I got Spam?!

A large scale attack is occurring against Linux Apache web servers. According to Don Jackson, a senior researcher at SecureWorks, the attack has been successful because it uses an automated password and installation process. He says the attack has hit at least 10,000 servers.

"The Web server ends up serving up vulnerabilities from 2006 related to Windows malware," Jackson told Network World. "The whole attack is very mysterious. It's based on a botnet but it doesn't match the Russian and Chinese groups and may be Western Europe or North American."

The attack uses Rbot and Sdbot malware and targets vulnerabilities found in quicktime, AOL SuperBuddy and Yahoo Messenger.
Jackson says to protect against the attack, network managers should disable "dynamic module". There is evidence of a similar attack aimed toward Microsoft's Internet Information Server, but it hasn't become widespread like the Linux attack.

• Systems Administrator Indicted in Hacking Scheme
• MySpace Under New Malware Attack
• Security Software Industry Takes First Steps Towards Forming Anti-Malware Testing Standards Organization
• GEMoney Announces Security Breach Affecting Over 600,000 Consumers
• Spammers Use Lunar Eclipse to Deliver Malware
• New Phishing Attack Masquerades as Government Alert
• Oracle To Release 27 Security Fixes
• Malware Authors Exploit Actor's Tragic Death
• Hackers Attack Anti-Virus Site
• GFI Adds Support for January 2008 Microsoft Security Updates

Filed under: Spam News Tags: by admin Date 24 January, 2008