Fort William Mountain Bike World Cup 2009 Site Hijacked
Threat Type: Malicious Web Site / Malicious Code
Websense Security Labs™ ThreatSeeker™ Network has discovered that the Web site of Fort William Mountain Bike World Cup 2009 has been hijacked by attackers, and redirects users to rogue AV sites if they visit the site through well-known search engines such as Google, Yahoo, and MSN.
This site has been injected by the Nine-Ball malicious code twice this month. Now, the injected code has been cleaned but system control has been lost without the administrator's knowledge. Once the attackers gained system control, they likely made small changes to the configuration of the Web server to redirect any visitors to rogue AV Web sites if arriving at the site via search engines. We would like to remind Web masters that a full examination of the whole system is necessary after removing code injections.
Screenshot of the normal site:
Screenshot of the malicious redirection:
Websense® Messaging and Websense Web Security customers are protected against this attack.