B.I.S.S. Forums > Co-worker got Conficker from using Project Playlist

Full Version: Co-worker got Conficker from using Project Playlist

B.I.S.S. Forums > Malware Research Forum > Malware IP Research Section

jeffmorse752

May 4 2009, 10:15 PM

At the place where I work, one of my co-workers reported to the company's IT
Department about getting hit with malware as a result of using Project Playlist
www [dot] playlist [dot] com. As a result of being on the site and streaming music
from it, Conficker got onto his workstation (which used IE 6).

IT were able to remove the infection, but they in turn banned all streaming music
sites until they could figure out a way of preventing this from happening again.

I'm curious as to how Conficker could do this, as I've thought it usually infected
through autorun files and network shares that weren't patched for the MS08-067
vulnerability, and usually not through websites. Could it be possible that it was
downloaded via an iframe containing an exploit on the site somewhere?

This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please click here.