Solidot: 恶意程序瞄准Apache，劫持2万网站

Solidot

奇客的资讯，重要的东西

恶意程序瞄准Apache，劫持2万网站
http://solidot.org.feedsportal.com/c/33236/f/556826/s/2a49e3c3/l/0L0Ssolidot0Borg0Cstory0Dsid0F34142/story01.htm
Apr 3rd 2013, 12:47

名叫Darkleech的恶意程序工具正以最流行的Web server Apache为目标，通过在网页中植入恶意代码将浏览者重定向到第三方恶意网站。它至今已劫持2万多个网站，其中包括知名网站如《洛杉矶时报》。目前还不清楚攻击者利用了什么弱点入侵Apache机器，安全研究人员怀疑漏洞可能存在于用于管理网站的软件如Plesk和Cpanel中，也不排除密码破解和社会工程等攻击方法的可能性。研究人员不清楚Darkleech究竟感染了多少网站，因为它利用了复杂的手段避开检测：如果来自安全公司和托管公司的IP地址访问了被感染的网站，它不会在终端用户展示的网页中嵌入恶意链接。This entry passed through the Full-Text RSS service — if this is your content and you're reading it on someone else's site, please read the FAQ at fivefilters.org/content-only/faq.php#publishers. Five Filters recommends: Jousting With Toothpicks - The Case For Challenging Corporate Journalism http://www.medialens.org/index.php/alerts/alert-archive/alerts-2013/719-jousting-with-toothpicks-the-case-for-challenging-corporate-journalism.html.



You are receiving this email because you subscribed to this feed at http://blogtrottr.com

If you no longer wish to receive these emails, you can unsubscribe here:
http://blogtrottr.com/unsubscribe/cz0/jPbdSR