Jul 5, 2007 : MPack Reveals Stingy Web Hosts

📅 July 5, 2007 - Multiple Web sites hosted on the same physical server have been infected in last month's MPack compromise due to a poor configuration of apache servers.

According to reports, thousands of Web sites, predominantly in Italy, were recently compromised using the MPack malware kit, which contained iframe tags that pointed surfers towards hacker-controlled Web sites.

A security researcher at the SANS Institute's Internet Storm Centre says that only one of the Web sites hosted on the machine had to contain a vulnerable PHP script for the rest of the sites to become infected and often the root cause of the problem is when a Web hosting provider doesn't spend as much as it could on necessary hardware to add an extra layer of protective virtualization. The researcher adds that a good precaution to take is to make sure the hosting provider uses chroot or suExec, which ensures that individual Web sites are not compromised by others sharing the same physical server.

MPack is a malware kit, sold online to hackers at prices ranging from $500 to $1,000 and is offered with modular extras, maintenance updates and support contracts that in many ways rival or surpass those offered by legitimate software suppliers.

Reads: 1875 | Category: General | Source: TheWHIR : Web Host Industry Reviews
URL source: http://www.thewhir.com/marketwatch/070507_MPack_Reveals_Stingy_Web_Hosts.cfm
Want to add a website news or press release ? Just do it, it's free! Use add web hosting news!

Other news

📅 Jul 3, 2007 - Rackspace Offers Managed Exchange - UK Web hosting provider Rackspace Managed Hosting (rackspace.co.uk -> rackspace.com) announced on Monday that it has added managed Microsoft Exchange to its suite of email solutions. Managed Microsoft Exchange from Rackspace will enable users to benefit from the world's most highly deployed email and collaboration solution without the hassle of managing and maintaining the infrastructure, says the company. Microsoft Exchange from Rackspace supports mobile wireless solutions from BlackBerry, Good MM, Pocket PC and Treo and provides around-the-clock staffed security and monitoring of both internal devices and external threats."Messaging is generally critical for modern businesses an

📅 Jul 3, 2007 - GlobalSign Offers ObjectSign Certs. - Certification authority and security services provider GlobalSign (globalsign.com) announced on Monday it is now offering ObjectSign certificates for code signing on Microsoft Windows Vista and the Apple Mac OS. ObjectSign certifies, authenticates, digitally signs and ensures the integrity of code for developers of applications both for Windows Vista and the Apple Mac Operating System. Along with Verisign and CyberTrust, GlobalSign is one of only three CAs authorized to issue code signing certificates for the Windows 64-bit version of the Vista Operating System.New security features in Microsoft's Vista platform prevents the sofware from executing in certain situ

📅 Jul 3, 2007 - CM4all Launches in Poland - Web-based applications developer CM4all (cm4all.com) announced on Monday that Poland-based Web hosting provider Az.pl (az.pl) has become the first to launch a branded Polish version of CM4all's WebsiteCreator Consumer Edition. Az.pl offers the CM4all WebsiteCreator Consumer Edition in two versions and customers can create Web sites easily and intuitively byusing the Consumer Editions Topic Wizard, says the company. Users can also integrate community-building features, such as a multi-author video blog, guestbook and RSVP event planner as well as a Web 2.0 community media album where users can upload their photos, videos and music files and then invite their friends to share

📅 Jul 6, 2007 - Rackspace UK Names Director of EMEA - UK Web hosting provider Rackspace Managed Hosting (rackspace.co.uk -> rackspace.com) announced on Friday it has named Doug Loewe managing director of Europe, Middle East and Africa. Loewe joins Rackspace Managed Hosting from iPass, where he served as vice president and managing director of EMEA. Loewe will be responsible for leading the growth of Rackspace's business operations in the UK, and expansion activities into Continental Europe. He brings over 20 years of commercial and management experience in the internet and telecommunications industries to Rackspace. Before joining iPass, Loewe held various executive positions with Cable & Wireless, Genuity, WorldCom, UUNET and Compu

📅 Jul 6, 2007 - TelecityRedbus Wins Stevie Award - European data center and managed services provider TelecityRedbus (telecityredbus.com) announced on Friday it has won an International Stevie Award for Best New Company in The 2007 International Business Awards. The International Stevie Awards program honors great performance in business. TelecityRedbus has been recognized for its recent acquisition of Globix UK, and subsequent consolidation of its services into the TelecityRedbus portfolio. In the last 12 months, the company has evolved from offering broadly colocation services for major carriers and ISPs to becoming a major network hub providing Internet infrastructure, connectivity and managed services for the enterpris

📅 Jul 6, 2007 - IceWEB Wins Government Contract - Hosted email provider IceWEB (iceweb.com) announced on Thursday it has been awarded a contract for hardware and services valued at $315,000 from the Federal Agency to provide Intrusion Prevention Appliances, associated software and implementation services. "More and more the federal government looks to IceWEB to provide them with state of the art Network Security Infrastructure goods and services," says Tim J. McNamee, VP of sales for IceWEB. "Bid and Proposal team build-out continues, we expect the size and frequency of government contracts to increase significantly."IceWEB uses a hosted software services model that brings technologies typically deployed by large