[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[ale] Potentially OT of Hiacked Web Server?

Subject: [ale] Potentially OT of Hiacked Web Server?
From: meuon at geeklabs.com (Mike Harrison)
Date: Tue, 23 Mar 2010 20:17:49 -0400 (EDT)
In-reply-to: <[email protected]>
References: <[email protected]>

> Trend Security Agent Notification Message:
> http://ovh-net.ucoz.ru.monster-com.yourblenderparts.ru:8080/mininova.org/mininova.orh/hp.com/google.com/w3schools.com.php
> Result = Blocked
>
> So it would appear that the Rushkies have hijacked our control panel,
> correct?
> Yes, this IS Windows based software. Any suggestions, other than dumping the
> software--sorry, but the boss won't want to hear that.

It could be either the control panel (less likely) or your computer (more 
likely) and my guess is the payload of the web post might even include 
your login credentials to your control panel.

Follow-Ups:
- [ale] Potentially OT of Hiacked Web Server?
  - From: gccfof5 at gmail.com (Greg Clifton)

References:
- [ale] Potentially OT of Hiacked Web Server?
  - From: gccfof5 at gmail.com (Greg Clifton)

Prev by Date: [ale] OT: Security code on Credit/Debit cards revisited
Next by Date: [ale] LDAP and System Users/Groups
Previous by thread: [ale] Potentially OT of Hiacked Web Server?
Next by thread: [ale] Potentially OT of Hiacked Web Server?
Index(es):
- Date
- Thread