Howdy malware fighters,
The number of websites that has been hacked in the “Beladen” attack
re: http://securitylabs.websense.com/content/Blogs/3408.aspx &
http://blog.scansafe.com/journal/2009/6/1/beladennet-qa.html
now has risen from 20.000 to 40.000.
This according to security vendor Websense.
More than likely attackers through stolen FTP-passwords found access to websites,
also SQL-injected brute-force attacks on web-servers form an option, re:
http://bt.uptime.cz/apache/apache_attack_EN.pdf
According to websense’s Carl Leonard mainly vulnerabilities in both Internet Explorer and
Firefox browsers were being exploited, but also attacks against Adobe Reader, QuickTime and WinZip are being launched, re:
http://www.computerworld.com/action/article.do?command=viewArticleBasic&taxonomyName=security&articleId=9133820&taxonomyId=17&intsrc=kc_top
Despite of the recent growing number the beladen attacks are rather small as compared to the ongoing Gumblar attacks. According to ScanSafe the number of beladen hacked sites would only total a couple of thousand sites:
http://www.scmagazineuk.com/Claims-made-that-Beladen-has-compromised-around-40000-computers/article/137904/