|Check Point Reference:||CPAI-2012-045|
|Date Published:||2 Feb 2012|
|Protection Provided by:||
|Who is Vulnerable?||Web users|
|Vulnerability Description||Multiple domains have been identified to potentially host LOIC or other malicious code.|
|Vulnerability Details||The Low Orbit Ion Cannon (LOIC) is a denial-of-service attack tool associated with malicious attackers' activity. Certain domains have been identified to potentially host LOIC or other malicious code. Visiting these domains is not recommended, as it may result in unexpected system behavior.|
This protection will detect and block attempts to open malicious LOIC links.
In order for the protection to be activated, update your Security Gateway product to the latest IPS update. For information on how to update IPS, go to SBP-2006-05, Protection tab and select the version of your choice.
SmartView Tracker will log the following entries:
Attack Name: Web Client Enforcement Violation
Attack Information: Suspected LOIC traffic domains block list