Gumblar Attack

Posted on C# Corner See other posts from C# Corner
Published on Apr 20, 2010 Indexed on 2010/04/20 15:04 UTC
Read the original article Hit count: 379

Filed under:
Gumblar appears to be a combination of exploit scripts and malware. The scripts are embedded in .html, .js and .php files using obfuscated Javascript. They load malware content from Third Party sites without the user’s knowledge, while also stealing FTP credentials from the victim’s computer, which then allows it to spread and infect additional sites. Therefore, when someone visits such an infected site they get infected; if they have FTP credentials for a website on their machine then those sites get infected too. This explains the exponential growth of the exploit in such a short space of time.

© C# Corner or respective owner