Subscribe to RSS feeds


May19
by Paul Oliveria (Technical Communications)

whitehouse.org

Joining the growing list of Web site compromises is whitehouse.org, the “officious” parody site of current U.S. White House administration, and all the colorful punditry that accompanies it.

According to Trend Micro Advanced Threats Researcher David Sancho, whitehouse.org has been compromised to harbor some malicious, obfuscated JavaScript code which “background downloads” code to unsuspecting visitors of the site, where a malicious file is downloaded (which is detected by Trend Micro as TROJ_DELF.GKP ).

Of course, the official White House Web site is whitehouse.gov, and although it has been reported that some people believe whitehouse.org is the real deal, even those looking for this site specifically should be forewarned.

This incident is yet additional proof that Web threats are no joke (pun intended).

Additional information provided by Advanced Threats Researcher Paul Ferguson.



This entry was posted on Monday, May 19th, 2008 at 11:13 pm and is filed under Security . Responses are closed, but you can trackback from your own site.



One Response to “WhiteHouse.org pwnd, Serving Malware”

  1. WhiteHouse.org deposita trojan sui PC dei visitatori - DelfinsBlog (Guido Arata) Says:
    May 30th, 2008 at 4:28 am

    [...] nella sicurezza informatica nella sua globalità. Nel blog dell’azienda, infatti, si legge un avviso abbastanza chiaro : il celebre spazio web è diventato a tutti gli effetti un covo [...]


It’s Not Over: Asian Sites Injected with Nasty Code
Yet More Weekend Compromises Reach Other Shores


 
TrendWatch Hijack This Security Tips for Consumers
Free Online Virus Scan Rootkit Buster Submit Suspicious Files
Global Malware Map RUBotted? Trend Micro
Glossary of Threat Terms

 
© Copyright 2008 Trend Micro Inc. All rights reserved. Legal Notice