Web2Secure: Web Security Blog

We are non-funded group of security enthusiast who contributes and updates to community with latest security treats. Use and handle whatever links shared within website could be harmful to your systems with own risks. Feel free to use the contents for commercial or non-commercial purposes. We're very appreciating if using our useful information’s to your website by referring back to this original website. Donation or clicking on ads is most welcome to continue maintains costs for this website.

Monday, October 5, 2009

Bitdefender China Hacked Again..

Bitdefender at China website was hacked again ! Last time happened just two months ago that happened on August.

Firefox block the entry for this page that showed like image below.

Bitdefender website still contain the malicious code that re-directing to other website. The final landing website is hxxp://kybbt.cn same IP address with hxxp://sdse12345.cn

However, malware file that dropped in machine was sent to Virustotal for analysis. Detection rate is high (90%) or 37/41.

sdse12345.cn (121.12.169.208)

Domains sharing the same IP address:

tu-21.cn

wg879.cn

www.wg879.cn

sdse12345.cn

kybbt.cn

Reference: kafan.cn

Web2Secure: Web Security Blog

Pages

Monday, October 5, 2009

Bitdefender China Hacked Again..

0 comments: