Alerts
ABIT China Web site Attacked by IE7 Zero Day
Date:12.12.2008
Threat Type: Malicious Web Site / Malicious Code
Websense® Security Labs™ ThreatSeeker™ Network has discovered that the ABIT China Web site is infected by the latest IE 7 Zero Day which we also mentioned in our previous alert.
Screenshot of the infected site:
This is the infected site's source code, displaying the top of the page:
This is a screenshot of the source code at the end of the page:
When a user visits the site, the payload runs automatically and downloads a malicious file. This file is then executed without the user's knowledge. The download location is currently down, but could come back or change at any moment.
Screenshot of the shell code:
Websense Messaging and Websense Web Security customers are protected against this attack.