Massive amount of Websites are being COMPROMISED via Gumblar
I got the information about this virus from the website
http://www3.atword.jp/gnome/2009/10/19/emergency-the-massive-compromised-via-gumblar/
lots and lots of websites are being infected by this method. The result is, your user systems will produce strange behaviors as the attacker wants it. Only php installed web servers seem to have this problem. Since almost all of the webservers have PHP installed all of you must be carefull. Make sure any CMS you are using are updated to the latest version including all the plugins. By CMS i meant applications like Joomla, Drupal etc etc. The one i came across with is, “wedding.php”. Less number of anti-viruses are detecting it.
Information and details of the infection about similar kinds of malware.
This wedding.php have different names @ different places as far as I know.
More info about the wedding.php
http://wepawet.iseclab.org/view.php?hash=698f08b84cad9436f364037134dfe730&t=1255934822&type=js
Latest Comments