Newest Threads

**megalomani** · 06-16-2012, 09:51 PM

My computer has Avast antivirus running. Just a few minutes ago I went to the Chugger pump site (chuggerpump.com) and avast sounded an alarm. It said it detected and blocked a trojan horse. Any time I navigated anywhere else on the site avast repeatedly reported the pages a malicious.

Anyone else having this happen? I wanted to contact the owner but didn't want to stay on the site any longer to get his contact info. Don't wabt to make things sound bad for Chugger but wanted to warn others without virus protection if there really is a danger.

**bdjohns1** · 06-17-2012, 02:54 PM

There is something there. I went to the chuggerpumps page, and after a few seconds, it automatically went through a few reloads to some kind of scam advertising page.

I did a little debugging, and it appears that someone go into the site and inserted some obfuscated malicious code at the bottom of one of the JS files the page loads. (/js/cufon.js).

Don't visit their site for a bit, as it definitely appears to have been exploited.

JohnTheBrewist · 06-20-2012, 05:50 PM

The virus is still there as of today, found by ESET antivirus.

**IrregularPulse** · 06-20-2012, 05:55 PM

Too bad he's too busy trying to bash March Pumps to fix it

stamandster · 06-20-2012, 06:11 PM

People have to realize that they need to spend money to protect their sites. Third party security vendors are REQUIRED for audit and penetration testing.

**jbsengineer** · 06-20-2012, 06:13 PM

Quote:

Originally Posted by stamandster

People have to realize that they need to spend money to protect their sites. Third party security vendors are REQUIRED for audit and penetration testing.

Exactly!

**bdjohns1** · 06-20-2012, 06:18 PM

Quote:

Originally Posted by stamandster

People have to realize that they need to spend money to protect their sites. Third party security vendors are REQUIRED for audit and penetration testing.

Ironically, the site has a "McAfee tested" logo on it.

stamandster · 06-20-2012, 06:25 PM

If they accept credit cards they are required by their agreements with credit card companies to follow PCI (PCI DSS) standards. It's designed to protect the "company" against lawsuits from consumer information theft. If you don't there are big fines associated with it.

This is a security breach and could possibly lead to compromised account holder information. I guess that Mcaffee secure badge at the bottom of the page means diddly.

stamandster · 06-20-2012, 06:27 PM

Quote:

Originally Posted by bdjohns1

Ironically, the site has a "McAfee tested" logo on it.

Yeah and when your password is ChuggerPumpRock! it's moot. lol

**jbsengineer** · 06-20-2012, 09:25 PM

Quote:

Originally Posted by stamandster

If they accept credit cards they are required by their agreements with credit card companies to follow PCI (PCI DSS) standards. It's designed to protect the "company" against lawsuits from consumer information theft. If you don't there are big fines associated with it.

This is a security breach and could possibly lead to compromised account holder information. I guess that Mcaffee secure badge at the bottom of the page means diddly.

A lot of times the PCI compliancy is a joke. Just a form to fill out that you "certify" you are doing things within spec. If you do have a breach you are then marked as a level 1 and it makes it far more difficult to be re-certified.