Sunday, February 4, 2007

Hackers commit offsides hit

Dolphins' Web sites hacked in advance of Super Bowl

Robert McMillan    February 02, 2007 (IDG News Service) -- The Web sites of Dolphin Stadium and the Miami Dolphins, host to Sunday's Super Bowl football game, have been hacked, and malicious code on those sites have been attempting to infect PCs for at least a week, security experts said Friday.

The breach on the stadium site was discovered by Websense Inc.'s automated tools on Jan. 26, but the engineers at the company were not alerted to the problem until this week, when Websense customers complained that they were unable to visit the site.

The dolphinsstadium.com and miamidolphins.com sites are affected by the attack, as are mirror copies of those sites such as proplayerstadium.com. Security experts strongly advise Web surfers to avoid these sites until the compromise is contained.

"If you go to the [Dolphins'] Super Bowl Web site with a Web browser that's not running the latest and greatest patches from Microsoft, you could get exploited," said Dan Hubbard, Websense's senior director of security and technology research.

Miami Dolphins spokesman George Torres said that the matter is being investigated.

The Indianapolis Colts face the Chicago Bears in the National Football League's championship game, one of the most anticipated sporting events of the year in the U.S.

The Dolphins' sites serve up malicious JavaScript code that exploits two known Windows vulnerabilities, Hubbard said. It then attempts to connect with a second Web server that installs a Trojan downloader and a password stealing program on the victim's computer. The Trojan program lets the attackers install malicious software at a later date, he said.

The Web sites that downloaded the malicious software is based in China, and was operating on and off on Friday morning, according to Roger Thompson, chief technology officer at Exploit Prevention Labs Inc.

The Microsoft flaws that were exploited by hackers on the sites were both patched by October, but the breach is significant, Thompson said.

"It's a pretty big deal," he said via instant message. "A lot of people check out football stuff at work, and I bet lots of companies are not patched, even through October."

The NFL's Superbowl.com Web site is not affected by the hack, Thompson said.

Websense published an alert on the hack Friday morning, after first notifying the Miami Dolphins, Hubbard said.

 

posted by Made4biz Security at 11:13 AM  

0 Comments:

Post a Comment

<< Home

Made4biz Security Translating real-world security knowhow into state of the art security systems.

Links

Made4biz Security

Turn on Sound for Demos:
Bill Gates Demo (Location-based)
Elvis Demo (Location/Context-based)
Clint Eastwood Demo (Temporal-based)

Previous Posts

Powered by Blogger

Subscribe to
Posts [Atom]

Technorati Profile

RSS Syndication

Made4Biz Security Inc