Beijing at 12:00 on the July 5 news release 360 Emergency Security Center said the red security warning, along with Microsoft MPEG-2 video analysis module 0day vulnerabilities has been the outbreak of large-scale network attacks. As at 12 o'clock on the 5th,hong xing mei kai long official website, as audio and video of the Chinese Institute of Electronics Science and Technology Corporation, the second, Sinopec Qilu Hospital Group, China's leather network, China's coal network, Beijing woodpecker group wedding photography, Tianjin First Central Hospital, Yunnan real estate portal, network and other railway corps of 967 Web site 7740 Web site has been hacker attacks implant corresponding code, including a large number of pornographic websites.
According to 360 security experts to introduce Dr. Shi Xiaohong, from at 12 o'clock on July 4, the 360 Center for cloud computing security monitoring system to the same type of a beginning of a significant increase in network attacks, and at 7 o'clock on July 5 was a sudden outbreak of the situation. By 360 experts in authentication, hackers use the Microsoft Windows operating system BDA Tuning Model MPEG2 Tune Request a video component 0Day loopholes.
When a user clicks the corresponding "page linked to Ma," the malicious code will automatically trigger MPEG2 video components over msvidctl.dll modules, corresponding to IE and other browsers will show for the card to die for a short while, and then the computer will automatically download and run a series of pre-set a good hacker Trojans, malicious code during the period will be forced to close most of the security software, hijacked IE homepage, pop-up ads and other phenomena of the page.
It is reported that the loopholes in late May this year found that Microsoft "DirectShow Video Development Kit" 0day vulnerabilities similar to the browser through to trigger the vulnerability. But the difference is that the MPEG-2 0Day vulnerabilities much easier to use, and users no longer need hackers to run malicious video files to any computer will be able to let hackers into the mercy of the "chickens." This attack is more subtle, more difficult to prevent ordinary users, which will be more vulnerable to Trojan horses and other lawless elements the industry chain of all ages. In addition, test results from the current view, as VISTA, Windows2008 and WIN7 used SAFESEH / GSCOOKIE technology, the main impact of the vulnerability 0Day is the largest user of the Windows XP system.
Dr. Shi Xiaohong said that in view of the official Microsoft patch has not yet been released and has been the outbreak of large-scale network attacks, which had 360 Security Center immediately issued a red alert, warning users of this high-risk to prevent the risk of attention. It is reported that this letter is the Department of Public Works, "Trojans and bot networks for monitoring and disposal mechanism" after the introduction of the second major network security threat.
According to 360 security experts to introduce Dr. Shi Xiaohong, from at 12 o'clock on July 4, the 360 Center for cloud computing security monitoring system to the same type of a beginning of a significant increase in network attacks, and at 7 o'clock on July 5 was a sudden outbreak of the situation. By 360 experts in authentication, hackers use the Microsoft Windows operating system BDA Tuning Model MPEG2 Tune Request a video component 0Day loopholes.
When a user clicks the corresponding "page linked to Ma," the malicious code will automatically trigger MPEG2 video components over msvidctl.dll modules, corresponding to IE and other browsers will show for the card to die for a short while, and then the computer will automatically download and run a series of pre-set a good hacker Trojans, malicious code during the period will be forced to close most of the security software, hijacked IE homepage, pop-up ads and other phenomena of the page.
It is reported that the loopholes in late May this year found that Microsoft "DirectShow Video Development Kit" 0day vulnerabilities similar to the browser through to trigger the vulnerability. But the difference is that the MPEG-2 0Day vulnerabilities much easier to use, and users no longer need hackers to run malicious video files to any computer will be able to let hackers into the mercy of the "chickens." This attack is more subtle, more difficult to prevent ordinary users, which will be more vulnerable to Trojan horses and other lawless elements the industry chain of all ages. In addition, test results from the current view, as VISTA, Windows2008 and WIN7 used SAFESEH / GSCOOKIE technology, the main impact of the vulnerability 0Day is the largest user of the Windows XP system.
Dr. Shi Xiaohong said that in view of the official Microsoft patch has not yet been released and has been the outbreak of large-scale network attacks, which had 360 Security Center immediately issued a red alert, warning users of this high-risk to prevent the risk of attention. It is reported that this letter is the Department of Public Works, "Trojans and bot networks for monitoring and disposal mechanism" after the introduction of the second major network security threat.
0 评论:
发表评论