Tuesday, September 25, 2007

Syrian Embassy UK Website Hacked

Click for larger image.


Via Websense Security Labs.


The site www.syrianembassy.co.uk contains three unique iframes that direct visitors to malicious Web sites. The iframes use various techniques to evade detection, including Javascript Obfuscation. The iframes point to hosts in the United States, Malaysia, and the Ukraine.

The Mpack attack toolkit is hosted on one of these sites and attempts several exploits depending on OS, browser, and plugin versions. The end result is that two Trojan Downloaders are dropped on visitors' computers from two of the iframes.

More here.

Note: At this moment, this website still contains malicious content. - ferg

0 Comments:

Post a Comment

<< Home