recommended reading

Threatwatch

Dailymotion serves up malware to video-watchers

Network intrusion; Man-in-the-middle attack

The popular media-sharing site was compromised in a way that redirected users to a hacking tool.

The tool took advantage of vulnerabilities in computers running Java, Internet Explorer, and Flash Player.

“If the vulnerabilities were successfully exploited during the campaign, pay-per-click malware was then downloaded on the victim’s computer,” Symantec reports. The malware forces a computer to artificially generate traffic on pay-per-click Web advertisements to boost profits for the attackers.

It’s not clear if the assault was the result of Dailymotion itself being hacked or a malicious advertisement served through a third-party ad network, a common means of inserting rogue code on popular websites, according to Network World.

It is believed the attackers targeted the site to reach a large audience, as Dailymotion is on Alexa’s top 100 most popular websites list.

The redirect mainly affected visitors in the US and Europe.

Dailymotion was no longer tainted as of the first week of July.

sector

Entertainment

reported

July 3, 2014

reported by

Symantec

number affected

Unknown

location of breach

Unknown

perpetrators

Criminals

location of perpetrators

Unknown

date breach occurred

June 28, 2014

date breach detected

Unknown

Thank you for subscribing to newsletters from Nextgov.com.
We think these reports might interest you:

  • Modernizing IT for Mission Success

    Surveying Federal and Defense Leaders on Priorities and Challenges at the Tactical Edge

    Download
  • Communicating Innovation in Federal Government

    Federal Government spending on ‘obsolete technology’ continues to increase. Supporting the twin pillars of improved digital service delivery for citizens on the one hand, and the increasingly optimized and flexible working practices for federal employees on the other, are neither easy nor inexpensive tasks. This whitepaper explores how federal agencies can leverage the value of existing agency technology assets while offering IT leaders the ability to implement the kind of employee productivity, citizen service improvements and security demanded by federal oversight.

    Download
  • Effective Ransomware Response

    This whitepaper provides an overview and understanding of ransomware and how to successfully combat it.

    Download
  • Forecasting Cloud's Future

    Conversations with Federal, State, and Local Technology Leaders on Cloud-Driven Digital Transformation

    Download
  • IT Transformation Trends: Flash Storage as a Strategic IT Asset

    MIT Technology Review: Flash Storage As a Strategic IT Asset For the first time in decades, IT leaders now consider all-flash storage as a strategic IT asset. IT has become a new operating model that enables self-service with high performance, density and resiliency. It also offers the self-service agility of the public cloud combined with the security, performance, and cost-effectiveness of a private cloud. Download this MIT Technology Review paper to learn more about how all-flash storage is transforming the data center.

    Download

When you download a report, your information may be shared with the underwriters of that document.