Websense’s Security Alert
March 2009 by Websense
Websense Security Labs ThreatSeeker Network has discovered that the official Web sites of the Embassy of the Republic of Azerbaijan in the Republic of Hungary and in Pakistan have been compromised. They are infecting site visitors with malicious code. Similar malicious code is found on the main page of both sites, and leads to an Adobe Reader PDF exploit, CVE-2007-5659.
The Embassy of the Republic of Azerbaijan in the Republic of Hungary and in Pakistan provides visitors with brief information about the Azerbaijan nation, development of bilateral relations between countries, and corresponding consular information.
Websense ThreatSeeker Network has been tracking how this type of attack is carried out successfully over such reputable Web sites, targeting their peers and other visitors.