IFRAME - DISABLE

Navigate sub-frames across different domains - DISABLE

Defence against Hacking / Virus attacks in General

The defence for servers is to ensure ftp access is highly restricted, as well as maintaining up to date anti-virus, mod security and secure permissions as well as server script monitoring that flags any changes to site system files.

The defence for desktops is to ensure that good anti-virus and anti-malware software is installed such Kaspersky. Additionally AVG offer a free version of their anti-virus that does not expire. Purchasing an good anti-virus package for $30 to $60 is probably the best investment you will make.

Regular Backups

This experience also illustrates the importance of making regular backups of system files and data. In this age of cheap removable storage this is no longer a time consuming exercise when a monthly backup can be completed within a matter of minutes.

What if you are already infected ?

Then its probably too late to install an anti-virus package after your system has become infected.

The best course of action is usually to wipe the desktop and restore from a backup. If you do not backup then you should copy your documents / data before performing a fresh install, and ensure you run a full anti-virus scan on your data before you access it.

By Nadeem Walayat
http://www.marketoracle.co.uk

Copyright © 2005-08 Marketoracle.co.uk (Market Oracle Ltd). All rights reserved.

Nadeem Walayat has over 20 years experience of trading, analysing and forecasting the financial markets, including one of few who both anticipated and Beat the 1987 Crash. Nadeem is the Editor of The Market Oracle, a FREE Daily Financial Markets Analysis & Forecasting online publication. We present in-depth analysis from over 150 experienced analysts on a range of views of the probable direction of the financial markets. Thus enabling our readers to arrive at an informed opinion on future market direction. http://www.marketoracle.co.uk

Disclaimer: The above is a matter of opinion provided for general information purposes only and is not intended as investment advice. Information and analysis above are derived from sources and utilising methods believed to be reliable, but we cannot accept responsibility for any trading losses you may incur as a result of this analysis. Individuals should consult with their personal financial advisors before engaging in any trading activities.

Nadeem Walayat Archive

© 2005-2019 http://www.MarketOracle.co.uk - The Market Oracle is a FREE Daily Financial Markets Analysis & Forecasting online publication.


Comments

Simon Lawrence
29 Aug 08, 03:05
Checking your desktop

Hi,

I run AVG on both my home computers. One of them did block an attempt to download a Trojan through javascript from your sight while it was compromised. The other did not report anything at all and i probably visited your site during the same day with that machine. AVG on both machines now report clean scans. In your opinion are both computers likely to be clean? If not what specifically should i look out for.

Also how is the book coming along? I look forward to reading on its completion.

Simon Lawrence


Nadeem_Walayat
29 Aug 08, 11:12
AVG

Hi

Reboot into safemode and run a full scan.

The book is on hold, I literally have a mountain of work to get through, no time for the luxury of finishing a book, maybe sometime next year.

Best.

NW


Post Comment

Only logged in users are allowed to post comments. Register/ Log in

6 Critical Money Making Rules