The hack of the Oklahoma Tax Commission website was brought to Infosecurity’s attention by Roger Thompson, chief researcher for security software provider AVG. In his blog posting this morning, Thompson warned about the pop-up Adobe license agreement that greeted visitors to the website. Apparently, code was waiting to infect the computer of any visitor who clicked on the agreement's “Accept” button.
“I expect that the web guys at OK Tax will remove the hacked html pretty quickly, but the bigger issue will be figuring out how the bad guys got in”, said Thompson. “These things happen to lots of people, but it’s unfortunate to happen to any tax site at this time of year.”
Regarding the nature of the attack, Thompson told Infosecurity that it is a “hacked site that is reaching out to a rotator in the Netherlands, which in turn calls out to an attack site. They use the rotator to decide where to direct the victim.”
Repeated attempts to contact the Oklahoma Tax Commission to confirm whether the website is still infected have gone unanswered. However, Thompson notes that “they've changed the script on the tax site since yesterday, so they must have steady access.”
Comments
OTC_Eng says:
01 February 2010
The Oklahoma Tax Commission website has been cleaned and is functioning correctly.
Note: The majority of comments posted are created by members of the
public. The views expressed are theirs and unless specifically stated are not those
Elsevier Ltd. We are not responsible for any content posted by members of the public
or content of any third party sites that are accessible through this site. Any links
to third party websites from this website do not amount to any endorsement of that
site by the Elsevier Ltd and any use of that site by you is at your own risk. For
further information, please refer to our Terms & Conditions.
Comment on this article
You must be registered and logged in to leave a comment
about this article.