Home
Tech info
Technology
Science
Life
Application
Electric
Program
Mobile
Windows 10
Windows 11Website Lenovo distributed malicious code
Hackers have attacked vebsite to support downloading drivers from leading Chinese computer manufacturers, Lenovo and inserting malicious code into the website. Many users searching for computer drivers on this website have been removed from the system by Bredolab trojan.
According to Bkis, many customers access the Lenovo website on June 22 and 23 to download drivers that have received a warning from the security program announcing malicious code on the site.
Website Lenovo distributed malicious code Picture 1
ESET NOD32 Antivirus security program identifies files
pdf file with embedded malicious code is a trojan type (Photo: Internet)
The malicious code exploit code is stored in volgo-marun (.) Cn. After performing a number of checks to identify software that is carrying security flaws installed on the visitor's system, the exploit code will focus on the old Internet Explorer browser security vulnerabilities. Adobe Reader or Adobe Flash Player.
"These exploit codes will download the volgo-marun.cn/pek/exe.exe file (identified as a virus) into the victim computer. Virus is a variant of Bredolab Botnet After successful penetration , the virus will clone to% Programs% Startupmonskc32.exe and receive commands from the server with the domain name sicha-linna8.com ", according to the Bkis blog.
The new variant of malicious code is only recognized by 10/41 antivirus programs, tested by VirusTotal. The download.lenovo.com subdomain is marked " black " by Google's Safe Browsing service. Accordingly, users using two browsers FireFox and Chrome will receive malicious code alerts when opening the resources on this site.
Website Lenovo distributed malicious code Picture 2
The section to prevent access and warning of malicious code of Google Safe Browsing
(dark red frame in the middle of the page) - (Photo: Internet)
Currently, users are advised to temporarily not access the download.lenovo.com website until the cleanup department " clean " the malicious code and patch the vulnerability to prevent hackers from breaking in again.
Jessica TannerYou should read it
- Free 180 days using copyrighted ESET NOD32
- How to Update NOD32
- ESET launched NOD32 Antivirus 5 and Smart Security 5
- 7 best antivirus programs for Ubuntu
- Trojan inserts ads into OS X browser
- Offer free monthly ESET antivirus software license for PC and Android
- Use SEO to bring Google search results to bank trojans
- ESET Cybersecurity security software for Mac
- Appeared trojan trojan antivirus tool for mobile
- Fileless malware - Achilles heel of traditional antivirus software
- Learn about Backdoor.Win32.Bredolab.eua malware
- Warning: The new Facebook virus, a malicious code that is spreading rapidly through Messenger
Maybe you are interested
How to Share Your Exact Location with Google Plus Codes
More than 200 apps containing malicious code were discovered and downloaded millions of times on the Google Play Store.
7 best barcode scanning apps on phones
Latest Pet Simulator X 2022 Codes and How to Enter Codes
Latest Project Smash Roblox Codes
Latest Eatventure Code 2024 get free coins and diamonds
Watch out for fake viruses Facebook Photo
Appeared malicious software 'clones' famous software
Kaspersky can forecast malware translation
Scanning for viruses before using
New virus attacks industrial security system
Stubborn Malware Removal with SuperAntiSpyware