blog.hugepixels web . internet . design . computer . gadget

20Jun/09Off

What is a Gumblar Attack?

Gumblar appears to be a combination of exploit scripts and malware. The scripts are embedded in .html, .js and .php files using obfuscated Javascript. They load malware content from third party sites without the user's knowledge. It also steals FTP credentials from the victim's computer, which allows it to spread and infect additional sites. Therefore, when someone visits an infected site they get infected and if they have FTP credentials for a website on their machine then those sites will get infected too. This explains the exponential growth of the exploit in such a short space of time.

Further Read:
- http://news.cnet.com/8301-1009_3-10244529-83.html

Share on TwitterShare on LinkedInShare on TumblrSubmit to StumbleUponSave on DeliciousShare via email
Filed under: Web & Internet Comments Off
   

Recent Posts

Categories

Recommended

Tags

'Gumblar' attacks spreading quickly Differences in SSL Certificates GoDaddy For Sale? Happy New Year 2011 How a Digital Bible Became a Breakout Business How to Use cPanel Account Level Filtering How to Use Cpanel Backup Wizard I Love SugarSync LimeWire Shut Down Permanently Mailfoundry Hosted Anti-Spam Make a Strong Password Online Backup for Desktop and/or Notebook OSX Lion PC Speed and Security Samsung Galaxy Tab Unveiled Season's Greetings 2010 Security measures for Gumblar attack and similar Selective Browsing SkyDrive SkyDrive Windows Live SpamAssassin in cPanel T r u e C r y p t Unable to Send Email using (Email Client) Understanding HTML Color Codes Using Blog PR to Promote Your Site Ways to check if your website is really down Webmaster Tips Web vs. Internet What is a Hard Refresh What is a Nine Ball Attack? What is a website? What is Offsite Backup? Windows 8 World IPv6 Day

RSS WordPress Blog

  • WordPress Takes SXSW 2012!
    The South by Southwest Interactive Festival (SXSW) holds a special place in the history and heart of WordPress. Though the conference has changed in the years since I first met Matt in the hallway in 2003 — before WordPress even had a name — it’s still arguably one of the most influential events in our […]

RSS Joomla Security News

  • [20120304] - Core - Password Change
    Project: Joomla! SubProject: All Severity: High Versions: 2.5.2, 2.5.1, 2.5.0, and all 1.7.x and 1.6.x releases Exploit type: Password Change Reported Date: 2012-March-8 Fixed Date: 2012-March-15 Description Insufficient randomness leads to password reset vulnerability. Affected Installs Joomla! versions 2.5.2, 2.5.1, 2.5.0, and all 1.7.x and 1.6.x versions […]

Affiliate




Feeds Subscription

Enter your email address:

DISCLAIMER

Any person, products, services, brands and information shared on this blog are not in any way related to us or guaranteed updated unless stated.

We strongly suggest that you confirm the details to the official website of the person, products, services or brands if available.

Corporate names and trademarks stated herein are the property of their respective companies.

For any feedback / suggestion / concern, please use the contact page.