Internet Storm Center researchers are warning users that drive-by exploits have been embedded in a few dozen legitimate MySpace pages.
Johannes Ullrich, chief technology officer with the Internet Storm Center, told InformationWeek that the malicious code that’s embedded in the Web pages installs the FluxBot, a dangerous new bot. Since the bot doesn’t have a central command and instead relies on a complex set of ever-changing networks of proxy servers, Ullrich said it’s extremely difficult to shut it down or cleanse it off an infected system.
“It appears that these are compromised accounts,” said Ullrich.
“Hackers overtook maybe a few dozen pages. MySpace is fixing the issue.
… They reacted very quickly in this case.”