Powered by Twitter.com. See the tips archive here.
Powered by www.flickr.com. See the photo archive here.
Riverfront Times: STLog Pam Beesley
The Files Files St. Louis Beacon
Viva El Birdos St. Louis Daily Photo Blog
Urban Review STL STL Bloggers
Girl's Guide to the Galaxy.com Patrick Says
Super Fun Patrol The Vital Voice

Blog Roll: Check out our friends above.

Notice: This website, specifically this post, and the views contained may not necessarily be the views of the author's employers, friends or family.

When The Internet Attacks!

June 25th, 2004 by Mike


If you are looking at this site via Internet Explorer, especially if you are using Windows…close your browser and surf the web via Firefox, Mozilla, and if you are on a Mac, Safari. If you haven’t downloaded any of these, then go to download them first.

A brand new threat to your personal security has been released today by several agencies and departments, including the Homeland Security Department. Here it is from their site:

US-CERT is aware of new activity affecting compromised web sites running Microsoft’s Internet Information Server (IIS) 5 and possibly end-user systems that visit these sites. Compromised sites are appending JavaScript to the bottom of web pages. When executed, this JavaScript attempts to access a file hosted on another server. This file may contain malicious code that can affect the end-user’s system. US-CERT is investigating the origin of the IIS 5 compromises and the impact of the code that is downloaded to end-user systems.

Web server administrators running IIS 5 should verify that there is no unusual JavaScript appended to the bottom of pages delivered by their web server.

This activity is another example of why end users must exercise caution when JavaScript is enabled in their web browser. Disabling JavaScript will prevent this activity from affecting an end-user’s system, but may also degrade the appearance and functionality of some web sites that rely upon JavaScript. US-CERT recommends that end-users disable JavaScript unless it is absolutely necessary. Users should be aware that any web site, even those that may be trusted by the user, may be affected by this activity and thus contain potentially malicious code.

This is a very serious threat and becuase their has yet to be a patch released from Microsoft, you need to update your antivirus and really stop using Internet Explorer. Some security groups are saying that you should not be on the internet at all today other than 100% necessary tasks.

Another bang up job by Microsoft.

Source: (Its EVERYWHERE) US-CERT | IIS 5 Web Server Compromises

This entry was posted on Friday, June 25th, 2004 at 1:20 pm and is filed under Current Events. You can follow any responses to this entry through the RSS 2.0 feed. You can skip to the end and leave a response. Pinging is currently not allowed.
« Gmail Cravings At All Time High
mfflynn@gmail.com »
blog comments powered by Disqus