:: NEWS :: TIPS :: INFO :: Featured Sponsor : -click x here- Nine Ball
What is it?
Nine Ball is a multi-layered Web browser attack targeting legitimate Web sites to redirect users to malicious sites owned by the attacker. The downloaded malware attempts to infect user's computer through a number of exploits including Adobe Reader, QuickTime, Microsoft Data Access Components (MDAC) and AOL SuperBuddy. The attack name "Nine Ball" refers to the name of the final landing page which is full of malicious drive-by exploits that are automatically downloaded to computers without user's consent or knowledge. Once infected, anything the victim types could be monitored and used to commit identity theft, such as stealing credit card numbers, passwords or other sensitive data. How does the threat work?
Associated effects & implications of attack:
Are there other variances of this vulnerability/threat?
Yes, in the sense that the malware downloaded at the final redirect site varies. It appears that among other malware, a waledac variant is delivered at the final redirect URL. How do I protect myself?
ZoneAlarm Customers:
If you are running ZoneAlarm® ForceField™ browser security technology (included in ZoneAlarm Extreme Security), you are already protected. ZoneAlarm® ForceField™ will stop Nine Ball infected sites from redirecting your browser or downloading malicious programs onto your computer. An additional layer of ForceField's security jams malicious software as it tries to log keystrokes. Therefore no keystrokes can be recorded. NOTE: If you are running ZoneAlarm Extreme Security, you must turn ON ForceField virtualization. If you are running ZoneAlarm Antivirus, ZoneAlarm Internet Security Suite, or ZoneAlarm Extreme, the anti-virus will detect and remove the Nine Ball malware. NOTE: Make sure your PC has the latest virus definitions and product updates: To make sure your product is up-to-date, click "Check for Updates" on the main overview panel, lower left corner. NOTE: ZoneAlarm Pro and ZoneAlarm Free Firewall customers are not protected. These products do not include anti-virus or ForceField's browser security. Users who lack protection are invited to download a 15-day trial version of ZA Extreme CLICK [] HERE.
|
[to BookMark] [Click Here] Dunk ONLINE? [Yo Momma] Bonus: play now while you can. How2Fix SlowComputers just Log in. =:> 1993... something deadly. Keyboard Kowboys - Nothing is Secure is a non-nerdy book about computer programmers who steal money using viruses. Find out how I made money in 2008 with my excerpt. [.$oldOut ?] |
||