Security Labs


  digg   |   |     reddit
  newsvine   |     furl   |     technorati

ABIT China Web site Attacked by IE7 Zero Day


Threat Type: Malicious Web Site / Malicious Code

Websense® Security Labs™ ThreatSeeker™ Network has discovered that the ABIT China Web site is infected by the latest IE 7 Zero Day which we also mentioned in our previous alert.

Screenshot of the infected site:

This is the infected site's source code, displaying the top of the page:

This is a screenshot of the source code at the end of the page:

When a user visits the site, the payload runs automatically and downloads a malicious file. This file is then executed without the user's knowledge. The download location is currently down, but could come back or change at any moment.

Screenshot of the shell code:

Websense Messaging and Websense Web Security customers are protected against this attack.