Scan your computer if you went to NBC.com today, and be sure to avoid the NBC website until the coast is clear.
Hackers managed to inject malicious iframes into the NBC website, exposing visitors to third-party websites hosting Java and PDF exploits that drop malware if successfully executed.
The exploits are actively being served and cybercriminals have been continuously swapping out the malicious URLs, according to Hitman Pro blog.
Hitman Pro identified the malware being dropped as Citadel (which is a version of Zeus) & ZeroAccess, both of which have fairly low detection rates. Here are the MD5 hashes & VirusTotal results for the samples collected:
- c26c64c3129fca7aafe695904d5976da (Citadel)
- 16ee24be6b0afac36c994c9568e24331 (Citadel)
- 994da098a62905385af8481329bf7c70 (ZeroAccess)
Being that NBC.com has been hacked and is actively serving exploits, users are strongly advised to avoid visiting the website.
Pass the word to your family & friends!
Update: NBC Website Safe to Visit Again, Said to Have Been Infected for 24hrs
Don’t miss out on the latest tech news and computer security alerts! Follow us on Twitter at @hyphenet, “Like” us on Facebook or add us to your circle on Google+