Last modified: 2006-08-23 13:48:42 UTC

Wikimedia Bugzilla is closed!

Wikimedia has migrated from Bugzilla to Phabricator. Bug reports should be created and updated in Wikimedia Phabricator instead. Please create an account in Phabricator and add your Bugzilla email address to it.
Wikimedia Bugzilla is read-only. If you try to edit or create any bug report in Bugzilla you will be shown an intentional error message.
In order to access the Phabricator task corresponding to a Bugzilla report, just remove "static-" from its URL.
You could still run searches in Bugzilla or access your list of votes but bug reports will obviously not be up-to-date in Bugzilla.
Bug 7095 - malware embedded in the link!
malware embedded in the link!
Product: Wikimedia
Classification: Unclassified
General/Unknown (Other open bugs)
All All
: Normal critical (vote)
: ---
Assigned To: Nobody - You can work on this!
Depends on:
  Show dependency treegraph
Reported: 2006-08-22 17:54 UTC by Stu
Modified: 2006-08-23 13:48 UTC (History)
0 users

See Also:
Web browser: ---
Mobile Platform: ---
Assignee Huggle Beta Tester: ---


Description Stu 2006-08-22 17:54:57 UTC
While researching "code injection" at Wikipedia, my firewall reported that indeed my machine had become 
infected with the "Unix.Penguin" threat, which is itself a code injection type of threat. Very funny 
some hacker did this to Wikipedia.
Comment 1 Aryeh Gregor (not reading bugmail, please e-mail directly) 2006-08-22 17:59:23 UTC
I don't get any threat when going to that page.  It was probably a coincidental
attack from elsewhere that you assumed was connected to Wikipedia because of the
page you were reading.  If you have any evidence to the contrary, please share.
Comment 2 Stu 2006-08-22 18:12:03 UTC
Interesting - I clicked on the link 3 times and was "infected" 3 times.
Comment 3 Brion Vibber 2006-08-23 09:40:12 UTC
The page *talks about* code injection, and the code examples might be triggering false 
positives in some firewall or virus protection software. Please report this false positive to the 
author/vendor of your software.
Comment 4 Stu 2006-08-23 13:48:42 UTC
I wondered if that may be the case - thanks for the feedback. PS - nice tool this Wikipedia!

Note You need to log in before you can comment on or make changes to this bug.