osCommerce vulnerability the target of massive malware attack

[FirstPageResults]

Just saw this in the DNS mailing list:

An attack that targets a popular online commerce application has infected almost 5 million webpages with scripts that attempt to install malware on their visitors' computers.

Highlights the importance of keeping open source software upto date on a regular basis.

If anyone here is running an older version of osCommerce, i'd suggest upgrading ASAP to avoid your site getting flagged as malicious.

Vunerability info:
http://blog.armorize.com/2011/07/willysycom-mass-injection-ongoing.html

Articles:
http://www.theregister.co.uk/2011/08/02/mass_injection_attack_goes_viral/
http://www.antimalware.com.au/malware-attack-targets-unpatched-oscommerce-websites/

 

[Ash]

There are similar concerns with TimThumb (packaged as a picture cropping tool with many wordpress themes).

I also suggest you check your wordpress themes to see if they are using a compromised version of TimThumb - contact the developers to double-check.

http://blog.sucuri.net/2011/08/timthumb-security-vulnerability-list-of-themes-including-it.html

http://www.practicalecommerce.com/blogs/post/869-Zero-Day-attack-of-popular-WordPress-image-plug-in-TimThumb-millions-of-pages-vulnerable