February 13, 2012

Chocolate Covered Exploit?


Valentine’s Day is here, and stores are flooded with flowers, chocolates, and gift cards. Showing appreciation to your significant other(s) with a box of expensive chocolates has become a tradition, but Googling to find the perfect gourmet chocolate gift has never been more dangerous. 

Events such as Valentine’s Day are a prime target for many hackers. Because large numbers of people search using similar terms—in this case, “Valentine’s Day chocolates”—hackers can drive a lot of traffic to a site in a short period of time. In the first three pages of results, you can stumble across an apparently harmless site leading to potential exploits and malware that could have a catastrophic effect on the computer. 

At first glance, the site below seems harmless. When we take a closer look at its source code, however, we see an interesting iframe. 


The source code shows an iframe in the top left corner of the page. 

On the surface, the source code of the URL http://bigdeal777.com/gate.php?f=956993 seems to have no content, but when we review the site using internal Websense mining tools, we find that the source code actually contains an exploit kit that uses several PC vulnerabilities to push malware onto the system.


Websense customers are protected from these threats by ACETM, our Advanced Classification Engine.


Forcepoint-authored blog posts are based on discussions with customers and additional research by our content teams.

Read more articles by Forcepoint

About Forcepoint

Forcepoint is the leading user and data protection cybersecurity company, entrusted to safeguard organizations while driving digital transformation and growth. Our solutions adapt in real-time to how people interact with data, providing secure access while enabling employees to create value.