Weekly News via Email
   Set as homepage | Add to favorites | Customer Service | Subscribe Now | Place an Ad | Contact Us | Sitemap Sunday, 02.25.2018
News Archive
Su Mo Tu We Th Fr Sa
 1  2  3
 4  5  6  7  8  9  10
 11  12  13  14  15  16  17
 18  19  20  21  22  23  24
 25  26  27  28  29  30  31
Online Extras
Site Services
Around Bend
Outdoor Fun
Travel Info
Shop Local

Members Of

Poll: Today's Live Poll
Email to a friend | Print this | PDF version | Comments (0 posted) 
  Blogger |   del.icio.us |   digg |   newsvine

Mar 09,2007
Trojan falsely boosts Alexa traffic stats for Chinese web sites
by Bend Weekly News Sources

FaceTime Researchers Discover Symfly Trojan Abusing Alexa Toolbar

FaceTime Security Labs, the threat research and remediation arm of FaceTime Communications, has discovered a Trojan named Symfly that is influencing Alexa Web traffic rankings for several Chinese Web sites. Customers who have deployed FaceTime Enterprise Edition, including RTGuardian, GEM and IMAuditor and configured for automatic filter updates, are automatically protected from this security threat.

Symfly Trojan downloads the Alexa Toolbar, calls out to web sites, registering as legitimate hits and artificially inflating the site’s Alexa traffic ranking. 
The Symfly Trojan downloads and installs multiple files to an infected PC, primarily via HTTP. The daisy chain of installations includes the Trojan Adcheat and can install an Alexa Toolbar from Renwu.info without the user's consent. The infection causes the user's PC to call out to various Web sites. If the Trojan has installed the Alexa Toolbar, the calls will register as legitimate hits and artificially inflate the site's Alexa traffic ranking. FaceTime researchers have found that Alexa traffic reports on targeted sites peak in similar patterns, leading them to conclude that the infection is impacting the reported traffic rates.

FaceTime enterprise customers are protected from the Symfly Trojan through Web filtering at the gateway in combination with inoculation at the desktop. The RTGuardian perimeter appliance automatically updates its signatures to provide protection against the initial infection at the gateway. FaceTime's Greynets Enterprise Manager provides an additional layer of protection with the ability to identify and remediate any infected endpoints.

The FaceTime research team offers a detailed accounting of the infection and the possible motives.

3315 times read

Related news
Uproar over U.K. traffic spy cameras by UPI posted on Jul 18,2007

Secure Computing warns of new security threat by Bend_Weekly_News_Sources posted on Feb 28,2007

Movie Review: 'Feast of Love' by David_Elliott posted on Oct 05,2007

Canadian Internet privacy said vulnerable by UPI posted on May 13,2008

Did you enjoy this article? Rating: 5.00Rating: 5.00Rating: 5.00Rating: 5.00Rating: 5.00 (total 13 votes)

Market Information
Breaking News
Most Popular
Most Commented
Featured Columnist
Horoscope Guide
Aquarius Aquarius Libra Libra
Aries Aries Pisces Pisces
Cancer Cancer Sagittarius Sagittarius
Capricorn Capricorn Scorpio Scorpio
Gemini Gemini Taurus Taurus
Leo Leo Virgo Virgo
Local Attractions
Bend Visitors & Convention Bureau
Bend Visitors & Convention Bureau

Mt. Bachelor Resort
Mt. Bachelor Resort

Les Schwab Ampitheater
Les Schwab Ampitheater

Deschutes County Fairgrounds
Deschutes County

Tower Theatre
Tower Theatre

The High Desert Museum


Deschutes County

  Web    BendWeekly.com
© 2006 Bend Weekly News
A .Com Endeavors, Inc. Company.
All Rights Reserved. Terms under
which this service is provided to you.
Please read our Privacy Policy. Contact us.
Bend Weekly News & Event Guide Online
   Save the Net
External sites open in new window,
not endorsed by BendWeekly.com
Subscribe in NewsGator Online
Add to Google Add to MSN Add to My AOL
What are RSS headlines?