Welcome to HBH! If you had an account on hellboundhacker.org you will need to reset your password using the Lost Password system before you will be able to login.

Drive-by pharming attacks

  1. Home
  2. Tech News
  3. Drive-by pharming attacks

Drive-by pharming attacks

<img src='http://images.google.co.uk/images?q=tbn:LliYbTP9d2HxqM:http://www.updatetechnology.ie/images/symantec/symantec-logo.gif' style='margin:5px;' align='left'>Symantec announced a new vulnerability on Wednesday that threatens millions of computer users.

Drive-by pharming attacks stem from malicious code embedded in an innocent-looking Web site, MySpace profile or e-mail. When the victim clicks on the site, the code is surreptitiously downloaded onto their computer. It then uses JavaScript to change the DNS settings of the user's broadband router.

More info <a href='http://www.forbes.com/security/2007/02/14/drive-by-pharming-tech-security_cx_ll_0214pharming.html' target='_blank'>here.


17 years ago
Posted by Mr_Cheese avatarMr_Cheese
Comments
Uber0n's avatar
Uber0n 17 years ago

"The attack, called drive-by pharming, has only been spotted in Symantec (…) and university research labs." Seems to me like we don't have to worry…. Yet ;)

ghost's avatar
ghost 17 years ago

ARRGH! Let it come, I have "noscript" for firefox, and my intuition!

Uber0n's avatar
Uber0n 17 years ago

…And if you're not using the default password for your router, you're secure.

ghost's avatar
ghost 17 years ago

Old news. http://ha.ckers.org/blog/20070215/router-reconfiguration-xss/

ghost's avatar
ghost 17 years ago

wait. password for your router? like encryption? or is this something completly diffrent

ghost's avatar
ghost 17 years ago

@tonzofgunz25. All routers come with a defult pass and user so the owner can login to them and configure them, most are to ignorant to change them. look at my password list in the links section for an example of this.