Hackers hit Gizmodo

IT security firm Sophos is warning Internet users visiting the gadget Web site Gizmodo to scan their computers following malware attacks.

According to Sophos, the Web site delivered adverts laced with malware last week after the blog's advertising team was tricked into accepting what they believed to be Suzuki adverts from a group of hackers.

Gizmodo is one of the world's most popular blogs, with more than 3.1 million page views per day, according to Sophos. This means many users were put at risk of infection with what is believed to have been fake anti-virus software, designed to scam users out of their credit card details.

Brett Myroff, CEO of regional Sophos distributor, Sophos SA, says: "The hackers aimed to infect as many computer users as possible with their malicious adverts; they know Gizmodo gets a huge amount of traffic.”

Myroff adds this is a bold move coming from the criminals. "Scareware attacks like this are on the rise for the simple reason that they work. Unsuspecting computer users are easily frightened by bogus security warnings into installing and purchasing fake anti-virus software, making cash for unscrupulous hackers.”

Sophos says fake anti-virus software (also known as scareware) attempts to frighten users into believing their computer is infected with viruses and Trojans by displaying bogus alerts. It then tricks unsuspecting users into making an unsafe purchase to remedy the problem.

Sophos advises consumers and businesses to be vigilant and ensure their computer security is up-to-date, as well as to check every Web page they visit for dangerous code and links. In addition, the security vendor advises Web sites that earn revenue through online advertising to enforce proper checks before accepting new advertisers on their sites.

Sophos notes this is not the first time that hackers have managed to infect a high-profile Web site with significant traffic.

Last month, the New York Times suffered from a similar attack after a gang of hackers purchased ad space posing as Internet telephone company, Vonage. Visitors to the New York Times Web site who were served the poisoned advert saw pop-up messages warning them that their computer had been infected, and urging them to install scareware.