Download.ject

In computing, Download.ject (also known as Toofer and Scob) is a malware program for Microsoft Windows servers. When installed on an insecure website running on Microsoft Internet Information Services (IIS), it appends malicious JavaScript to all pages served by the site.

Download.ject was the first noted case in which users of Internet Explorer for Windows could infect their computers with malware (a backdoor and key logger) merely by viewing a web page. It came to prominence during a widespread attack starting June 23, 2004, when it infected many servers including several that hosted financial sites. Security consultants prominently started promoting the use of Opera^[1] or Mozilla Firefox instead of IE in the wake of this attack.

Download.ject is not a virus or a worm; it does not spread by itself. The June 23 attack is hypothesised to have been put into place by automatic scanning of servers running IIS.

^ Brenner, Bill (October 4, 2004). "Schneier: Microsoft still has work to do". Schneier on Security. Archived from the original on 2004-10-10. Retrieved 2007-01-08.

[schneieropera-1] Brenner, Bill (October 4, 2004). "Schneier: Microsoft still has work to do". Schneier on Security. Archived from the original on 2004-10-10. Retrieved 2007-01-08.

[1]