Leave a comment

This fake malware site is why you install security updates immediately

This fake malware site is why you install security updates immediately
Photo courtesy of Shutterstock

We warned you about a dangerous security flaw in Java that was part of a very large, very dangerous hacking campaign called Pawn Storm. We also told you about the important patch for Java that fixed the vulnerability. If you got it, you're fine. If not, you need to know that Pawn Storm is still going on, and for almost a month, a high profile website was a malware attack in disguise.

The website was pretending to be that of the Electronic Frontier Foundation, a digital civil liberties group. Hackers used a spear-phishing email campaign with that URL, and those who visited would be vulnerable to the attackers running code on their computers.

Just FYI, the EFF's website is EFF.org, not electronicfrontierfoundation.org, which is what the hackers used. A staffer at the EFF thinks the malware appeared on the fake site the day it was registered, August 4. Now the fake site simply redirects people to the genuine EFF website.

Just another reminder to keep up with all of your security updates. Visit our Security Center here, and check back to our Happening Now page often for news about the latest digital security issues.

Next Story
Source: Ars Technica
Google Chrome will get MUCH faster on September 1st
Previous Happening Now

Google Chrome will get MUCH faster on September 1st

Top ISIS hacker killed in drone strike
Next Happening Now

Top ISIS hacker killed in drone strike

View Comments ()