I guess they weren't kidding when they awarded Malaysia the not so prestigious award of having the highest amount of malicious online activity in the region. The latest website that has been compromised and is being used to spread malicious scripts belongs to a company that oversees quality assurance across thousands of products - SIRIM.
The compromised URL is 'www.sirim.my/pop_event2.asp?id=685'. Its still live at time of writing so we do not recommend you to access it unless you have a very reliable anti-virus installed. From our initial tests, the latest firefox seems to be immune to the script. A malicious script that downloads an unknown program from a .cn url has been injected into the page. Our checks however reveal that only the particular page is compromised via either an unsecure script or a badly written sql statement. Other parts of the SIRIM website at the moment remain untouched.
Google has already classified the entire SIRIM site as being unsafe and potentially harmful. Any direct links via google search that points to the SIRIM website will be directed to google's safe browsing page
So, would somebody in SIRIM care to take the compromised page down soon. As it stands now, the link to the page is being spammed across websites around the world. Google alone has already indexed about 50 of these sites.
Comments
Name: Don Carre
Comment: they might not even aware of this.
the best thing a person like you can do is to also inform the organization about this issue.
