Hackers hijack Wikipedia page to spread malware

[Wazoo]

http://www.sophos.com/pressoffice/news/art...ia-malware.html

Wikipedia allows anyone to create and modify articles, a policy of openness which has often been abused by mischief-makers in the past. Taking advantage of this fact, an article on the German edition of Wikipedia, de.wikipedia.org, was created by hackers claiming to include a link to a fix for a supposedly new version of the Blaster worm. However, the "fix" was actually a piece of malicious code known as Troj/Nordex-A, designed to infect visitors' PCs.

Hackers then spammed out an email to German computer users, claiming to come from Wikipedia, and directing them to information about the "new worm". Sophos's global network of spamtraps intercepted the spam messages, and customers were protected from receiving the emails by Sophos's anti-spam solutions

"The good news is that the authorities at Wikipedia quickly identitifed and edited the article on their site," said Graham Cluley, senior technology consultant for Sophos. "Unfortunately, however, the previous version of the page was still present in the archive and was continuing to point to malicious code. The hackers were thus able to send out spam pointing people to the page on Wikipedia, and try and lead them into infection."

Wikipedia has now confirmed that it has permanently erased the archived version of the page.