Friday, February 02, 2007

Trojans Go to Superbowl XLI

The web site for Dolphin Stadium, where Super Bowl XLI will be played, got hacked and malicious code was added to it, Websense Security Labs reports . The web site for the Miami Dolphins, who play in Dolphin Stadium, also was attacked and infected with the same malware. The hackers changed the web page so it downloaded a file called w1c.exe to your computer. If your computer is not up to date on Windows security updates, then the hackers could get complete control of your computer. The good news is that all of the web sites have been fixed and are no longer offering the trojan.

The web sites that were affected are:

You are vulnerable if you haven't installed these security updates MS06-014 and MS07-004 from Microsoft. If you are not sure if you are up to date, then visit Windows Update and select the express install to get your computer fully updated.

At the time of this post, the files that attack your computer are not detected well by most spyware and antivirus programs. Some of the files that attack your computer from this exploit are w1c.exe, msmsgs.exe, ADupdate.exe, 1.exe and 3.exe. These files and others have been submitted to the security companies, so they should be added to detection databases in the coming days.