The PowerShift Program puts a world of resources at your fingertips.
Login Page:
http://powershift.netgear.com/ 
Apply to be a Partner:
http://powershift.netgear.com/et.cfm?eid=register
Forgot Password:
http://powershift.netgear.com/et.cfm?eid=resend_password
Not Yet a Partner? Learn More
Language or region not listed above?
Visit our Contact Us page to locate detailed regional contact information using our worldwide map.
Check back soon for deployment of more international websites.
From wireless routers and adapters to Layer 3 Managed Switches we have the networking equipment you need for your home or small business.
Visit NETGEAR.com
Purchase your license key(s) today for your ProSecure® STM and UTM appliances.
Posted By Netgear Threat Lab at 5:26 PM, May 20, 2009
Recently we've noticed a Web-based virus named Gumblar (Trojan.JS.Agent.ace , Troj/redir-R) rapidly spreading on the Internet. This virus accounted for over 40% of all new Web site virus infections last week. Gumblar is a malicious script injected into legitimate web pages in order to load remote malicious content when the page is viewed.
Gumblar first infects Web sites by using stolen or weak FTP login credentials. Every infected site has its own modification of the script. When the script is executed, another script is silently loaded onto site visitors' computers and executed via a series of Adobe Acrobat Reader and Flash Player exploits. The malware then steals sensitive personal data and FTP logins used to infect even more Web sites.
Gumblar was first discovered in March. However, unlike other Web-based malware which gradually die off, it has seen tremendous growth recently. We feel that this is due to the following reasons:
1. The malware authors of Gumblar have continuously updated the virus, increasing the chances of it avoiding detection by anti-virus programs. For example, a short period after the server used to host the virus on the domain gumblar.cn was shutdown a new server at martuz.cn quickly took its place.
2. This particular virus is using a new and creative approach of propagation. The virus hijacks the Web browser of an infected machine, replacing Google search results with malicious links in attempt to steal sensitive data.
3. Gumblar steals FTP login credentials. Previously infected servers which have been cleaned of the virus have a high chance of re-infection.
To prevent being infected by this virus we recommend users to install the latest security patches and update your anti-virus programs to the latest definitions.
Posted by: Netgear Threat Lab at 5:26 PM
Categories: Malware , Netgear Threat Lab , Viruses
TrackBack URL: http://prosecure.netgear.com/cgi-bin/mt/mt-tb.cgi/24