British Communist Party website infected with malware 
(05/06/2009)
The website of the British Communist Party has had malware planted on it by hackers, designed to infect the computers of potential supporters.
Experts at Sophos are warning internet surfers that many pages on the website could infect innocent users and give cybercriminals access to their computers, as the hackers have altered a Microsoft Silverlight script so that it will execute malicious JavaScript code, identified by Sophos as Mal/Iframe-F.
"The Communist Party's website infection is invisible to the naked eye, but buried inside the code of a plugin for their webpages," explained Graham Cluley, senior technology consultant for Sophos. "The code is designed to deliver funky animation and video effects to website visitors - but actually tries to invisibly download malicious code from web servers based in China and Russia."
Sophos recommends that as cybercriminals have increasingly turned to using legitimate websites to spread viruses and Trojans, computer users need to properly protect themselves from the threat.
"The Communist Party of Great Britain may not have been deliberately targeted by politically-minded hackers - it could just be that they are one of the 30,000 or so legitimate websites we see every day that have become infected because of lax security," continued Cluley.
"All computer users need to learn that it's not just adult and gambling websites that are dangerous - any website, if not properly secured, can fall victim and leave you seeing red. This is hardly the way to encourage people to support your political party."
At the time of writing the Communist Party of Great Britain's website is still compromised, and Sophos recommends that computer users do not visit the site.
Related topics: Application and software security Internet and Web security Virus, Worm, Email security, spyware and malware
Print version | 
Email to a friend | 
Related articles
Data breaches: Trends, costs and best practices gives you all the latest information on securing personal and corporate data, key recommendations for immediate action to improve data security, and how to respond to data breaches.
Other Security news and resources
Security News
Suppliers Directory
Jobs forum
Classifieds
Knowledge base
White papers
Research library
Security books
Special reports
Security interviews
Security companies
Security events
Security links
Security market
Product channels
Access Control Biometrics CCTV Intruder Alarms IT Security Manned Guarding Perimeter Protection Physical Security Remote Monitoring Security Services Fire, Health & Safety Other Security Products
IT Security white papers and research library
Access Control Authentication Data Management Data Security Digital Signatures Email Security Identity Management Internet Security Intrusion Prevention Network Security Remote access security Security Management Security Policies Security Software Security Threats Virus Detection Software Virus Protection VPN Vulnerability Assessment Wireless Security
Security books, guides, standards and toolkits
RFID and Smart Cards books, guides and reference documents Biometric books, guides and reference documents CCTV books, guides and reference documents Intruder alarms and intrusion detection systems books, guides and reference documents Monitoring and surveillance books, guides and reference documents IT Governance, ISO 27001 ISO 17799 and BS 7799 toolkits Fire, Health & Safety books, guides and reference documents
