Recent server upgrades have apparently opened up scripts to vulnerabilites that cyber vandals have been taking full advantage of. Within the past 6 weeks a number of sites have suddenly found themselves infected with malicous java script that placed dialog boxes with forced downloaders, viruses, and trojans on sites hosted on the servers which were in then turned loose onto other programs and infected members' computers as they visited the sites. Especially impacted were traffic exchanges.
This report from one of the Xtream members and a webmaster:
I have discovered the reason for all of these dialog box problems/hacks. It has to do with servers who have done recent upgrades. enable_dl function in php is to blame.
The function is being left in the "enabled" mode when the upgrade is done whichThree of my sites were affected a few days ago and this was the reason. Please distribute this to other program owners and hosting companies. Once the enable_dl function is turned off the servers can be "disinfected" and will no longer be vulnerable.
leaves the server vulnerable to exploits of this type.
Thanks
Keith Janet
Janet Online Enterprises
0 comments:
Post a Comment