Content

Just two days before Super Bowl XLI, hackers use Dolphin Stadium website to exploit PCs

Hackers today embedded a JavaScript-enabled trojan in the website of Dolphin Stadium, home to Sunday's Super Bowl XLI, stadium officials confirmed to SCMagazine.com.

"A link to a malicious JavaScript file has been inserted into the header of the front page of the site," Websense Security Labs said in an alert. The script attempts to exploit two previously-fixed vulnerabilities, one of which is a bug in Internet Explorer's handling of vector markup language (VML) that was patched Jan. 9 by Microsoft.

Both exploits attempt to download a keylogger that "provides the attacker with full access to the compromised computer," the alert said. Websense said it notified Dolphin Stadium officials about the attack.

The site was vulnerable from about noon to 2:30 p.m. today, said George Torres, a Dolphin Stadium spokesman. An unknown number of visitors were affected, he said.

"Security was compromised earlier today," Torres said. "We've cleaned it. (The site) is back up and running. We're making sure we can try to prevent this from happening again."

The FBI was notified, he said.

A signature for the trojan is available on Bleedingthreats.com, Kevin Liston of the SANS Internet Storm Center said today on the organization’s blog.

Experts said the attack was professional.

"It was not a football fan who did it to voice his opinion on who was going to win," Wolfgang Kandek, vice president of operations at Qualys, told SCMagazine.com today. "He thought this was going to be a heavily trafficked site that he found a vulnerability on."

Dee Liebenstein, vice president of product management at Securewave, said attacks such as this one are especially successful because they appear on official, trusted websites. She said the burden falls on website developers to apply security best practices and also on end users to ensure they are updating their PCs with the latest patches.

The stadium site, which is linked to on the official Super Bowl website, is receiving heavy traffic in advance of Sunday’s showdown between the Indianapolis Colts and the Chicago Bears.

Click here to email reporter Dan Kaplan.

Related

DevSecOps Scanning Challenges & Tips

There are many ways to do DevSecOps, and each organization — each security team, even — uses a different approach. Questions such as how many environments you have and the frequency of deployment of those environments are important in understanding how to integrate a security scanner into your DevSecOps machinery. The ultimate goal is speed […]

It Should Be ‘Cybersecurity Culture Month’

It’s Cybersecurity Awareness Month, but security awareness is about much more than just dedicating a month to a few activities. Security awareness is a journey, requiring motivation along the way. And culture. Especially culture.That’s the point Proofpoint Cybersecurity Evangelist Brian Reed drove home in a recent appearance on Business Security Weekly.“If your security awareness program […]

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

By clicking the Subscribe button below, you agree to SC Media Terms and Conditions and Privacy Policy.