Cyber Attack Alert

[theGinsue]

Multiple Federal government agencies (including the one I support) are broadcasting the following cyber attack information that I thought folks on this site might be interested in knowing about:

[Note: "JRE" stands for Java Runtime Environment and is an application that typically works behind the scenes as more of an "add-in" on an individuals computer to support your browser for many of the sites people access on the web]

Advertisements on multiple high-profile sites are being exploited using a JRE 0-day vulnerability to install a Trojan on the users systems.

The malware is being hosted at 94[dot]75[dot]210[dot]11,95[dot]211[dot]14[dot]21, and media9s[dot]com.

The callback in the Trojan has been identified as
88[dot]80[dot]7[dot]152 and nopagency[dot]com


I recommend that you limit use of the following sites and avoid clicking advertisements on these sites.

ufc[dot]com
foxnews[dot]com
motortrend[dot]com
customclassictrucks[dot]com
cstv[dot]com
kansascw[dot]com
jessaminejournal[dot]com
ivpressonline[dot]com

[Marlin]

So, what do I do? shoot the computer...

[BigBear]

I never click on ads anyways and the stupid popups really are annoying... The system my work uses to curtail intrusions/etc is impressive... Cyber crimes are the new organized crime of the 20th century, lol.

[al_g]

Gotta love JRE and Adobe vulnerabilities, some months it seems like over half the IAVA's I see are for one or the other.

[al_g]

So, what do I do? shoot the computer...

I don't know if Sun has released a new version of Java just yet that fixes this hole. If they have update your java, if they haven't ignore ad links and if you are running Firefox I highly suggest the adblocker add-on.


To check your java version go to http://www.java.com/en/download/inst...tect=jre&try=1 and that will detect your version of installed Java. If it says you are up to date, don't need to do anything. Otherwise follow the download steps that the above link redirects you to.

[Mtn.man]

Thanks for the heads up,, just installed the latest version, my old one was from the middle ages evidently.

[theGinsue]

So, what do I do? shoot the computer...

I don't know if Sun has released a new version of Java just yet that fixes this hole. If they have update your java, if they haven't ignore ad links and if you are running Firefox I highly suggest the adblocker add-on.


To check your java version go to http://www.java.com/en/download/inst...tect=jre&try=1 and that will detect your version of installed Java. If it says you are up to date, don't need to do anything. Otherwise follow the download steps that the above link redirects you to.

Yeah, what he said! (Thanks al_g!)

Gotta love JRE and Adobe vulnerabilities, some months it seems like over half the IAVA's I see are for one or the other.

I LOVE (spelled L-o-a-t-h-e) IAVA and MBSA (Microsoft Baseline Security Analyzer) scans. There are so danged many patches and updates to load every month that it's unreal. Making it more difficult is the fact that we have to massage the file names of the patches/etc to get them downloaded through our firewall (my unit/office doesn't control the firewall).

I agree about Adobe. You'd think that they'd be able to figure it out and close all of the vulnerabilities by now; instead, every version has MORE vulnerabilities.

[StagLefty]

Thanks for the heads up-I need all the help I can get when it comes to updates.

[Irving]

Would using sand boxie help with this issue? I go to UFC.com to see info on upcoming fights, but never click on ads. Are these sites just currently targeted until further notice or what?

[gnihcraes]

not seeing any alerts yet on my side of the world... where did you folks get the intel?