Sunday, August 24, 2008

Chinese Embassy site links to a Trojan page

Picture 5.pngMy daughter noticed this, thankfully we are running MacOS X here.. If you visit the web site of the "Embassy of the People's Republic of China in Australia" there is a "Useful Links" item to "China Association for Preservation and Development of Tibetan Culture", sounds very positive.

However, if you're in Firefox, which checks sites with Google to see if they are known for bad things, you see this:

Picture 6.png

If you click through, Google provides the following advisory:

"Of the 1 pages we tested on the site over the past 90 days, 1 page(s) resulted in malicious software being downloaded and installed without user consent. The last time Google visited this site was on 08/22/2008, and the last time suspicious content was found on this site was on 08/22/2008.

Malicious software includes 5 trojan(s). Successful infection resulted in an average of 15 new processes on the target machine.

Malicious software is hosted on 10 domain(s), including..."

(I won't link to any of the bad domains here though).

So, either the site controllers want to install a trojan on the computer of people interested in Tibetan culture preservation or the site has been compromised by someone without their knowledge.


I discussed this on ABC Radio National this morning.

1 comment:

Unknown said...

Another notable radio essay Peter.

Such clear communication of complex concepts in such a short space of time gets you extra points.

And good on you and the ABC for being independent enough to clearly recognise that it's Windows that's bug-ridden and there are great free and commercial alternatives.