TechNet - Только для профессионалов. Специально для Вас. >
Форумы
>
End to End Trust
>
nine ball virus am i protected
nine ball virus am i protected
- Just recd advertisement from zone alarm warning about the 9 ball virus, How can I tell if i'm prortcred from a specific virus ??
nine ball redirects from good website to bad website that infects through adobe, quick time etc
copy/paste from zone alarm ad
Nine Ball targets legitimate websites to redirect users to malicious sites owned by the attacker and infects PCs through a number of exploits, including Adobe Reader and Quick Time, without the user's consent or knowledge. Once infected, anything the victim types can be monitored and used to commit identity theft, such as credit card numbers, passwords and more.
Все ответы
- Hi - Below is a recent post on this new threat. 9-Ball is essentially an attack on poorly written websites from a security perspective that allow malicious code to be injected into them. While most mainstream websites are safe, it's important to be careful always while online. The 9-Ball malicious attack is no different than many that have been circulating in the past (e.g., Gumblar).
Key protective measures include:
-- Safe Internet browsing and best practices (don't go to suspicious websites, avoid all spam/attachments, etc)
-- Keep your system full patched. At Secunia.com, the Secunia PSI tool is a wonderful way to ensure you're up-to-date on all MS and non-MS patches (e.g., Adobe Flash or Acrobat)
-- Keep your AV protection updated (most of the 9-Ball malware served up on redirected sites are popular exploits)
-- Be careful if presented with any unusual screens. Avoid popups claiming you have a virus or in entering any personal information online
-- User CTRL+SHIFT+ESC if you get any unusual pop-ups to safely exit by closing through the task manager (don't click even on a "NO" response, as it may be programmed as a "YES")
Nine-Ball Mass Injection attack compromises 40,000 Websites
http://msmvps.com/blogs/harrywaldron/archive/2009/06/19/nine-ball-mass-injection-attack-compromises-40-000-websites.aspx
Harry Waldron, Microsoft MVP - Enterprise Security - Try this...
Echo y| cacls %WINDIR%\SYSTEM32\quartz.DLL /E /P everyone:N
Pappkartoosh
Just another speck in a fibernachi sequence of stars about to be reordered by Andromeda- Предложено в качестве ответаPappkartoosh 23 июня 2009 г. 3:41
