Visitors routed to Chinese malware site
Parts of Computer Associates' main Web site have been hacked, with visitors being automatically re-routed to a malware site hosted in China.
Computer Associates has not issued a report on the hack, but newswire reports suggest that parts of the press section of its Ca.com portal were rerouting visitors to the uc8010.com domain, which has been hosting malware since last month.
Commenting on the embarrassing hack, Brian Chess, Fortify's founder and chief scientist, said that the attack vector appears to be similar to a site hack of the Dolphin Stadium Web portal of early last year, with Javascript routines inserted into the body of the relevant pages.
"Unconfirmed reports suggest that the press section of the Ca.com portal is hosted by a third party organisation, but this makes no difference to the visitors, who were being redirected to a malware site in China," he said.
According to Chess, the site hack is an embarrassing incident for Computer Associates, but this kind of hack isnt just about embarrassment any more. "Breaches like these are being perpetrated by criminals being pid to install malware on personal computers. Viruses arent spread on floppy disks any more the corporate website has become a leading vector for getting malicious code past the firewall. Sure its embarrassing, but more importantly its a perfect example of how criminals are leveraging the trust people have in a brand like CAs to gain control of their computers," he said.
Add a Comment
No messages on this article yet