Last week, a hacker took aim at my Internet server and succeeded in
replacing the home page of about 30 sites. All in all, I had to clean out
2000 docs off the server (the same doc with multiple extensions and name
variations in various directories.). The rouge home page was related to
middle eastern issues, not aimed any of the sites being hosted.
Interestingly, nothing was deleted from the server, and as far as I can tell
nothing was tampered with but I can only assume a back door to the server
was installed. How they hacked in is still unclear and of course I have
taken measures to heighten security.
Scary.
Greg
-----Original Message-----
From: profoxtech-bounces /at/ leafe D.OT com [mailto:profoxtech-bounces@leafe.com] On
Behalf Of Bill Anderson
Sent: Tuesday, November 30, 2004 4:44 PM
To: profoxtech /at/ leafe D.OT com
Subject: [NF] -- Hackers Take Aim At Ad-Server Networks
"As if phishing scams, spam, and run-of-the-mill virus attacks weren't
doing enough to whittle away at the level of trust in E-business
systems, hackers last week added a new target: banner advertising networks.
On Nov. 20, attackers infiltrated the ad-server network of German
Internet marketing company Falk eSolutions AG. They compromised one of
the company's servers, inserting code that caused some Web surfers who
visited sites displaying Falk's banner ads to become infected by a
Trojan horse located on other Web sites that opens their systems to
attack. The hackers took advantage of a known but unpatched flaw in
Internet Explorer 6.0, and Web surfers running that browser didn't have
to click on the banner ad to get infected, says Joe Stewart, senior
security researcher for security services firm LURHQ Corp. Systems
running Internet Explorer 6.0 on Service Pack 2 aren't vulnerable."
<http://www.informationweek.com/story/showArticle.jhtml?articleID=54200566&t
id=6004>
[excessive quoting removed by server]
©2004 Greg Gum |
