ITPRO

Printed from www.itpro.co.uk

Register to receive our regular email newsletter at http://www.itpro.co.uk/registration.

The newsletter contains links to our latest IT news, product reviews, features and how-to guides, plus special offers and competitions.

Skip to navigation

    Websites hit by 'Silent love China' attacks

The SQL injection attack has damaged thousands of English-language websites in just four days.

By Barry Collins, 20 May 2008 at 15:37

More than 9,000 Western websites have been compromised after a new round of SQL injection attacks that are believed to have been launched from China.

The large-scale attacks only began on Saturday, but by yesterday morning more than 7,000 websites had been affected, according to security firm ScanSafe.

A Google search conducted at the time of publication reveals that more than 9,000 sites have now been hit.

The attacks inject an iframe which loads malicious content from qiqigm.com, a domain that was only registered last Friday, a day before the attacks were first recorded.

RealPlayer and Internet Explorer vulnerabilities are targeted by the attacks which, if successful, lead to the installation of a password-stealing Trojan. The phrase "Silent love China" is also buried in the exploit code.

ScanSafe's senior security researcher, Mary Landesman, said the attacks are targeted at English-language websites, with Chinese government websites specifically excluded.

Email to a friend

Print this page

Social Bookmark this article: What is this?

Add to: DiggDigg
Add to: Del.icio.usDelicious
Add to: RedditReddit
Add to: StumbleUponStumbleUpon
Add to: SlashdotSlashdot
Add to: GoogleGoogle
Add to: FacebbokFacebook

Be the first to comment on this article

You need to Login or Register to comment.

    Related stories

    Related Tags

ScanSafe Silent love China SQL injection security
advertisement

    Latest Security Features

NHS IT - something to celebrate?

To mark the 60th anniversary of the NHS, IT PRO examines the massive IT overhaul at the health services giant.

Read more

 

More Security Features

    Latest Security Reviews

Finjan Vital Security Web Appliance NG-6000S

Rating: 5

Online threats are getting ever more sophisticated. Does Finjan’s web content security appliance have enough craft to stay one step ahead?

Read more

 

More Security Reviews

advertisement

    Latest News Videos in Security

Video: Q&A with Richard Archdeacon, Symantec

Play Video: Q&A with Richard Archdeacon, Symantec   Play

IT PRO speaks to Richard Archdeacon, director, global services, at the information security software vendor Symantec.

 

    Blogs

Green if but for the licenses

Read more

 

    White papers

Want more background on today's hottest IT trends?

Visit IT PRO's white paper library for more on virtualisation, encryption and other topics.

    Register for IT PRO

You'll get exclusive member benefits including free white papers, downloads, Webinars and weekly newsletters full of the latest IT PRO news, reviews, insight and expertise.

Register
Advertisement