This exploit has drew headlines because it has affected around 4 millions of websites by now also effecting Apple's iTunes platform. Though iTunes users will not suffer because of this, as Apple has designed it to automatically neutralize this kind of threat.
LizaMoon can be called a SQL code injection attack, where a Web application vulnerability is exploited to inject malicious code into affected websites. If a Web surfer visits an affected site, they'll be redirected to a rogue website that tries to install a scareware file. The file generates messages warning the user that their computer is infected with viruses, and offers to sell them antivirus software in defense. Most actual, legitimate antivirus programs will detect and eliminate the malicious file.
And most websites have protections in place to prevent them from getting infected in the first place. While LizaMoon has infested million of websites, security experts say it's a run-of-the-mill threat that is mostly hitting obscure, low-traffic sites. Whatever be it is, but hitting 4 millions websites is a mind blowing figure and this is why it has become most discussed web attacks at present.
No comments:
Post a Comment