Zebra Huddleâ„¢

Info Center => Zebra Huddle News => Topic started by: Major Wood on August 10, 2012, 12:43:14 am

Title: 8/9/2012 Malware problems - PLEASE READ
Post by: Major Wood on August 10, 2012, 12:43:14 am
At some point recently, Zebra Huddle was the victim of a code injection exploit. The code injected opened a malicious website in an iframe. We believe we have cleared the issue up at this point, but are continuing to look into where the weakness exists that allowed the malicious code to be injected.

From what we are able to tell, the purpose of this code was to get malicious software installed on visitors computers. If this happened to you, I sincerely apologize. If you aren't sure, I will give you some information below about how to check for these things.
We don't believe that this attack was attempting to collect passwords. However, I want to recommend that each of you change your passwords, just to be on the safe side.
I will be checking and making sure that you have to be logged in to post to the site in as many places as possible, to avoid this in the future. I will also be looking into making it harder for bots to register, which will, unfortunately, make it more annoying to register for an account. I was trying to avoid that, but it is becoming a necessity.

A little bit of information about protecting yourself and checking for malware.

One of the best pieces of software for detecting malware is Malwarebytes (www.malwarebytes.org (http://www.malwarebytes.org)). There is a free version which will scan your computer for malware, but does not actively monitor for incoming threats. The paid version will actively monitor.
Malwarebytes is windows only. Mac and Linux users, feel free to chime in with suggestions for those platforms, although the probability of the malicious software affecting Mac or Linux users is very low)

Because I suggested changing your password, I would also like to recommend LastPass (www.lastpass.com (http://www.lastpass.com)) It allows you to have a different, highly secure, password for every site, while only having one password to remember. It works on Windows, Mac and Linux, as well as almost all mobile platforms. Mobile device support is a premium (paid) feature.

Now, hopefully, back to business as usual.
Title: Re: 8/9/2012 Malware problems - PLEASE READ
Post by: Numb3r Crunch3r on August 10, 2012, 04:46:00 am
I'm still getting a malware warning, unfortunately - trojan viruses appearing and being deleted by my antivirus when I enter the site. Just making sure you're still aware of this.
Title: Re: 8/9/2012 Malware problems - PLEASE READ
Post by: Major Wood on August 10, 2012, 05:26:39 am
The same code is still getting inserted. I just removed it again.
I'm doing everything I can to get this taken care of. Thank you for letting me know it's still happening.
Title: Re: 8/9/2012 Malware problems - PLEASE READ
Post by: MissRu-D on August 10, 2012, 12:34:13 pm
I'm writing off my phone because I think this virus attacked my computer.  It won't even load/start up.  Gives blank screen with error message about not finding operating system.  I have very important stuff on the hard drive that I need off before I reload the operating system!

Not sure what to do.  I think this may have been the root cause!
Ruby
Title: Re: 8/9/2012 Malware problems - PLEASE READ
Post by: Major Wood on August 10, 2012, 01:04:18 pm
What you are describing doesn't sound like something that typically occurs when you get an infection. This sounds more typical of some type of hard drive failure. Not saying that it couldn't be the cause, it just doesn't sound likely.

I can't tell you from here exactly what you should do, but I wouldn't try to reinstall Windows on that drive without testing it with something like Spinrite first.
Title: Re: 8/9/2012 Malware problems - PLEASE READ
Post by: MissRu-D on August 10, 2012, 01:17:03 pm
I can even get my computer to turn on so I can't run any programs on it because it won't turn on.  When I called on it they said that I probably got some type of virus that attacked my system. My virus program was not up to date according to them.
Title: Re: 8/9/2012 Malware problems - PLEASE READ
Post by: CircuitBroad on August 10, 2012, 03:55:27 pm
FYI I'm still getting warnings from malware bytes now.