Compromised Site: Rajshri Productions, India

Date:03.18.2009

Threat Type: Malicious Web Site / Malicious Code

Websense® Security Labs™ ThreatSeeker™ Network has discovered that the official Web site of the Rajshri Productions, India, has been compromised and is infecting the machines of site visitors with malicious code. The malicious code found on the main page of the site leads to an Adobe Reader PDF exploit (CVE-2007-5659).

Rajshri Productions, the film production division of Rajshri, was set up in 1962. Since 1947, the Rajshri Organization has been an integral part of the Indian Film Industry, enjoying a unique position encompassing film production, distribution, exhibition, export, television and digital media.

In an effort to protect their visitors, Websense® Security Labs has contacted Rajshri Productions and advised them of this incident. Websense ThreatSeeker Network has been tracking how this type of attack is carried out successfully over such reputable Web sites, targeting their peers and other visitors.

Screenshot of infected site:

Screenshot of the infected site source, and the malicious payloads:

Websense Messaging and Websense Web Security customers are protected against this attack.

•  Subscribe to this feed »