IT Security: unpatched Joomla sites allow phishing scams to hide
The Anti Money Laundering Network has identified a security hole in installations of Joomla!, the popular CMS platform, that allows fraudsters to place files to act as landing pages for spam-scams including a phishing expedition targeting customers of a South African bank.
Most Recent - This Section
IT Security: Zappos.Com admits huge security breach.IT Security: "Twihards" targeted by internet crooks
IT Security: Microsoft ceases use of "supercookies."
IT Security: US Cert released latest vulnerability summary
IT Security: Drive-by downloads? How about drive-home monitoring?
Most Recent - Whole Site
Taxation: US Treasury notice re FACTAInternet: "buy this domain or lose business"
The Risk Professional: US Treasury Statement re Iran banking sanctions
Automotive: Clint Eastwood's misty eyes playing for Detroit
Aviation: Kingfisher's finances cause concern
Most Recent - BankingInsuranceSecurities.Com
FI Fraud: Phishing - Santander UKSanctions: OFAC update 20120207
Phishing Alert: Quickbooks / Intuit
Sanctions: OFAC UPDATE 20120206
Sanctions HM Treasury - Iraq
South Africa's First National Bank is a frequent subject of phishing attacks.
An example which arrived at the offices of The Anti Money Laundering Network, parent company of Vortex Centrum, publishers of ChiefOfficers.Net exploits a security hole in unpatched versions of Joomla!, one of the most popular content management systems for small-to-medium websites and used by many companies, universities and other organisations.
The breach is exploited in the /modules/mod_breadcrumbs/tmpl/default/mammoth directory. Fraudsters are able to place a "landing page" in that directory which receives visitors from a widespread spam-scam e-mail. "mammoth" is a popular "theme" for both Joomla! and Wordpress. It is not known if the vulnerability is also present in the equivalent Wordpress directory.
Download PDF version of this page
eZ publish™ copyright © 1999-2012 eZ systems as