Information Security News |
On 26 APR, Sucuri's Daniel Cid posted Apache Binary Backdoors on Cpanel-based servers. This coincided closely with a technical study of the Linux/Cdorked.A malware provided by ESET.
Sucuri stated that "on cPanel-based servers, instead of adding modules or modifying the Apache configuration, the attackers started to replace the Apache binary (httpd) with a malicious one."
ESET's analysis of this malware revealed that it is a "sophisticated and stealthy backdoor meant to drive traffic to malicious websites."
Speculation regarding how the initial entry occured to allow injection in the first place is varied, but SSH bruteforce is on the list.
See ESET's guidance regarding shared memory, and as always, validate the intergrity of httpd packages.
Review both articles, and if you're utilizing a shared webserver provided by a colo/ISP, be sure your confidence in their ability to manage and administer that server on your behalf is high.
(c) SANS Internet Storm Center. http://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.Well, I can say after reading the above comments..... I am confused on what to do.......
I am an old fart from days long past when you had memory of 1mb and you were king (laugh).
I am not an IT Tech and just a home user and builder for the past 40 years i guess. After building my new system this week using the ASUS P9X79Pro (UEFI capable) mB.... I do not know what to do anymore based on the above comments. I am currently running GPT with Windows 7 Pro; 16GB DDR3 / 2133 (XMS) memory and other nonsense. I have my bios currently set to use IDE vs. the UEFI option.
My computer right now runs great but still confused on whether or not to change the setting in the BIOS over to UEFI setting. I generally understand the Security key issue, but being a home builder I do not know if it applys, and I am running Windows anyway for my op system so all should work - no dual boot, no linux.
I even recall using a Bios Translation program back in the days for old bios's to see the larger hard drive sizes / partitions. Back then, w/out the translation program it would not recog the full size of the hd. Move forward, and here we are..... I want to be able to use some of the new 3TB and 4TB drives for back of files and things
So again, here I sit with my new system wondering if I shouild flip the switch to UEFI.
Comments welcome. You can reach me at: [email protected]
Spambots target tweeting pollies Sydney Morning Herald The Twitter accounts of prominent politicians are being targeted by ''spambots'', dramatically inflating the number of followers for Prime Minister Julia Gillard, Opposition Leader Tony Abbott, and Kevin Rudd and Malcolm Turnbull. Two social media ... |