April 28, 2016 | BY Jérôme Segura
The website of popular American brand Maisto, known for miniature and radio-controlled toy vehicles, was caught pushing the Angler exploit kit eventually leading to ransomware infections.
According to website security company Sucuri, maisto[.]com is running on a Microsoft IIS server and showing an outdated version of the Joomla Content Management System, therefore exposing itself to automated hacks.
Malicious code was injected directly into the homepage and bears the same pattern as the pseudo-darkleech campaign, also discovered by Sucuri. Brad Duncan wrote a nice piece titled “Campaign Evolution: Darkleech to Pseudo-Darkleech and Beyond“, which shows how the attack that once only affected Apache servers also targets Microsoft IIS.
Full Article
Toy Maker Maisto Unwittingly Serves Up CryptXXX Ransomware
+54
Oh dear, another in a long line of such failings by companies to protect their infrastructure so that this sort of thing is prevented and so customers/usrs are not exposed. And once again it is due to 'old infrastructure' no doubt not upgraded due to cost....and if that is indeed the case then it has turned out to be a very false economy.
Webroot SecureAnywhere Complete Beta Tester v9.0.24.49, imaged by Macrium Reflect v7.2
Login to the community
No account yet? Create an account
Enter your E-mail address. We'll send you an e-mail with instructions to reset your password.