News Web Server Security Phishing Database Security Application Server Security Library Vulnerability Archive Secure Development Web Services Pen Test AJAX Application Firewalls
Main -> Internet Security News
TOPIC'S
Advertising
Old News
About
Resume
Contact
FAQ
Irc
Links
Articles
Translate
Interviews
Commentary
Books
Demos
Papers
Downloads
Advisories
Contributions
Security Services
Submit News
Syndicated News


Hosting generously provided by
www.mv.com




Pick Your Language


MPack Reveals Stingy Web Hosts
Posted 07/5/07 by Robert

"According to reports, thousands of Web sites, predominantly in Italy, were recently compromised using the MPack malware kit, which contained iframe tags that pointed surfers towards hacker-controlled Web sites.

A security researcher at the SANS Institute's Internet Storm Centre says that only one of the Web sites hosted on the machine had to contain a vulnerable PHP script for the rest of the sites to become infected and often the root cause of the problem is when a Web hosting provider doesn't spend as much as it could on necessary hardware to add an extra layer of protective virtualization. The researcher adds that a good precaution to take is to make sure the hosting provider uses chroot or suExec, which ensures that individual Web sites are not compromised by others sharing the same physical server."

Article Link: http://www.thewhir.com/marketwatch/070507_MPack_Reveals_Stingy_Web_Hosts.cfm
Link to this Story: MPack Reveals Stingy Web Hosts
Link: Have a Site Suggestion, Material Request, or News? Submit it!
News RSS Feed: Web Security news RSS Feed
Discuss this article    Find Related Stories



External Links:
Copyright 2000-2007 Cgisecurity.com.
Providing Web Security news since 2000.
Information contained on this website may not be copied without explicit permission.
Best Viewed with Netscape.
Website Security Web Application Security solid state drives ebay cd players camera lens deals buy macbook air not work safe software security canon camera deals


Popular Links By Subject

Sponsored Link (Advertise)


Subscribe to CGISecurity.com



The Web Security Mailing List
  • [WEB SECURITY] Re: [Webappsec] Comparisons of Web Application Firewalls
  • RE: [WEB SECURITY] [Off Topic] Judge Orders YouTube to Give All User Histories to Viacom
  • RE: [WEB SECURITY] Re: [Webappsec] Comparisons of Web Application Firewalls
  • Re: [WEB SECURITY] [Off Topic] Judge Orders YouTube to Give All User Histories to Viacom
  • Re: [WEB SECURITY] Re: [Webappsec] Comparisons of Web Application Firewalls
  • Re: [WEB SECURITY] Re: [Webappsec] Comparisons of Web Application Firewalls
  • RE: [WEB SECURITY] Re: [Webappsec] Comparisons of Web Application Firewalls
  • Re: [WEB SECURITY] Re: [Webappsec] Comparisons of Web Application Firewalls
  • Re: [WEB SECURITY] Re: [Webappsec] Comparisons of Web Application Firewalls
  • [WEB SECURITY] Announcing WAFReviews.com

    • Contact us
    Post News, get linkage!

    Name

    Email or Homepage:

    Subject

    Finish the word below: deadb33f

    Body