Official website of Romanian political party PSD infected

On January 8, 2010, In Hacking and Pentesting, By Shinnok

As you can see from the screenshot PSD‘s website www.psd.ro is infected with an exploit bomb followed by a trojan dropper of course. :)

Here is the obfuscated js that was injected several times into the websites index.php(click to enlarge):

A quick search on google revealed:

http://www.symantec.com/connect/blogs/new-obfuscated-scripts-wild-lgpl

Which looks very similar with the malware found on psd.ro.

And that’s about it since i am too tired to look further into it, going to take a nap. ;)

UPDATE: Care for a joke?

The malware on psd.ro seems to have a Pусская(Russkaya) touch. :lol:

Don’t worry, Romanians will get it. (1 & 2)


Related posts:

  1. How To Throw a Gamer Party? WTF??!?! I didn’t know that there are rules or even...
  2. The Website Is Down: Sales Guy vs. Web Dude Sales Guy vs. Web Dude! A mashup of true and...
  3. World’s Worst Website World’s Worst Website Probably not the worst but you can...
  4. Packet Storm Security launches new website Yesterday, Packet Storm re-launched with a completely new website, both...
  5. Mac users are getting pwned too Trojan Virus affects thousands of pirated copies of Apple’s iWork...

 
1 Comments
Leave A Response

1 Response » to “Official website of Romanian political party PSD infected”

  1. Romanian Social Democrat Party website still showing traces of compromise « BitDefender Labs says:
    February 1, 2010 at 8:57 am

    [...] website of the Romanian Social Democrat Party was first reported as infected with malicious Javascript on January 8 2010. As of today, February 1, it would appear [...]

    Reply

Leave a Reply



Go To Top »