Don't discount software distribution sites as attack vectors

Posted by tadelste on Oct 11, 2005 8:05 AM EDT
SearchSecurity.com; By Ed Skoudis
Mail this story
Print this story

Sendmail. Tcpdump. OpenSSH. In addition to being highly useful software products, the Internet sites used to distribute each of these tools were compromised by attackers over the last few years.

With control of the sites, the bad guys replaced the downloadable installation package for each tool with a "Trojanized" version that included a backdoor bundled in the package. By placing their evil versions on the normal, trusted sites enterprises relied on to download their tools, the bad guys had hit upon the ideal mechanism to propagate their malicious code -- duping systems administrators to take the bait and install their wares for them.

Full Story

  Nav
» Read more about: Story Type: News Story

« Return to the newswire homepage

Subject Topic Starter Replies Views Last Post
Microsoft compromised purplewizard 2 1,127 Oct 12, 2005 6:51 AM

You cannot post until you login.