Hackers Turn Antivirus Site Into Virus Spreader
AvSoft Technologies's SmartCOP site is hosting malicious code, researcher says
Hackers have turned the Website of AvSoft Technologies, an Indian antivirus software maker, into a host for malicious code, a researcher said late last week.
Roger Thompson, chief research officer with security vendor AVG (formerly Grisoft), said his company has spotted malicious code emanating from the download site for AvSoft's SmartCOP (S-Cop), an antivirus software package.
According to a news report, the attack uses an exploit called "iFrame injection" in which attackers open an invisible iFrame Window within the victim's browser that redirects the client to another server. That server, in turn, launches attack code that attempts to install malicious software on the victim's computer -- in this case, the Virut virus.
AvSoft, based in New Delhi, offers two antivirus packages, SmartCOP and SmartDog. The malware used to install Virut exploits only well-known bugs, which means that users who are running antivirus software on fully patched systems will probably not be infected by the attack in its current state, security experts say.
— Tim Wilson, Site Editor, Dark Reading
About the Author
You May Also Like
DevSecOps/AWS
Oct 17, 2024Social Engineering: New Tricks, New Threats, New Defenses
Oct 23, 202410 Emerging Vulnerabilities Every Enterprise Should Know
Oct 30, 2024Simplify Data Security with Automation
Oct 31, 2024