iFrame Attack Infects Hundreds of Thousands of Web Pages

This is an archive of the phpBB 2.0.x support forum. Support for phpBB2 has now ended.
Forum rules
Following phpBB2's EoL, this forum is now archived for reference purposes only.
Please see the following announcement for more information: viewtopic.php?f=14&t=1385785
Locked
User avatar
jessica6
Registered User
Posts: 3
Joined: Wed Mar 07, 2007 5:22 pm
Contact:

iFrame Attack Infects Hundreds of Thousands of Web Pages

Post by jessica6 »

I received this SANS email last week, mentioning phpBB:

Another mass iFrame attack has been detected, this one infecting
hundreds of thousands of web pages running phpBB software. The malware
placed on these pages is a JavaScript file that attempts to redirect
surfers to another site that tries to download malicious code onto their
computers.
http://www.vnunet.com/vnunet/news/22121 ... k-reported
http://www.bcs.org/server.php?show=conWebDoc.18275
http://blogs.zdnet.com/security/?p=953
http://www.scmagazineus.com/Trend-Micro ... le/108056/
http://searchsecurity.techtarget.com.au ... ID=6101252

I see no mention of this in the forums. Is it legit?

User avatar
Lumpy Burgertushie
Registered User
Posts: 67049
Joined: Mon May 02, 2005 3:11 am
Contact:

Re: iFrame Attack Infects Hundreds of Thousands of Web Pages

Post by Lumpy Burgertushie »

nothing in any of those articles says anything about phpbb being compromised.
they mention the fact that most of them were running phpbb, but don't even say if any of the phpbb files were involved in the process.

also, the articles seem to be someone just rehashing what they read on another site and posting it.

they are not even consistent in what they say happened.

robert
I'm baaaaaccckkkk. still doing work on donation basis. PM your needs.

Premium phpBB 3.3 Styles by PlanetStyles.net

If a tree falls in the forest and nobody is there, does it make a sound?

Locked

Return to “2.0.x Support Forum”