Until I have time to post all the information I have collected for the website Lucianne.com in the past few days, please know that this problem comes from a rogue advertising url which prompts for a non-signed MS download of ActiveX being necessary to view the site. [ It is NOT ]
When first reported to me I tested with several AV’s, Windows and Vista versions - all the reports have been sent to my AV vendors for review thru a special malware and reporting service I am a member of as well as to an Exec VP at Symnatec on Thursday.
I have forwarded the source URL’s and additional technical info to both the ad agencies and hosting servers of record.
If you use a good hosts or add blocking file with IE high sectuity regarding unathecticated author downloads to be not allowed or offered you should not be effected at al.
I will post more for you all when the data is finalized.
Amy Sheehan, Executive Editor and Online site producer for Lucianne.com
Amy Sheehan M$ MVP Secuirty 2007
AntiPhishing Research.org
Secuity MVP member dslr reports [since 1999]
Castlecops - Symantec forum official rep
Member Symantec enhanced detection team
MVP member Security Updates Committe, Security, and malware id team co-leader.
I promise to get back and report in full
Amy Sheehan
Mon 28 OCT
Huntington Beach, CA
I look forward to your findings and advice that we can do here at FR to stop this fraud!
Turborules...