Malware has been detected on two pro-Tibet independence Web sites, in what could be a politically motivated attack, according to security supplier ScanSafe.
The security vendor detected the malware on FreeTibet.org and SaveTibet.org Web sites.
Visitors to the homepages of these sites are exposed to an iFrame that redirects visitors to a site that hosts a Trojan downloader. The Trojan then may download adware, spyware or other malware from multiple servers or sources on the internet, Scansafe said.
The malware infected site has been tracked to servers in Taiwan.
Spencer Parker, director of product management at ScanSafe said the attack on the human rights group sites appear to be politically motivated. "These Web sites appear to have been specifically targeted as this is not a generic Trojan downloader. Someone or some group has gone to great trouble to rewrite the exploit and personalize it to the FreeTibet.org and SaveTibet.org Web sites," he said.
"Given the recent events in Tibet and the protests around the forthcoming Olympics and the Olympic Torch Run, there may be certain groups that are particularly keen to monitor or disrupt activities of pro-Tibet interests."
ScanSafe recommended web surfers take extreme caution and that all Web sites review their security policies.