Tracking Nz Based Malware Distributors presented at KiwiCon 2008
by Nick von Dadelszen (Lateral Security ),
Summary : Compromised websites are now one of the largest distributors of malware on the Internet, with drive-by downloads being common. Website compromises and malicious JavaScript injections have become automated and recently massive SQL injection worms have swept the Internet. This talk provides the results of an effort to evaluate the number of New Zealand websites being infected in this way, and how long on average it takes to clean up a compromise. We will also analyse a range of JavaScript tricks used in recent compromises, and provide details of tools used to identify compromised sites.