Jump to content
xisto Community
Sign in to follow this  
Followers 0
shadowx

Another New Exploit And One A Few Weeks Ago, We Are All At Risk From These A DNS exploit and a clipboard expload believe it or not

By shadowx, in Security issues & Exploits

Recommended Posts

shadowx    0

shadowx
Posted

Just browsing the news and came across this article: http://news.bbc.co.uk/2/hi/technology/7567889.stm

It is a new exploit based on your computers clipboard. Basically the hacker creates a flash file, usually a banner ad which has some specific code in it. This code empties your clipboard of anything you have copied and then inserts a weblink in there to a malicious download posing as anti virus software. So next time you copy some text and paste it into a forum or chat box or something the flash file, which is now stored within your firefox process or in the firefox temp folders, deletes the stuff you copied and re-inserts its little link back in there, so you go to paste and instead of the text you paste a link to a virus. Inventive!

I expect a fix might well take some time for this, because its not a firefox bug as such, more of an oversight of flash to allow it to modify the clipboard. It seems the best way to kill it is simply to CTRL+ALT+DEL > PROCESSES and "End process" the "firefox.exe" process. In most cases that seems to solve it, if not you will need to reboot. This affects Mac and Windows but is easy to remove.

There is however, a more serious exploit within the DNS system. There has been a bug found, and i think some companies have patched, others havent, and it allows a hacker to redirect you to any webpage while still keeping the correct URL. For example i could type in paypal.com (correct) and be taken to a fake paypal site, despite the fact the URL is correct.

Im not sure how this works but the best way to prevent it affecting you is to always make sure you look at the website carefully to make sure it is the right one. If you log into your bank remember they will never ask for the full PIN/secret number or word (they will normally ask for one of those in full, but not both, they will normally ask for letter/digit 1, 4, 2 etc... not the whole thing)

More info can be found here

And this exploit will affect EVERY device that connects to a DNS server, your phone, PSP, xbox/PS3, computer, server, PDA. Everything.

Share this post

Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
Sign in to follow this  
Followers 0
Go To Topic Listing
×
×
  • Create New...

Important Information

Terms of Use | Privacy Policy | Guidelines | We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.

  I accept