Advertising Alliance server attacked thousands of websites into "poison source"

Intermediary transaction http://www.aliyun.com/zixun/aggregation/6858.html ">seo diagnose Taobao guest cloud host technology Hall

Two days ago, 360 Security Center emergency treatment of a very special site hanging horse accident: An advertising federation of the server in the ARP attack, due to the "butterfly effect", but indirectly caused 1500 web sites become the spread of Trojan virus station, at least to the security of hundreds of thousands of user computers.

It is understood that the evening of June 3, 360 Security Center intercepted a new horse-linked web page, unusually, its number suddenly soared unexpectedly, in just a few hours to spread to 1458 sites. Almost at the same time, dozens of of anxious personal webmaster to 360 Security Center sent emergency help, said their site was 360 security guards as a horse to intercept the Web page, but they also believe that their Web server has not been hacked.

Facing some of the owners of the query, 360 anti-Trojan engineers on the horse's web page for an emergency investigation, found that these pages contain the same "network advertising", and through the Advertising Code analysis and positioning, engineers found that these hidden Trojan sites have called the same ad code.

According to 360, said: Originally is a "double Alliance" network Advertising Alliance server room encountered ARP attack, which led to the server was hacked and hung horse. Soon, the affiliate's advertising links were hacked into the Trojan, and the link was quickly automatically embedded in the Web pages of the collaborative website. This means that 1500 of websites, without their knowledge, act as "accomplices" to the hacker-transmitted Trojan virus.

Hidden Trojan advertising links, not only cause the service provider reputation damage, but also directly threaten the user's computer information security

In order to protect the interests of netizens, 360 security guards will be the first time to intercept these sites, and then 360 security engineers will monitor the relevant Trojan sample data provided to the advertising consortium. With the advertising alliance to solve the issue of the horse in time, the 360 Security Center will soon be the 1500 sites to be closed.

This is a slightly "butterfly Effect" network security incident, once again to show us the internet extremely fragile side, but also sparked a public controversy on the topic: in the Web service providers, network advertisers, server providers, as long as any one link is hacked, it is easy to cause a wide range of network accidents. So who is responsible for such accidents? As a result, these ISPs are the same victims as the users, but it does not seem entirely appropriate to push all the blame on the hackers.